@inproceedings{9c873741abaf46028dc37b4703781927,
title = "An Overview of UPnP-based IoT Security: Threats, Vulnerabilities, and Prospective Solutions",
abstract = "Advances in the development and increased availability of smart devices ranging from small sensors to complex cloud infrastructures as well as various networking technologies and communication protocols have supported the rapid expansion of Internet of Things deployments. The Universal Plug and Play (UPnP) protocol has been widely accepted and used in the IoT domain to support interactions among heterogeneous IoT devices, in part due to zero configuration implementation which makes it feasible for use in large-scale networks. The popularity and ubiquity of UPnP to support IoT systems necessitate an exploration of security risks associated with the use of the protocol for IoT deployments. In this work, we analyze security vulnerabilities of UPnP-based IoT systems and identify attack opportunities by the adversaries leveraging the vulnerabilities. Finally, we propose prospective solutions to secure UPnP-based IoT systems from adversarial operations.",
keywords = "IoT, IoT Security, Secure Service Advertisement, Secure Service Discovery, UPnP",
author = "Golam Kayas and Mahmud Hossain and Jamie Payton and Islam, \{S. M.Riazul\}",
note = "Publisher Copyright: {\textcopyright} 2020 IEEE.; 11th Annual IEEE Information Technology, Electronics and Mobile Communication Conference, IEMCON 2020 ; Conference date: 04-11-2020 Through 07-11-2020",
year = "2020",
month = nov,
day = "4",
doi = "10.1109/IEMCON51383.2020.9284885",
language = "English (US)",
series = "11th Annual IEEE Information Technology, Electronics and Mobile Communication Conference, IEMCON 2020",
publisher = "Institute of Electrical and Electronics Engineers Inc.",
pages = "452--460",
editor = "Rajashree Paul",
booktitle = "11th Annual IEEE Information Technology, Electronics and Mobile Communication Conference, IEMCON 2020",
address = "United States",
}