SweetCam: an IP Camera Honeypot

Zetong Zhao, Shreyas Srinivasa, Emmanouil Vasilomanolakis

Publikation: Bidrag til bog/antologi/rapport/konference proceedingKonferenceartikel i proceedingForskningpeer review

2573 Downloads (Pure)

Abstract

The utilization of the Internet of Things (IoT) as an attack surface is nowadays a fact. Taking IP cameras as a use-case, they have been targeted to a great extent mainly due to the absence of authentication, the utilization of weak, in terms of security, protocols, and their high availability. To cope with the current situation and study the current state of attacks against IP cameras we propose the use of cyber-deception and in particular honeypots. Honeypots can provide useful insights into current attack campaigns, and they can divert attackers’ attention away from the actual targets.
In this paper, we propose an open-source medium interaction IP camera honeypot that requires minimal settings while supporting a modular architecture for adding new camera models. The honeypot, namely SweetCam, supports the emulation of SSH, RTSP and HTTP. Furthermore, it creates a web-service (HTTP) that depicts an IP camera interface with a login page and the emulation of a camera interface using user-specified 360-degree video streams and images. We deploy instances of the honeypot in different geographical locations, for a period of 3 weeks, and receive a total of 5,780, 1,402 and 218,344 attacks on HTTP, RTSP and SSH services respectively; from 5,924 unique IPs. Lastly, we further analyze the attacks, and identify common Internet scanners (e.g., Shodan) among the services that have contacted the honeypots.
OriginalsprogEngelsk
TitelCPSIoTSec 2023 - Proceedings of the 5th Workshop on CPS and IoT Security and Privacy
Antal sider7
ForlagAssociation for Computing Machinery
Publikationsdato26 nov. 2023
Sider75-81
ISBN (Elektronisk)979-8-4007-0254-9
DOI
StatusUdgivet - 26 nov. 2023
Begivenhed5th Workshop on CPS & IoT Security and Privacy - Copenhagen, Danmark
Varighed: 26 nov. 202326 nov. 2023

Konference

Konference5th Workshop on CPS & IoT Security and Privacy
Land/OmrådeDanmark
ByCopenhagen
Periode26/11/202326/11/2023

Fingeraftryk

Dyk ned i forskningsemnerne om 'SweetCam: an IP Camera Honeypot'. Sammen danner de et unikt fingeraftryk.

Citationsformater