IoT security, was Krebs on Security booted off Akamai network

John Levine johnl at iecc.com
Mon Oct 10 17:18:41 UTC 2016


>> It helps solve the bad (including manufacturer's default) password
>> problem which was one of the attack vectors.

That problem has been adddressed pretty well by giving each device a
random password and printing the password on the device.  Another hack
that works pretty well is a button you push that allows TOFU
authentication for 30 seconds or so.

Neither is perfect, but they both largely solve the problem of
scanning for open ports unless the scanner happens to scan at exactly
the right time.




More information about the NANOG mailing list