Securing Small-Business and Home Internet of Things (IoT) Devices: Mitigating Network-Based Attacks Using Manufacturer Usage Description (MUD)
The NCCoE has demonstrated the ability to ensure that when an IoT device connects to a home or small-business network, MUD can be used to automatically permit network restrictions, thereby increasing the device’s resilience to network-based attacks.
Abstract
27 The goal of the Internet Engineering Task Force’s Manufacturer Usage Description (MUD) specification is 28 for Internet of Things (IoT) devices to behave as intended by the manufacturers of the devices. This is 29 done by providing a standard way for manufacturers to indicate the network communications that a 30 device requires to perform its intended function. When MUD is used, the network will automatically 31 permit the IoT device to send and receive only the traffic it requires to perform as intended, and the 32 network will prohibit all other communication with the device, thereby increasing the device’s resilience 33 to network-based attacks. In this project, the NCCoE has demonstrated the ability to ensure that when 34 an IoT device connects to a home or small-business network, MUD can be used to automatically permit 35