Ethical Hacking of an IoT-device:Threat Assessment andPenetration Testing
Abstract Internet of things (IoT) devices are becoming more prevalent.Due to a rapidly growing market of these appliances, impropersecurity measures lead to an expanding range of attacks. There isa devoir of testing and securing these devices to contribute to amore sustainable society. This thesis h...
Main Authors: | , |
---|---|
Format: | Others |
Language: | English |
Published: |
KTH, Datavetenskap
2020
|
Subjects: | |
Online Access: | http://urn.kb.se/resolve?urn=urn:nbn:se:kth:diva-282916 |
id |
ndltd-UPSALLA1-oai-DiVA.org-kth-282916 |
---|---|
record_format |
oai_dc |
spelling |
ndltd-UPSALLA1-oai-DiVA.org-kth-2829162020-10-14T05:29:33ZEthical Hacking of an IoT-device:Threat Assessment andPenetration TestingengEtisk Hackning av en IoT-enhet: Hotbedömning och PenetrationstestningRadholm, FredrikAbefelt, NiklasKTH, DatavetenskapKTH, Hälsoinformatik och logistik2020Engineering and TechnologyTeknik och teknologierAbstract Internet of things (IoT) devices are becoming more prevalent.Due to a rapidly growing market of these appliances, impropersecurity measures lead to an expanding range of attacks. There isa devoir of testing and securing these devices to contribute to amore sustainable society. This thesis has evaluated the securityof an IoT-refrigerator by using ethical hacking, where a threatmodel was produced to identify vulnerabilities. Penetration testswere performed based on the threat model. The results from thepenetration tests did not find any exploitable vulnerabilities. Theconclusion from evaluating the security of this Samsungrefrigerator can say the product is secure and contributes to aconnected, secure, and sustainable society. Keywords Internet of things (IoT), device, security, penetration testing,threat assessment, vulnerabilities SammanfattningInternet of Things (IoT) enheter blir mer allmäntförekommande. På grund av en snabbt expanderande marknadav dessa apparater, har bristfälliga säkerhetsåtgärder resulterattill en mängd olika attacker. Det finns ett behov att testa dessaenheter for att bidra till ett mer säkert och hållbart samhälle.Denna avhandling har utvärderat säkerheten av ett IoT-kylskåpgenom att producera en hot modell för att identifierasårbarheter. Penetrationstester har utförts på enheten, baseradepå hot modellen. Resultatet av penetrationstesterna hittade ingautnyttjningsbara sårbarheter. Slutsatsen från utvärderingen avsäkerheten på Samsung-kylskåpet är att produkten är säker ochbidrar till ett uppkopplat, säkert, och hållbart samhälle.KeywordsInternet of things (IoT), enhet, säkerhet, penetrationstester,hotbedömning, sårbarheter Student thesisinfo:eu-repo/semantics/bachelorThesistexthttp://urn.kb.se/resolve?urn=urn:nbn:se:kth:diva-282916TRITA-CBH-GRU ; 2020:210application/pdfinfo:eu-repo/semantics/openAccess |
collection |
NDLTD |
language |
English |
format |
Others
|
sources |
NDLTD |
topic |
Engineering and Technology Teknik och teknologier |
spellingShingle |
Engineering and Technology Teknik och teknologier Radholm, Fredrik Abefelt, Niklas Ethical Hacking of an IoT-device:Threat Assessment andPenetration Testing |
description |
Abstract Internet of things (IoT) devices are becoming more prevalent.Due to a rapidly growing market of these appliances, impropersecurity measures lead to an expanding range of attacks. There isa devoir of testing and securing these devices to contribute to amore sustainable society. This thesis has evaluated the securityof an IoT-refrigerator by using ethical hacking, where a threatmodel was produced to identify vulnerabilities. Penetration testswere performed based on the threat model. The results from thepenetration tests did not find any exploitable vulnerabilities. Theconclusion from evaluating the security of this Samsungrefrigerator can say the product is secure and contributes to aconnected, secure, and sustainable society. Keywords Internet of things (IoT), device, security, penetration testing,threat assessment, vulnerabilities === SammanfattningInternet of Things (IoT) enheter blir mer allmäntförekommande. På grund av en snabbt expanderande marknadav dessa apparater, har bristfälliga säkerhetsåtgärder resulterattill en mängd olika attacker. Det finns ett behov att testa dessaenheter for att bidra till ett mer säkert och hållbart samhälle.Denna avhandling har utvärderat säkerheten av ett IoT-kylskåpgenom att producera en hot modell för att identifierasårbarheter. Penetrationstester har utförts på enheten, baseradepå hot modellen. Resultatet av penetrationstesterna hittade ingautnyttjningsbara sårbarheter. Slutsatsen från utvärderingen avsäkerheten på Samsung-kylskåpet är att produkten är säker ochbidrar till ett uppkopplat, säkert, och hållbart samhälle.KeywordsInternet of things (IoT), enhet, säkerhet, penetrationstester,hotbedömning, sårbarheter |
author |
Radholm, Fredrik Abefelt, Niklas |
author_facet |
Radholm, Fredrik Abefelt, Niklas |
author_sort |
Radholm, Fredrik |
title |
Ethical Hacking of an IoT-device:Threat Assessment andPenetration Testing |
title_short |
Ethical Hacking of an IoT-device:Threat Assessment andPenetration Testing |
title_full |
Ethical Hacking of an IoT-device:Threat Assessment andPenetration Testing |
title_fullStr |
Ethical Hacking of an IoT-device:Threat Assessment andPenetration Testing |
title_full_unstemmed |
Ethical Hacking of an IoT-device:Threat Assessment andPenetration Testing |
title_sort |
ethical hacking of an iot-device:threat assessment andpenetration testing |
publisher |
KTH, Datavetenskap |
publishDate |
2020 |
url |
http://urn.kb.se/resolve?urn=urn:nbn:se:kth:diva-282916 |
work_keys_str_mv |
AT radholmfredrik ethicalhackingofaniotdevicethreatassessmentandpenetrationtesting AT abefeltniklas ethicalhackingofaniotdevicethreatassessmentandpenetrationtesting AT radholmfredrik etiskhackningaveniotenhethotbedomningochpenetrationstestning AT abefeltniklas etiskhackningaveniotenhethotbedomningochpenetrationstestning |
_version_ |
1719351790975057920 |