IoT malware: An attribute-based taxonomy, detection mechanisms and challenges

During the past decade, the Internet of Things (IoT) has paved the way for the ongoing digitization of society in unique ways. Its penetration into enterprise and day-to-day lives improved the supply chain in numerous ways. Unfortunately, the profuse diversity of IoT devices has become an attractive...

Descripción completa

Detalles Bibliográficos
Autores principales: Victor, Princy, Lashkari, Arash Habibi, Lu, Rongxing, Sasi, Tinshu, Xiong, Pulei, Iqbal, Shahrear
Formato: Online Artículo Texto
Lenguaje:English
Publicado: Springer US 2023
Materias:
Article
Acceso en línea:https://www.ncbi.nlm.nih.gov/pmc/articles/PMC10170447/
https://www.ncbi.nlm.nih.gov/pubmed/37362097
http://dx.doi.org/10.1007/s12083-023-01478-w
_version_ 1785039228894183424
author Victor, Princy
Lashkari, Arash Habibi
Lu, Rongxing
Sasi, Tinshu
Xiong, Pulei
Iqbal, Shahrear
author_facet Victor, Princy
Lashkari, Arash Habibi
Lu, Rongxing
Sasi, Tinshu
Xiong, Pulei
Iqbal, Shahrear
author_sort Victor, Princy
collection PubMed
description During the past decade, the Internet of Things (IoT) has paved the way for the ongoing digitization of society in unique ways. Its penetration into enterprise and day-to-day lives improved the supply chain in numerous ways. Unfortunately, the profuse diversity of IoT devices has become an attractive target for malware authors who take advantage of its vulnerabilities. Accordingly, enhancing the security of IoT devices has become the primary objective of industrialists and researchers. However, most present studies lack a deep understanding of IoT malware and its various aspects. As understanding IoT malware is the preliminary base of research, in this work, we present an IoT malware taxonomy with 100 attributes based on the IoT malware categories, attack types, attack surfaces, malware distribution architecture, victim devices, victim device architecture, IoT malware characteristics, access mechanisms, programming languages, and protocols. In addition, we have mapped these categories into 77 IoT Malwares identified between 2008 and 2022. Furthermore, To provide insight into the challenges in IoT malware research for future researchers, our study also reviews the existing IoT malware detection works.
format Online
Article
Text
id pubmed-10170447
institution National Center for Biotechnology Information
language English
publishDate 2023
publisher Springer US
record_format MEDLINE/PubMed
spelling pubmed-101704472023-05-11 IoT malware: An attribute-based taxonomy, detection mechanisms and challenges Victor, Princy Lashkari, Arash Habibi Lu, Rongxing Sasi, Tinshu Xiong, Pulei Iqbal, Shahrear Peer Peer Netw Appl Article During the past decade, the Internet of Things (IoT) has paved the way for the ongoing digitization of society in unique ways. Its penetration into enterprise and day-to-day lives improved the supply chain in numerous ways. Unfortunately, the profuse diversity of IoT devices has become an attractive target for malware authors who take advantage of its vulnerabilities. Accordingly, enhancing the security of IoT devices has become the primary objective of industrialists and researchers. However, most present studies lack a deep understanding of IoT malware and its various aspects. As understanding IoT malware is the preliminary base of research, in this work, we present an IoT malware taxonomy with 100 attributes based on the IoT malware categories, attack types, attack surfaces, malware distribution architecture, victim devices, victim device architecture, IoT malware characteristics, access mechanisms, programming languages, and protocols. In addition, we have mapped these categories into 77 IoT Malwares identified between 2008 and 2022. Furthermore, To provide insight into the challenges in IoT malware research for future researchers, our study also reviews the existing IoT malware detection works. Springer US 2023-05-10 /pmc/articles/PMC10170447/ /pubmed/37362097 http://dx.doi.org/10.1007/s12083-023-01478-w Text en © The Author(s), under exclusive licence to Springer Science+Business Media, LLC, part of Springer Nature 2023, Springer Nature or its licensor (e.g. a society or other partner) holds exclusive rights to this article under a publishing agreement with the author(s) or other rightsholder(s); author self-archiving of the accepted manuscript version of this article is solely governed by the terms of such publishing agreement and applicable law. This article is made available via the PMC Open Access Subset for unrestricted research re-use and secondary analysis in any form or by any means with acknowledgement of the original source. These permissions are granted for the duration of the World Health Organization (WHO) declaration of COVID-19 as a global pandemic.
spellingShingle Article
Victor, Princy
Lashkari, Arash Habibi
Lu, Rongxing
Sasi, Tinshu
Xiong, Pulei
Iqbal, Shahrear
IoT malware: An attribute-based taxonomy, detection mechanisms and challenges
title IoT malware: An attribute-based taxonomy, detection mechanisms and challenges
title_full IoT malware: An attribute-based taxonomy, detection mechanisms and challenges
title_fullStr IoT malware: An attribute-based taxonomy, detection mechanisms and challenges
title_full_unstemmed IoT malware: An attribute-based taxonomy, detection mechanisms and challenges
title_short IoT malware: An attribute-based taxonomy, detection mechanisms and challenges
title_sort iot malware: an attribute-based taxonomy, detection mechanisms and challenges
topic Article
url https://www.ncbi.nlm.nih.gov/pmc/articles/PMC10170447/
https://www.ncbi.nlm.nih.gov/pubmed/37362097
http://dx.doi.org/10.1007/s12083-023-01478-w
work_keys_str_mv AT victorprincy iotmalwareanattributebasedtaxonomydetectionmechanismsandchallenges
AT lashkariarashhabibi iotmalwareanattributebasedtaxonomydetectionmechanismsandchallenges
AT lurongxing iotmalwareanattributebasedtaxonomydetectionmechanismsandchallenges
AT sasitinshu iotmalwareanattributebasedtaxonomydetectionmechanismsandchallenges
AT xiongpulei iotmalwareanattributebasedtaxonomydetectionmechanismsandchallenges
AT iqbalshahrear iotmalwareanattributebasedtaxonomydetectionmechanismsandchallenges

Ejemplares similares