MUDIS: MUD Inspection System

Anat Bremler-Barr, Bar Meyuhas, Ran Shister

Research output: Chapter in Book/Report/Conference proceedingConference contributionpeer-review

Abstract

The Manufacturer Usage Description (MUD) is an IETF white-list protection scheme that formalizes the authorized network behavior in a MUD file; this MUD file can then be used as a type of firewall mechanism.This demo introduces MUDIS, a MUD Inspection System that inspects the network behavior of devices, based on their formal description in the MUD file. We present several use-cases in which MUDIS is useful, including examining the impact of device location, the impact of a firmware update, the correlation of network behavior between different devices of the same manufacture, and more.MUDIS inspects two MUD files, clusters together and graph-ically visualizes identical, similar, and dissimilar rules. It then calculates a similarity score that measures the similarity between them both. It also generalizes the two MUD files where possible, such that the resulting generalized MUD covers all the permitted (white-list) network behavior for both MUDs.Our open-source MUDIS tool and proof-of-concept dataset are available for researchers and IoT manufacturers, allowing anyone to gain meaningful insights over the network behavior of IoT devices.

Original languageEnglish
Title of host publicationProceedings of the IEEE/IFIP Network Operations and Management Symposium 2022
Subtitle of host publicationNetwork and Service Management in the Era of Cloudification, Softwarization and Artificial Intelligence, NOMS 2022
EditorsPal Varga, Lisandro Zambenedetti Granville, Alex Galis, Istvan Godor, Noura Limam, Prosper Chemouil, Jerome Francois, Marc-Oliver Pahl
PublisherInstitute of Electrical and Electronics Engineers Inc.
ISBN (Electronic)9781665406017
DOIs
StatePublished - 2022
Externally publishedYes
Event2022 IEEE/IFIP Network Operations and Management Symposium, NOMS 2022 - Budapest, Hungary
Duration: 25 Apr 202229 Apr 2022

Publication series

NameProceedings of the IEEE/IFIP Network Operations and Management Symposium 2022: Network and Service Management in the Era of Cloudification, Softwarization and Artificial Intelligence, NOMS 2022

Conference

Conference2022 IEEE/IFIP Network Operations and Management Symposium, NOMS 2022
Country/TerritoryHungary
CityBudapest
Period25/04/2229/04/22

Bibliographical note

Publisher Copyright:
© 2022 IEEE.

Fingerprint

Dive into the research topics of 'MUDIS: MUD Inspection System'. Together they form a unique fingerprint.

Cite this