TL;DR
This paper investigates the operational strategies, geographical distribution, and interdependencies of IoT backend providers by analyzing their infrastructure, traffic patterns, and potential cascading effects, revealing insights into their global deployment and vulnerabilities.
Contribution
It introduces a methodology to identify and analyze major IoT backends, including their locations, operational strategies, and interdependencies, using passive and active network data.
Findings
Majority of IoT backends operate across multiple countries.
Up to 35% of IoT traffic crosses continents.
Some backends rely on other providers, creating potential cascading failure risks.
Abstract
Internet of Things (IoT) devices are becoming increasingly ubiquitous, e.g., at home, in enterprise environments, and in production lines. To support the advanced functionalities of IoT devices, IoT vendors as well as service and cloud companies operate IoT backends -- the focus of this paper. We propose a methodology to identify and locate them by (a) compiling a list of domains used exclusively by major IoT backend providers and (b) then identifying their server IP addresses. We rely on multiple sources, including IoT backend provider documentation, passive DNS data, and active scanning. For analyzing IoT traffic patterns, we rely on passive network flows from a major European ISP. Our analysis focuses on the top IoT backends and unveils diverse operational strategies -- from operating their own infrastructure to utilizing the public cloud. We find that the majority of the top IoT…
Peer Reviews
No public reviews on file for this paper yet. If you reviewed it on a platform where reviews are public (OpenReview, ICLR, NeurIPS, ICML), you can paste yours below so the community can read it here.
Code & Models
Videos
No videos yet. Explain this paper in a talk, walkthrough, or lecture? Add one.
