Reducing DNS Traffic to Enhance Home IoT Device Privacy-Reference-Cited by-同舟云学术

Reducing DNS Traffic to Enhance Home IoT Device Privacy

Published:2024-04-24 Issue:9 Volume:24 Page:2690
ISSN:1424-8220
Container-title:Sensors
language:en
Short-container-title:Sensors

Author:

Moure-Garrido Marta¹^ORCID,Garcia-Rubio Carlos¹^ORCID,Campo Celeste¹^ORCID

Affiliation:

1. Department of Telematic Engineering, University Carlos III of Madrid, Av. de la Universidad 30, E-28911 Leganes, Spain

Abstract

The deployment of Internet of Things (IoT) devices is widespread in different environments, including homes. Although security is incorporated, homes can become targets for cyberattacks because of their vulnerabilities. IoT devices generate Domain Name Server (DNS) traffic primarily for communication with Internet servers. In this paper, we present a detailed analysis of DNS traffic from IoT devices. The queried domains are highly distinctive, enabling attackers to easily identify the IoT device. In addition, we observed an unexpectedly high volume of queries. The analysis reveals that the same domains are repeatedly queried, DNS queries are transmitted in plain text over User Datagram Protocol (UDP) port 53 (Do53), and the excessive generation of traffic poses a security risk by amplifying an attacker’s ability to identify IoT devices and execute more precise, targeted attacks, consequently escalating the potential compromise of the entire IoT ecosystem. We propose a simple measure that can be taken to reduce DNS traffic generated by IoT devices, thus preventing it from being used as a vector to identify the types of devices present in the network. This measure is based on the implementation of the DNS cache in the devices; caching few resources increases privacy considerably.

Funder

Spanish Government

Spain-PRTR-of the National Cybersecurity Institute of Spain

European Union

Publisher

MDPI AG

Link

https://www.mdpi.com/1424-8220/24/9/2690/pdf

Reference30 articles.

1. Cybersecurity Issues of IoT in Ambient Intelligence (AmI) Environment;Quadar;IEEE Internet Things Mag.,2022

2. Feng, X., Li, Q., Wang, H., and Sun, L. (2018, January 15–17). Acquisitional rule-based engine for discovering Internet-of-Things devices. Proceedings of the 27th USENIX Security Symposium (USENIX Security 18), Baltimore, MD, USA.

3. Durumeric, Z., Wustrow, E., and Halderman, J.A. (2013, January 14–16). ZMap: Fast internet-wide scanning and its security applications. Proceedings of the 22nd USENIX Security Symposium (USENIX Security 13), Washington, DC, USA.

4. A survey of smart home iot device classification using machine learning-based network traffic analysis;Jmila;IEEE Access,2022

5. Antonakakis, M., April, T., Bailey, M., Bernhard, M., Bursztein, E., Cochran, J., Durumeric, Z., Halderman, J.A., Invernizzi, L., and Kallitsis, M. (2017, January 16–18). Understanding the Mirai Botnet. Proceedings of the 26th USENIX Conference on Security Symposium, (USENIX Security 13), Vancouver, BC, Canada.