Vulnerability and Attack Repository for IoT (VARIoT)

  • Project name: Vulnerability and Attack Repository for IoT (VARIoT)
  • Website: https://www.variot.eu/
  • Source of funding: European Commission (CEF- Telecom)
  • Project goal: The Project's overall objective is to create a service providing actionable information regarding Internet of Things (IoT) devices which can be processed manually or automatically and that can be used to ensure their cybersecurity. Relevant data will be made available through the European Data Portal (EDP), as well as through other interfaces, such as Malware Information Sharing Platform (MISP), and via Shadowserver’s free daily remediation feeds.

PROJECT DESCRIPTION:

The Project's overall objective is to create a service providing actionable information regarding Internet of Things (IoT) devices which can be processed manually or automatically and that can be used to ensure their cybersecurity. Relevant data will be made available through the European Data Portal (EDP), as well as through other interfaces, such as Malware Information Sharing Platform (MISP), and via Shadowserver’s free daily remediation feeds.

Specifically, the Project will:

  • Create a database covering vulnerabilities and exploits related to IoT devices, constantly updated by harvesting various sources of information;
  • Improve IoT-related data collection through large-scale systematic mapping of IoT devices on the Internet;
  • Create a database of aggregated, correlated and enhanced information of various types relating to IoT including vulnerabilities, exploits, Indicators of Compromise (IoC), events, incidents, malware samples, etc.;
  • Create datasets of IoT traffic, of both legitimate and malicious natures, including models learnt to characterize these traffics, and their associated features, as well as raw packet captures;
  • Create mechanisms of active monitoring and harvesting of information of IoT devices (such as existence, services provided etc.) and information about new types of threats;
  • Create interfaces to share selected data.

PROJECT RESULTS:

The project has just started, the results are under development.

PROJECT PARTICIPANTS:

  • Research and Academic Computer Network – National Research Institute (NASK - PIB) - coordinator
  • Stichting The Shadowserver Foundation Europe (Shadowserver, Netherlands)
  • Security Made In Letzebuerg G.I.E. (SMILE, Luxemburg)
  • Institut Mines-Télécom (IMT, France)
  • Mondragon Goi Eskola Politeknikoa Jose Maria Arizmendiarrieta S COOP (MGEP, Spain)

RESEARCH PAPERS:

The project has just started, publications are in progress.