Exposed by Default: A Security Analysis of Home Router Default Settings and Beyond

IF 8.9 1区计算机科学 Q1 COMPUTER SCIENCE, INFORMATION SYSTEMS IEEE Internet of Things Journal Pub Date : 2024-11-19 DOI:10.1109/JIOT.2024.3502405

Junjian Ye;Xavier de Carné de Carnavalet;Lianying Zhao;Mengyuan Zhang;Lifa Wu;Wei Zhang

{"title":"Exposed by Default: A Security Analysis of Home Router Default Settings and Beyond","authors":"Junjian Ye;Xavier de Carné de Carnavalet;Lianying Zhao;Mengyuan Zhang;Lifa Wu;Wei Zhang","doi":"10.1109/JIOT.2024.3502405","DOIUrl":null,"url":null,"abstract":"With the popularity of the Internet, home routers have become crucial for the security of home networks. However, according to the results of our user survey, home routers are often deployed with minimal changes to the factory default settings, which may pose risks to user security and privacy. To systematically evaluate potential risks, we designed a threat-model-based framework and conducted a comprehensive analysis of 40 commercial off-the-shelf home routers from 14 brands. We found a variety of security issues, among which incorrect implementation of TLS is the most common. To improve the efficiency of manually detecting TLS certificate validation vulnerabilities without real routers, we proposed a heuristic method that can narrow down the search scope in firmware and proved its effectiveness with 30 available firmware images of the routers we purchased. Moreover, we evaluated the security of custom remote management protocols and found several cryptographic misuses. Finally, we proposed several recommendations for extending the analysis framework and discussed our ideas about automatically detecting security issues to highlight the need for heightened scrutiny of default settings and inspire other researchers.","PeriodicalId":54347,"journal":{"name":"IEEE Internet of Things Journal","volume":"12 2","pages":"1182-1199"},"PeriodicalIF":8.9000,"publicationDate":"2024-11-19","publicationTypes":"Journal Article","fieldsOfStudy":null,"isOpenAccess":false,"openAccessPdf":"","citationCount":"0","resultStr":null,"platform":"Semanticscholar","paperid":null,"PeriodicalName":"IEEE Internet of Things Journal","FirstCategoryId":"94","ListUrlMain":"https://ieeexplore.ieee.org/document/10758308/","RegionNum":1,"RegionCategory":"计算机科学","ArticlePicture":[],"TitleCN":null,"AbstractTextCN":null,"PMCID":null,"EPubDate":"","PubModel":"","JCR":"Q1","JCRName":"COMPUTER SCIENCE, INFORMATION SYSTEMS","Score":null,"Total":0}

引用次数: 0

Abstract

With the popularity of the Internet, home routers have become crucial for the security of home networks. However, according to the results of our user survey, home routers are often deployed with minimal changes to the factory default settings, which may pose risks to user security and privacy. To systematically evaluate potential risks, we designed a threat-model-based framework and conducted a comprehensive analysis of 40 commercial off-the-shelf home routers from 14 brands. We found a variety of security issues, among which incorrect implementation of TLS is the most common. To improve the efficiency of manually detecting TLS certificate validation vulnerabilities without real routers, we proposed a heuristic method that can narrow down the search scope in firmware and proved its effectiveness with 30 available firmware images of the routers we purchased. Moreover, we evaluated the security of custom remote management protocols and found several cryptographic misuses. Finally, we proposed several recommendations for extending the analysis framework and discussed our ideas about automatically detecting security issues to highlight the need for heightened scrutiny of default settings and inspire other researchers.

查看原文

微信好友朋友圈 QQ好友复制链接

本刊更多论文

默认暴露：家用路由器默认设置及其他设置的安全分析

随着互联网的普及，家庭路由器已经成为家庭网络安全的关键。然而，根据我们的用户调查结果，家庭路由器通常只对出厂默认设置进行很小的更改，这可能会对用户的安全和隐私构成风险。为了系统地评估潜在风险，我们设计了一个基于威胁模型的框架，并对来自14个品牌的40个商用现成家用路由器进行了全面分析。我们发现了各种各样的安全问题，其中TLS的错误实现是最常见的。为了提高在没有真实路由器的情况下手动检测TLS证书验证漏洞的效率，我们提出了一种启发式方法，可以缩小固件的搜索范围，并使用我们购买的30个路由器的可用固件映像验证了该方法的有效性。此外，我们评估了自定义远程管理协议的安全性，并发现了一些加密误用。最后，我们提出了一些扩展分析框架的建议，并讨论了我们关于自动检测安全问题的想法，以强调对默认设置进行严格审查的必要性，并激励其他研究人员。

本文章由计算机程序翻译，如有差异，请以英文原文为准。

求助全文

约1分钟内获得全文去求助

来源期刊

IEEE Internet of Things Journal Computer Science-Information Systems

CiteScore

17.60

自引率

13.20%

发文量

1982

期刊介绍： The EEE Internet of Things (IoT) Journal publishes articles and review articles covering various aspects of IoT, including IoT system architecture, IoT enabling technologies, IoT communication and networking protocols such as network coding, and IoT services and applications. Topics encompass IoT's impacts on sensor technologies, big data management, and future internet design for applications like smart cities and smart homes. Fields of interest include IoT architecture such as things-centric, data-centric, service-oriented IoT architecture; IoT enabling technologies and systematic integration such as sensor technologies, big sensor data management, and future Internet design for IoT; IoT services, applications, and test-beds such as IoT service middleware, IoT application programming interface (API), IoT application design, and IoT trials/experiments; IoT standardization activities and technology development in different standard development organizations (SDO) such as IEEE, IETF, ITU, 3GPP, ETSI, etc.