Defense method for configuring weak password vulnerability of internal and external network camera

Abstract

The invention discloses a defense method for configuring weak password vulnerabilities of internal and external network cameras. A honeypot is arranged at a network end of the camera, and a public network end of the camera is accessed to the rear of a router to configure an access control list for the router. In an internal environment, ports 23 and 80 of the camera are exposed through the honeypot, and a scanned traffic packet is obtained, the source IP address of the scanned traffic packet is analyzed, and an intranet attack host is obtained through the honeypot when a camera vulnerability scan attack occurs. In an external network environment, all traffic accessing the camera is uniformly filtered by the router, and the IP address allowed to be accessed is released, otherwise prohibiting. According to the defense method for configuring weak password vulnerabilities of the internal and external network cameras, illegal requests of the external network are filtered by using a router ACL, and all external networks accesses do not need to be forbidden, thereby guaranteeing the functionality of the camera; and a Cowrie honeypot is used for internal network deployment, so that low false alarm rate is achieved, and intrusion method and flow of an attacker can be more clearly understood.

Description

technical field [0001] The present invention relates to an overall defense method for weak camera password loopholes in the Internet of Things environment, mainly used to solve the problem that cameras with default initial login passwords are vulnerable to scan blasting attacks and distributed denial of service (DDoS) attacks due to low password strength. ) attack, by setting router access control list (ACL) and honeypot in the network segment of the camera to achieve simultaneous defense against external network and internal network attacks, which belongs to cyberspace security technology. Background technique [0002] As a security device, the network camera system is widely used in public places such as transportation, schools, enterprises, and shopping malls. With the development of Internet of Things technology, more and more families have also begun to use IP camera systems to protect their home security. In order to facilitate remote monitoring by the administrator, ...

AI Technical Summary

Problems solved by technology

[0004] For the weak password vulnerability of the camera, since the camera password is solidified in the firmware, even if it is restarted, the secondary infection cannot be eliminated. Since the infected camera can still work normally, it is extremely difficult to determine whether it is infected, and if the source of infection cannot be confirmed, it still cannot be confirmed. Fundamentally prevent the camera from being monitored

In view of these circumstances, the defensive measures of this series of cameras are to prohibit the cameras from connecting to the external network, but this cannot meet the requirements such as resource transmission, and there are certain disadvantages

Another defensive measure is to enhance the complex strength of its password, but this method cannot ensure absolute security, nor can it solve the root cause of the continuous scanning damage of infected cameras

Images