1 option
2010 13th International Conference on Computational Science and Engineering
- Format:
- Book
- Author/Creator:
- IEEE International Conference on Computational Science and Engineering, author.
- Language:
- English
- Subjects (All):
- Computer engineering--Congresses.
- Computer engineering.
- Physical Description:
- 1 online resource (xxviii, 442 pages) : illustrations
- Place of Publication:
- [Place of publication not identified] IEEE 2011
- Language Note:
- English
- Summary:
- Universal Plug and Play (UPnP) technology is gaining popularity day by day since this technology reduces the complexity associated with the installation and management of devices and network services. As a result, most of the modern consumer electronics and intelligent appliances are now equipped with UPnP capabilities. However, there exist several potential vulnerabilities in the UPnP protocol implementation that can be exploited by a malicious attacker to cause financial or reputation damage to a victim. In this paper, we have analyzed the general architecture of UPnP protocol and presented three potential vulnerabilities of UPnP protocol implementation namely Power consumption, Denial of Service and Buffer overflow. Furthermore, we have exploited these vulnerabilities to perform several attacks and analyzed the results of these attacks. Finally, we have proposed several schemes to thwart these attacks and to improve the security state of the UPnP protocol.
- Notes:
- Bibliographic Level Mode of Issuance: Monograph
- ISBN:
- 9780769543239
- 0769543235
The Penn Libraries is committed to describing library materials using current, accurate, and responsible language. If you discover outdated or inaccurate language, please fill out this feedback form to report it and suggest alternative language.