Internet-of-things vulnerability scanning system and scanning method

Abstract

The invention discloses an Internet-of-things vulnerability scanning system and a scanning method. The system comprises a traffic sniffer, a scanner, an Internet-of-things vulnerability scanning server and a Web visualization terminal which are connected in sequence. The traffic sniffer is used for passively listening to the communication traffic in an Internet-of-things environment, and actively sending a traffic detection data packet. The traffic sniffer processes the traffic in a physical layer of an actual Internet-of-things environment through software defined radio, decapsulates the traffic and then transmits the traffic to a link layer. The scanner is used for processing traffic data captured by the traffic sniffer, and further used for constructing a data packet and sending the data packet to a target Internet-of-things environment through the traffic sniffer. The beneficial effect is that a real-time online vulnerability analysis can be made and corresponding suggestions can be given.

Description

technical field [0001] The invention relates to an Internet of Things vulnerability scanning system and a scanning method. Background technique [0002] The communication technology protocol mainly adopted by the Internet of Things is wireless transmission, mainly including Wi-Fi, Bluetooth technology, Bluetooth low power consumption technology, ZigBee, Z-Wave and RFID. Compared with Ethernet, which uses optical fiber and wired channels for communication, the communication data of the Internet of Things is directly exposed to the air, so it is more vulnerable to attacks from intruders, and the nodes of the Internet of Things are limited by power, computing power, and storage capabilities. Indirectly, the IoT environment is vulnerable to external attacks. [0003] In the Internet of Things architecture, the perception layer where smart devices are located is at the bottom and the most basic level, and information security at this level is most likely to be threatened. In th...

AI Technical Summary

Problems solved by technology

This requires researchers to have a special understanding of the protocol itself and strong analysis capabilities, and it takes a lot of time, and it is offline analysis, which is slow and inefficient

[0007] 2. Simulation attack method: directly attack the wireless network (such as flood attack and denial of service attack, etc.), so as to judge the loopholes in the wireless network. This method cannot fully discover all loopholes in the wireless sensor network, and will It affects the wireless network, affects the transmission quality of the target network, and cannot determine the loopholes in the protocol itself, so it is not targeted

[0008] 3. Black box testing method: Send a large number of wrong or abnormal data packets to the target network, and then observe whether the target network can process these data packets normally or whether the network crashes, so as to determine whether there are loopholes in the target network. This method is also targeted weak, inefficient

Images