IoT Network Security & Attacks

Questions and Answers

An attacker intercepts communication between an IoT sensor and a central server. What type of attack is this?

• Malware Infection
• Denial-of-Service (DoS)
• Man-in-the-Middle (MitM) (correct)
• Brute Force Attack

Which network isolation technique is most suitable for segmenting IoT devices based on their trust level within a physical network?

• Network Address Translation (NAT)
• Demilitarized Zones (DMZs)
• Virtual Local Area Networks (VLANs) (correct)
• Firewall Rules

What is the primary purpose of implementing network isolation in an IoT environment?

• To enable direct internet access for all IoT devices
• To increase network bandwidth for IoT devices
• To simplify network management and device configuration
• To limit the impact of a security compromise and prevent lateral movement (correct)

Which security measure enforces policies to ensure that only authorized IoT devices with proper security configurations can connect to the network?

Network Access Control (NAC) (D)

A company wants to protect its internal network from devices that require direct internet access, such as web servers for IoT device management. Which network isolation technique should they implement?

Demilitarized Zone (DMZ) (B)

Flashcards

Denial-of-Service (DoS) Attack

An attack that floods a device or network with excessive traffic, rendering it inaccessible to legitimate users.

Man-in-the-Middle (MitM) Attack

An attack where an attacker intercepts communications between devices to steal data or inject malicious code.

Malware Infections

Malicious software that infects devices, compromising their functionality and allowing attackers to gain control.

Network Isolation

A security strategy that separates devices and networks to limit the impact of a security breach.

Virtual Local Area Networks (VLANs)

Separate virtual networks within a physical network, which allows for segmentation of devices based on trust level.

Study Notes

• The Internet of Things (IoT) presents unique network security challenges.
• The increasing number of connected devices often have limited security features.
• Limited security makes IoT devices vulnerable to various network attacks.

Network Attacks

• Network attacks exploit vulnerabilities in network infrastructure and connected devices.
• Exploitation leads to unauthorized access, data theft, or disrupted operations.
• Common attacks targetting IoT devices include denial-of-service (DoS) attacks.
• DoS attacks overwhelm a device or network with traffic.
• Overwhelmed devices or networks become unavailable to legitimate uses.
• Man-in-the-middle (MitM) attacks intercept communication between devices.
• Interception leads to data theft or malicious code injection.
• Malware infections spread malicious software to compromise devices.
• Compromised devices allow the attacker to gain control over their functionality.

Network Isolation

• Network isolation is a security strategy that separates devices and networks.
• It limits the impact of a compromise and prevents attackers from spreading laterally across a network.
• Isolation prevents access to sensitive data.
• Virtual Local Area Networks (VLANs) create separate virtual networks within a physical network.
• VLANs allow for segmentation of devices based on their trust level.
• Demilitarized Zones (DMZs) isolate devices that require direct internet access.
• Web servers are an example of a service that should be in a DMZ, isolated from the internal network.
• Firewall rules restrict communication between devices based on specific criteria.
• Criteria include IP addresses, ports, and protocols.
• Network Access Control (NAC) enforces policies to ensure only authorized devices with appropriate security configurations can connect to the network.