Logo
ScienceStack
Table of Contents
Fetching ...
Sign In

LED there be DoS: Exploiting variable bitrate IP cameras for network DoS

Emmanuel Goldberg, Oleg Brodt, Aviad Elyashar, Rami Puzis

TL;DR

This work identifies a novel cyber-physical DoS threat by exploiting variable bitrate IP cameras with a line-of-sight laser to force excessive network traffic. It presents a low-cost laser flicker setup, a formal threat model, and lab-based validation showing significant disruption in both wired and wireless networks, including RTT inflation and severe packet loss. The study highlights that manipulating physical environment can reliably degrade digital network services without compromising devices digitally, and it contributes a formal taxonomy of physical-to-digital and digital-to-physical spillovers to guide future defense research. Practical mitigations such as network segmentation, traffic shaping, and camera rate controls are proposed, emphasizing defense in depth for CPS environments where camera traffic competes for shared resources.

Abstract

Variable-bitrate video streaming is ubiquitous in video surveillance and CCTV, enabling high-quality video streaming while conserving network bandwidth. However, as the name suggests, variable-bitrate IP cameras can generate sharp traffic spikes depending on the dynamics of the visual input. In this paper, we show that the effectiveness of video compression can be reduced by up to 6X using a simple laser LED pointing at a variable-bitrate IP camera, forcing the camera to generate excessive network traffic. Experiments with IP cameras connected to wired and wireless networks indicate that a laser attack on a single camera can cause significant packet loss in systems sharing the network with the camera and reduce the available bandwidth of a shared network link by 90%. This attack represents a new class of cyber-physical attacks that manipulate variable bitrate devices through changes in the physical environment without a digital presence on the device or the network. We also analyze the broader view of multidimensional cyberattacks that involve both the physical and digital realms and present a taxonomy that categorizes attacks based on their direction of influence (physical-to-digital or digital-to-physical) and their method of operation (environment-driven or device-driven), highlighting multiple areas for future research.

LED there be DoS: Exploiting variable bitrate IP cameras for network DoS

TL;DR

This work identifies a novel cyber-physical DoS threat by exploiting variable bitrate IP cameras with a line-of-sight laser to force excessive network traffic. It presents a low-cost laser flicker setup, a formal threat model, and lab-based validation showing significant disruption in both wired and wireless networks, including RTT inflation and severe packet loss. The study highlights that manipulating physical environment can reliably degrade digital network services without compromising devices digitally, and it contributes a formal taxonomy of physical-to-digital and digital-to-physical spillovers to guide future defense research. Practical mitigations such as network segmentation, traffic shaping, and camera rate controls are proposed, emphasizing defense in depth for CPS environments where camera traffic competes for shared resources.

Abstract

Variable-bitrate video streaming is ubiquitous in video surveillance and CCTV, enabling high-quality video streaming while conserving network bandwidth. However, as the name suggests, variable-bitrate IP cameras can generate sharp traffic spikes depending on the dynamics of the visual input. In this paper, we show that the effectiveness of video compression can be reduced by up to 6X using a simple laser LED pointing at a variable-bitrate IP camera, forcing the camera to generate excessive network traffic. Experiments with IP cameras connected to wired and wireless networks indicate that a laser attack on a single camera can cause significant packet loss in systems sharing the network with the camera and reduce the available bandwidth of a shared network link by 90%. This attack represents a new class of cyber-physical attacks that manipulate variable bitrate devices through changes in the physical environment without a digital presence on the device or the network. We also analyze the broader view of multidimensional cyberattacks that involve both the physical and digital realms and present a taxonomy that categorizes attacks based on their direction of influence (physical-to-digital or digital-to-physical) and their method of operation (environment-driven or device-driven), highlighting multiple areas for future research.

Paper Structure

This paper contains 33 sections, 10 figures, 2 tables.

Table of Contents

  1. Introduction
  2. Background and Related Work
  3. IP Cameras as Network Devices
  4. DDoS Attacks and IP Cameras
  5. Variable Bitrate Exploitation
  6. Generating a DoS with a Laser
  7. Threat Model
  8. Attackers' Motivation
  9. Assumptions
  10. Attack Flow
  11. Assembly of a Laser Flicker
  12. Evaluation
  13. Testbed
  14. Wired Setup
  15. Wireless Setup
  16. ...and 18 more sections

Figures (10)

  • Figure 1: Laser mount
  • Figure 2: The effect of camera dazzling from different incidence angles. The horizontal stripes are highly dynamic.
  • Figure 3: Wired testbed topology.
  • Figure 4: Wireless testbed topology.
  • Figure 5: Impact of laser beam incidence angle
  • ...and 5 more figures