Abstract: As the number of commercial IoT devices grows, so do cyberattacks that target and exploit vulnerabilities on them. Given that some of the attack vectors used in the wild against IoT devices might be novel or not well understood, it is important to have up-to-date threat intelligence regarding them, in order to be able to coordinate quick remediation steps on devices that have not yet been attacked. In this talk we review the efforts performed at the RESILIoT project to design, build and maintain a scalable and highly interactive IoT Honeypot at iTrust. We report on the results of this effort, and the insights gained on data collected on the wild over the course of several months. We also highlight some challenges in order to improve the scope of the devices covered by the Honeypot, its scalability and the ability to analyze and share the data collected. Such challenges are the subject of study of a recently launched NSoE project.
Bio: Martín Ochoa is Head of Research of the Total Fraud Protection division at Cyxtera Technologies in Bogotá, Colombia. He holds a PhD in Computer Science from the TU Dortmund (Germany), and M.Sc. and B.Sc. degrees in math and systems engineering. He has published over 50 scientific papers in Cybersecurity and has been a speaker at Black Hat US 2019. Previous to his current appointment he was assistant professor at the Universidad del Rosario, the Singapore University of Technology and Design, post-doctoral researcher at the TU München and cybersecurity researcher at Siemens in Munich, Germany. He is interested in applied and foundational aspects of Software and Systems Security.