IEICE Technical Committee Submission System
Conference Paper's Information
Online Proceedings
[Sign in]
Tech. Rep. Archives
 Go Top Page Go Previous   [Japanese] / [English] 

Paper Abstract and Keywords
Presentation 2021-03-01 14:30
Analyzing the Transition of Vulnerabilities Targeted by IoT Malware
Kaichi Sameshima, Takayuki Sasaki, Rui Tanabe, Katsunari Yoshioka, Koji Nakao, Tsutomu Matsumoto (YNU) ICSS2020-40
Abstract (in Japanese) (See Japanese page) 
(in English) While the popularity of IoT devices are rapidly growing, vulnerable IoT devices have been the target of cyber-attacks. In this research, we dynamically analyzed 5,855 samples of IoT malware collected over the past two years by IoT honeypots and investigate the attack functions using vulnerabilities incorporated in these malwares. As a result of the experiment, we confirmed that the malware samples collected in 2018 attacked at least 8 types of known vulnerabilities in 12 ports, while at least 31 types of known vulnerabilities targeting 44 ports were observed from the malware samples collected in 2020. The targeted vulnerabilities were ranging from those published 11 years before to those published 1 months ago from the sample collection that, the variety and the functions targeting old and new vulnerabilities have been incorporated into IoT malware. In addition, targeted vulnerabilities include not only those in IoT device but also those in general Web service, and that IoT malware are used in attacks targeting Web services.
Keyword (in Japanese) (See Japanese page) 
(in English) IoT / Malware / Dynamic Analysis / / / / /  
Reference Info. IEICE Tech. Rep., vol. 120, no. 384, ICSS2020-40, pp. 84-89, March 2021.
Paper # ICSS2020-40 
Date of Issue 2021-02-22 (ICSS) 
ISSN Print edition: ISSN 0913-5685  Online edition: ISSN 2432-6380
All rights are reserved and no part of this publication may be reproduced or transmitted in any form or by any means, electronic or mechanical, including photocopy, recording, or any information storage and retrieval system, without permission in writing from the publisher. Notwithstanding, instructors are permitted to photocopy isolated articles for noncommercial classroom use without fee. (License No.: 10GA0019/12GB0052/13GB0056/17GB0034/18GB0034)
Download PDF ICSS2020-40

Conference Information
Committee ICSS IPSJ-SPT  
Conference Date 2021-03-01 - 2021-03-02 
Place (in Japanese) (See Japanese page) 
Place (in English) Online 
Topics (in Japanese) (See Japanese page) 
Topics (in English) Security, Trust, etc. 
Paper Information
Registration To ICSS 
Conference Code 2021-03-ICSS-SPT 
Language Japanese 
Title (in Japanese) (See Japanese page) 
Sub Title (in Japanese) (See Japanese page) 
Title (in English) Analyzing the Transition of Vulnerabilities Targeted by IoT Malware 
Sub Title (in English)  
Keyword(1) IoT  
Keyword(2) Malware  
Keyword(3) Dynamic Analysis  
1st Author's Name Kaichi Sameshima  
1st Author's Affiliation Yokohama National University (YNU)
2nd Author's Name Takayuki Sasaki  
2nd Author's Affiliation Yokohama National University (YNU)
3rd Author's Name Rui Tanabe  
3rd Author's Affiliation Yokohama National University (YNU)
4th Author's Name Katsunari Yoshioka  
4th Author's Affiliation Yokohama National University (YNU)
5th Author's Name Koji Nakao  
5th Author's Affiliation Yokohama National University (YNU)
6th Author's Name Tsutomu Matsumoto  
6th Author's Affiliation Yokohama National University (YNU)
7th Author's Name  
7th Author's Affiliation ()
8th Author's Name  
8th Author's Affiliation ()
9th Author's Name  
9th Author's Affiliation ()
10th Author's Name  
10th Author's Affiliation ()
11th Author's Name  
11th Author's Affiliation ()
12th Author's Name  
12th Author's Affiliation ()
13th Author's Name  
13th Author's Affiliation ()
14th Author's Name  
14th Author's Affiliation ()
15th Author's Name  
15th Author's Affiliation ()
16th Author's Name  
16th Author's Affiliation ()
17th Author's Name  
17th Author's Affiliation ()
18th Author's Name  
18th Author's Affiliation ()
19th Author's Name  
19th Author's Affiliation ()
20th Author's Name  
20th Author's Affiliation ()
Date Time 2021-03-01 14:30:00 
Presentation Time 25 
Registration for ICSS 
Paper # IEICE-ICSS2020-40 
Volume (vol) IEICE-120 
Number (no) no.384 
Page pp.84-89 
#Pages IEICE-6 
Date of Issue IEICE-ICSS-2021-02-22 

[Return to Top Page]

[Return to IEICE Web Page]

The Institute of Electronics, Information and Communication Engineers (IEICE), Japan