Corpus ID: 18002582

A Kerberos-based UPnP Extension for Secure Home Networks

@inproceedings{ZhuAKU,
  title={A Kerberos-based UPnP Extension for Secure Home Networks},
  author={Hui Zhu and Yuesheng Zhu}
}
Communication and Information Security Lab Shenzhen Graduate School, Peking University, Shenzhen, China huiyaz@sz.pku.edu.cn, zhuys@pkusz.edu.cn Abstract. UPnP is a popular protocol in digital home network. However, no mature security mechanism is provided in current UPnP. In this paper, we propose a new UPnP extension based on Kerberos (KUPnP) to enhance the security of UPnP network. A Key Distribution Centre (KDC) is introduced to handle the mutual authentication between control points and… Expand

Figures and Tables from this paper

An Overview of UPnP-based IoT Security: Threats, Vulnerabilities, and Prospective Solutions
TLDR
This work analyzes security vulnerabilities of UPnP-based IoT systems and identifies attack opportunities by the adversaries leveraging the vulnerabilities, and proposes prospective solutions to secure UPnp- based IoT systems from adversarial operations. Expand

References

SHOWING 1-10 OF 13 REFERENCES
Design and Implementation of Secure Communication Channels over UPnP Networks
TLDR
This paper integrated two technologies, UPnP and secure group communication techniques, to construct an almost zero-configuration secure environment for smart living spaces and successfully builds both point-to-point and broadcast secure channels over the UPnp network. Expand
Secure Universal Plug and Play network
  • V. Pehkonen, J. Koivisto
  • Computer Science
  • 2010 Sixth International Conference on Information Assurance and Security
  • 2010
TLDR
For networks where untrusted devices have to be taken into account, this paper proposes a secure UPnP network architecture, including key management, using Transport Layer Security (TLS). Expand
OpenHouse: A Secure Platform for Distributed Home Services
TLDR
This paper has adopted a fine-grained role and domain based authorization model and studied how the configuration burden for end users can be minimized by classifying services in a security relevant manner and providing homes with default security policies. Expand
Kerberos: an authentication service for computer networks
TLDR
The authors concentrate on authentication for real-time, interactive services that are offered on computer networks, which includes remote login, file system reads and writes, and information retrieval for applications like Mosaic. Expand
Home networking with Universal Plug and Play
TLDR
An overview of the Universal Plug and Play technology and the UPnP Forum, the multicompany organization that develops parts of the architecture is presented, followed by three illustrative usage cases where it could be applied in home networking environments. Expand
UPnP Forum , “ UPnP ® Certified Technology — Your Simple Solution for Home , Office and Small Business interoperability ”
  • 2010
UPnP Forum UPnP® Certified Technology—Your Simple Solution for Home, Office and Small Business interoperability
  • UPnP Forum UPnP® Certified Technology—Your Simple Solution for Home, Office and Small Business interoperability
  • 2010
DeviceSecurity:1 service template for UPnPTM device architecture 1.0
  • UPnP Forum,
  • 2003
DeviceSecurity:1 service template for UPnP™ device architecture 1
  • UPnP Forum
  • 2003
SecurityConsole:1 service template for UPnPTM device architecture 1.0
  • UPnP Forum,
  • 2003
...
1
2
...