English
 
Help Privacy Policy Disclaimer
  Advanced SearchBrowse

Item

ITEM ACTIONSEXPORT
 
 
DownloadE-Mail
  Third Time's Not a Charm: Exploiting SNMPv3 for Router Fingerprinting

Albakour, T., Gasser, O., Beverly, R., & Smaragdakis, G. (2021). Third Time's Not a Charm: Exploiting SNMPv3 for Router Fingerprinting. Retrieved from https://arxiv.org/abs/2109.15095.

Item is

Files

show Files
hide Files
:
arXiv:2109.15095.pdf (Preprint), 8MB
Name:
arXiv:2109.15095.pdf
Description:
File downloaded from arXiv at 2021-11-09 08:28 Visit https://snmpv3.io for up-to-date SNMPv3 measurement results
OA-Status:
Visibility:
Public
MIME-Type / Checksum:
application/pdf / [MD5]
Technical Metadata:
Copyright Date:
-
Copyright Info:
-

Locators

show

Creators

show
hide
 Creators:
Albakour, Taha1, Author
Gasser, Oliver2, Author           
Beverly, Robert1, Author
Smaragdakis, Georgios1, Author           
Affiliations:
1External Organizations, ou_persistent22              
2Internet Architecture, MPI for Informatics, Max Planck Society, ou_2489697              

Content

show
hide
Free keywords: Computer Science, Networking and Internet Architecture, cs.NI
 Abstract: In this paper, we show that adoption of the SNMPv3 network management
protocol standard offers a unique -- but likely unintended -- opportunity for
remotely fingerprinting network infrastructure in the wild. Specifically, by
sending unsolicited and unauthenticated SNMPv3 requests, we obtain detailed
information about the configuration and status of network devices including
vendor, uptime, and the number of restarts. More importantly, the reply
contains a persistent and strong identifier that allows for lightweight
Internet-scale alias resolution and dual-stack association. By launching active
Internet-wide SNMPv3 scan campaigns, we show that our technique can fingerprint
more than 4.6 million devices of which around 350k are network routers. Not
only is our technique lightweight and accurate, it is complementary to existing
alias resolution, dual-stack inference, and device fingerprinting approaches.
Our analysis not only provides fresh insights into the router deployment
strategies of network operators worldwide, but also highlights potential
vulnerabilities of SNMPv3 as currently deployed.

Details

show
hide
Language(s): eng - English
 Dates: 2021-09-302021-10-062021
 Publication Status: Published online
 Pages: 15 p.
 Publishing info: -
 Table of Contents: -
 Rev. Type: -
 Identifiers: arXiv: 2109.15095
URI: https://arxiv.org/abs/2109.15095
BibTex Citekey: Albakour2109.15095
 Degree: -

Event

show

Legal Case

show

Project information

show

Source

show