IoT

Chaired By:
Peter Steinhäuser, Anna Maria Mandalari
Date:
Time:
(UTC +0300)
Room:
Side Room
Transcript:
View Transcript
Meetecho chat:
View Chat
5 min
Introduction & Housekeeping
Peter Steinhaeuser

Welcome and introduction for the IoT Working Group Session.

20 min
Cyberattack Observation Using IoT Honeypots at Yokohama National University
Takayuki Sasaki

We developed X-POT, an adaptive HTTP honeypot that emulates a wide range of IoT devices using collected WebUI data. Our analysis pipeline combines rule-based detection and LLM-assisted automatic classification to identify new exploits and targeted devices. Through long-term operation, we captured the entire lifecycle of IoT exploits, from their emergence to decline. We also observed zero-day attacks and campaigns exploiting IoT and industrial systems such as solar power monitors. The collected …

20 min
IPv6’s Unintended Fingerprints: Extracting Insights from EUI-64
Bart Batenburg, Work was done at University of Twente, currently working at Novoserve

The default method of Stateless Address Autoconfiguration (SLAAC) in IPv6 is EUI-64, which generates the Interface Identifier (the last 64 bits of an address) using a device’s MAC address. This approach results in a consistent Interface Identifier across different networks, allowing devices,and by extension their users, to be tracked.

To mitigate this privacy risk, Privacy Extensions have been introduced to randomize the Interface Identifier. However, like many technologies on the internet, ad…

30 min
Beyond the Hype: Investigating Matter Standard’s Security and Privacy
Andrew Losty, PhD student at UCL (University College London) Dept Electronic and Electrical Engineering

Matter, is a smart-home connectivity standard developed by the Connectivity Standards Alliance with Apple, Google, Amazon, and Samsung along with over 26o other vendors. It promises secure, interoperable IoT communication. This study examines Matter’s architecture—including its IPv6-based transport, Thread and Wi-Fi integration, device attestation, and certificate-based onboarding—and its interaction with existing ecosystems. The presentation critically assesses Matter’s end-to-end encryption,…

10 min
The Cyber Resilience Act: Current Status and Next Steps
Anna Maria Mandalari, University College London

This talk provides an overview of the progress made so far in developing standards to support the implementation of the EU Cyber Resilience Act, with a focus on the IoT ecosystem. It summarizes the ongoing work and achievements to date and highlights how the RIPE community can contribute expertise, operational experience and technical input to ensure that the emerging standards reflect real-world network practices and support a secure, resilient and interoperable Internet infrastructure.

5 min
Closing
Peter Steinhaeuser

RIPE IoT WG Session Closing