Examining the Battle of Mirai Botnet over IoT Devices

04 10 2021 louis wang n.w
1 / 24
Embed
Share

Delve into the fight between Mirai and its variants over vulnerable IoT devices, exploring the emergence, impact, and tactics of this notorious botnet. Learn about the replication and attack modules, motives behind botnet growth, and the need for enhanced security measures to combat DDoS threats.

  • Mirai Botnet
  • IoT Devices
  • Cybersecurity
  • DDoS Attacks
  • Internet Threats
rayaanacharya
jveron Follow

Uploaded on | 0 Views

Download Presentation

Please find below an Image/Link to download the presentation.

The content on the website is provided AS IS for your information and personal use only. It may not be sold, licensed, or shared on other websites without obtaining consent from the author. If you encounter any issues during the download, it is possible that the publisher has removed the file from their server.

You are allowed to download the files provided on this website for personal or commercial use, subject to the condition that they are used lawfully. All files are the property of their respective owners.

Download Presentation

The content on the website is provided AS IS for your information and personal use only. It may not be sold, licensed, or shared on other websites without obtaining consent from the author.

E N D

Presentation Transcript

  1. 04/10/2021 Louis Wang COMPSCI726Seminar Examining Mirai s Battle over the Internet of Things Harm Griffioen & Christian Doerr from University of Potsdam

  2. Introduction 01 Solution 02 Contents Criticism 03 Limitation & mitigation 04

  3. /01 Introduction Motivation Background knowledge Problem

  4. Introduction More IoT devices exposed to the Internet Easily breached and exploited without strong security policies The emergence of Mirai botnet changed the Internet threat landscape. Mirai has compromised thousands of IoT devices Can be used as nodes to launch massive DDoS attacks 4

  5. Motivation Increased awareness and security will reduce the likelihood of being attacked. Botmasters can only grow their botnets by destroying control of existing devices. The need to examine the battle for these vulnerable IoT devices between Mirai and its variants. 5

  6. Background Knowledge What is Mirai and How it works: Self-propagating: A malicious program that replicates itself by finding, attacking and infecting vulnerable IoT devices (worm). Botnet: the infected devices are controlled via a central set of command and control (C&C) servers. Made of two key components: Replication module Attack module 6

  7. The replication module 7

  8. The attack module 8

  9. Background Knowledge Experimented and clone created The source code published Variants The fight for control Actor-specific modifications 9

  10. Problem Examine the war between Mirai and its silbings to know the scope of such infections. How to learn about the lifetime of the infection and reinfection behaviour of IoT devices 10

  11. /02 Solution Core idea Detailed techniques

  12. Solution Mirai s behavior: Closes the entry point Start a continuous scan for other devices A random number generator (RNG) used in this step to choose a random source port in the range of [1024, 65535] Establishes a connection with the C&C server 12

  13. Core idea Based on one core feature: random number generator (RNG) used in the Target Selection and Randomness Generation phase of the Mirai botnet attack. The inner workings are depicted in figure below, which shows the state initialization and the generation routine. This design will cause severe flaws allowing the authors to gather information to learn the precise moment of compromisation, which they use to understand the lifetime of infections. 13

  14. Detailed techniques Dataset Telescope Infected devices, RNG analysis The Honeytrack IoT system Netflows Verification and coverage analysis, blacklisting analysis 14

  15. Attacking PRNG Random numbers and seed Entropy 15

  16. Attacking PRNG 16

  17. Mirais battle over the IoT 17

  18. Mirais battle over the IoT Compatibility of Malware Concurrent infections Infection characteristics Transitions between botnets 18

  19. Regional biases Mirai s battle over the IoT 01 02 Increasing your market share Watching and learning Customization and Evolution from your competitors 03 04 Keeping the net alive Loading infrastructure 05 06 Honeypot evasion 19

  20. /03 Criticism

  21. Criticism The structure of the article is slightly confusing 01 Apr- Jun Lack of explanation of a few basic concepts 02 Jul-Sep No feasible mitigation measures have been proposed 03 Oct- Des Lack of vision of future state 04 21

  22. /04 Limitation and mitigation

  23. Limitation and mitigation methods Eliminate default credentials Blacklist mechanism Force the use of automatic update policies The blacklisting mechanism that exists in Mirai and its variants will affect the discovery of new variants. Adopt a rate-limiting policy 23

  24. Thanks Louis Wang 04/10/2021

Related


Saint Louis Auto Detailing.

Saint Louis Auto Detailing.

Dolphin
Kitchen remodeling contractor St. Louis Park Minnetonka MN and Eden Prairie

Kitchen remodeling contractor St. Louis Park Minnetonka MN and Eden Prairie

Concept
Kitchen remodeling contractor St. Louis Park Minnetonka MN and Eden Prairie

Kitchen remodeling contractor St. Louis Park Minnetonka MN and Eden Prairie

Concept
St. Louis University Tuition Benefits Overview

St. Louis University Tuition Benefits Overview

dawood
Context in Jekyll and Hyde: Victorian Britain and Robert Louis Stevenson

Context in Jekyll and Hyde: Victorian Britain and Robert Louis Stevenson

tybalt
Louis MacNeice's Poem

Louis MacNeice's Poem "Prayer Before Birth

shreya
Analysis of

Analysis of "The Vagabond" by Robert Louis Stevenson

cataleya
St. Louis University's Five-Year Research Growth Plan & Achievements

St. Louis University's Five-Year Research Growth Plan & Achievements

husna
Louis Armstrong: A Trailblazer in Jazz Music

Louis Armstrong: A Trailblazer in Jazz Music

marceline
Scott Joyce: Your Go-To Expert for Medicare 101 in St. Louis

Scott Joyce: Your Go-To Expert for Medicare 101 in St. Louis

Scott1
Scott Joyce: Specialist in Medicare Advantage Services in St. Louis

Scott Joyce: Specialist in Medicare Advantage Services in St. Louis

Scott1
Time Series Analysis and Forecasting for Predicted Homicide Rate in St. Louis

Time Series Analysis and Forecasting for Predicted Homicide Rate in St. Louis

mikkelsen_c
Challenges Faced by the Recreation Department at Louis Brier Home & Hospital

Challenges Faced by the Recreation Department at Louis Brier Home & Hospital

kan_f
Insights into

Insights into "The Strange Case of Dr. Jekyll and Mr. Hyde" by Robert Louis Stevenson

caki
Life at Le Collège Louis Leprince Ringuet Middle School

Life at Le Collège Louis Leprince Ringuet Middle School

toby_lso
Building the St. Louis Vertical Earc End-Fed Antenna - K8KIZ

Building the St. Louis Vertical Earc End-Fed Antenna - K8KIZ

dgorl
Asian American Identity Through

Asian American Identity Through "Chan Is Missing" by Wayne Wang

fell_av
Characters in Robert Louis Stevenson's

Characters in Robert Louis Stevenson's "Strange Case of Dr. Jekyll and Mr. Hyde

ima_def
Engaging Poetry Performance Activity by Robert Louis Stevenson

Engaging Poetry Performance Activity by Robert Louis Stevenson

varnadore_h
Preparation and Roles for the Trial of King Louis XVI

Preparation and Roles for the Trial of King Louis XVI

langhorne_j
Faculty Governance at Saint Louis University School of Medicine

Faculty Governance at Saint Louis University School of Medicine

eage_al
The Bottle Imp by Robert Louis Stevenson - Summary and Major Plot Points

The Bottle Imp by Robert Louis Stevenson - Summary and Major Plot Points

kins524

More Related Content