ISBN: 978-981-18-1791-5 DOI: 10.18178/wcse.2021.06.008
Research on IoT Malware Based on the ATT&CK Model
Abstract— The security of the IoT has become a hot research area in cyberspace security, among which the malware is a major threat. Based on the ATT&CK model, this paper studies the composition and behavior of IoT malware, constructs a malicious behavior model of IoT malware, and analyzes the technical implementation of each tactic in the malicious behavior model of IoT malware from three aspects: operating system related, target environment related and specific tools related. Based on this, we finally propose the evolution direction of IoT malware, which will be conducive to a more comprehensive grasp of the characteristics of IoT malware, and be supportive for maintaining the security of IoT.
Index Terms— IoT, ATT&CK model, IoT malware, malicious behavior model
Bo Hao, Fei Kang, Ju Yang, Xiaobing Xiong
State Key Laboratory of Mathematical Engineering and Advanced Computing, CHINA
Cite: Bo Hao, Fei Kang, Ju Yang, Xiaobing Xiong, "Research on IoT Malware Based on the ATT&CK Model ," 2021 The 11th International Workshop on Computer Science and Engineering (WCSE 2021), pp. 48-57, Shanghai, China, June 19-21, 2021.