{"status":"ok","message-type":"work","message-version":"1.0.0","message":{"indexed":{"date-parts":[[2026,2,28]],"date-time":"2026-02-28T04:20:11Z","timestamp":1772252411916,"version":"3.50.1"},"reference-count":129,"publisher":"Association for Computing Machinery (ACM)","issue":"14s","license":[{"start":{"date-parts":[[2023,7,17]],"date-time":"2023-07-17T00:00:00Z","timestamp":1689552000000},"content-version":"vor","delay-in-days":0,"URL":"https:\/\/www.acm.org\/publications\/policies\/copyright_policy#Background"}],"content-domain":{"domain":["dl.acm.org"],"crossmark-restriction":true},"short-container-title":["ACM Comput. Surv."],"published-print":{"date-parts":[[2023,12,31]]},"abstract":"<jats:p>With the transition to IPv6, addressing constraints that necessitated a common security architecture under network address translation (NAT) are no longer present. Instead, manufacturers are now able to choose between an open model design, where devices are end-to-end reachable, or a more familiar closed model, where the home gateway may continue to serve as a perimeter security device. The potential for further nuance, such as differences in default access control policies, filtering behaviors, and IPv6 specific requirements, present an environment defined by ambiguity. For the consumer, the potential impact of these changes are unclear. To address this uncertainty, we taxonomize the present NAT-centric model of consumer gateway security through a survey of over 300 common vulnerabilities and exposures surrounding NAT and hole punching protocols. From this survey, we contextualize the limited security NAT has provided while serving as the primary perimeter defense mechanism in home networks. We further define how this baseline security model for consumer gateways is reflected in IPv6 through an assessment of ten commonly deployed consumer gateways. Our conclusion is that familiarity of a NAT-centric design is no longer assured for IPv6, requiring an active involvement by users to limit exposures within their home networks.<\/jats:p>","DOI":"10.1145\/3586007","type":"journal-article","created":{"date-parts":[[2023,3,7]],"date-time":"2023-03-07T09:19:35Z","timestamp":1678180775000},"page":"1-37","update-policy":"https:\/\/doi.org\/10.1145\/crossmark-policy","source":"Crossref","is-referenced-by-count":2,"title":["Doomed to Repeat with IPv6? Characterization of NAT-centric Security in SOHO Routers"],"prefix":"10.1145","volume":"55","author":[{"ORCID":"https:\/\/orcid.org\/0000-0002-9137-0239","authenticated-orcid":false,"given":"Karl","family":"Olson","sequence":"first","affiliation":[{"name":"University of Colorado, Boulder, Colorado, USA"}],"role":[{"role":"author","vocabulary":"crossref"}]},{"ORCID":"https:\/\/orcid.org\/0009-0005-8785-0570","authenticated-orcid":false,"given":"Jack","family":"Wampler","sequence":"additional","affiliation":[{"name":"University of Colorado, Boulder, Colorado, USA"}],"role":[{"role":"author","vocabulary":"crossref"}]},{"ORCID":"https:\/\/orcid.org\/0000-0003-2556-9394","authenticated-orcid":false,"given":"Eric","family":"Keller","sequence":"additional","affiliation":[{"name":"University of Colorado, Boulder, Colorado, USA"}],"role":[{"role":"author","vocabulary":"crossref"}]}],"member":"320","published-online":{"date-parts":[[2023,7,17]]},"reference":[{"issue":"1","key":"e_1_3_2_2_2","first-page":"22","article-title":"Smart TV upgrade, privacy downgrade?","volume":"5","author":"Abdi-Nur Abdifatah","year":"2017","unstructured":"Abdifatah Abdi-Nur. 2017. Smart TV upgrade, privacy downgrade? J. Colloq. Info. Syst. Secur. Edu. 5, 1, 22\u201322.","journal-title":"J. Colloq. Info. Syst. Secur. Edu."},{"key":"e_1_3_2_3_2","doi-asserted-by":"publisher","DOI":"10.17487\/RFC3715"},{"key":"e_1_3_2_4_2","doi-asserted-by":"publisher","DOI":"10.1145\/322796.322806"},{"key":"e_1_3_2_5_2","volume-title":"UPnProxy: Blackhat Proxies via NAT Injections","year":"2018","unstructured":"Akamai. 2018. UPnProxy: Blackhat Proxies via NAT Injections. Technical Report."},{"key":"e_1_3_2_6_2","unstructured":"WiFi Alliance. 2022. WiFi Alliance Wireless Specifications. Retrieved from https:\/\/www.wi-fi.org\/discover-wi-fi\/specifications. Accessed: 2022-11-17."},{"key":"e_1_3_2_7_2","unstructured":"Amazon.com. 2020. Amazon Sales Popularity\u2014Computer Routers (2020). Retrieved from https:\/\/web.archive.org\/web\/20201023233343\/https:\/\/www.amazon.com\/gp\/bestsellers\/pc\/300189\/ref=zg_b_bs_300189_1. Last accessed 23 October 2020."},{"key":"e_1_3_2_8_2","unstructured":"Amazon.com. 2021. Amazon EERO Technical Specification. Retrieved from https:\/\/support.eero.com\/hc\/en-us\/articles\/209962973-Frequently-asked-security-questions. Last Accessed: 1 February 2021."},{"key":"e_1_3_2_9_2","volume-title":"Reasons to Move the Network Address Translator-Protocol Translator (NAT-PT) to Historic Status","author":"Aoun Cedric","year":"2007","unstructured":"Cedric Aoun and Elwyn Davies. 2007. Reasons to Move the Network Address Translator-Protocol Translator (NAT-PT) to Historic Status. Technical Report. RFC 4966."},{"key":"e_1_3_2_10_2","unstructured":"Apple. 2020. How to Share Your Wi-Fi Password from Your iPhone iPad or iPod Touch. Retrieved from https:\/\/support.apple.com\/en-us\/HT209368. Last Accessed: 28 March 2020."},{"key":"e_1_3_2_11_2","volume-title":"Network Address Translation (NAT) Behavioral Requirements for Unicast UDP","author":"Audet Francois","year":"2007","unstructured":"Francois Audet and Cullen Jennings. 2007. Network Address Translation (NAT) Behavioral Requirements for Unicast UDP. BCP 127."},{"key":"e_1_3_2_12_2","volume-title":"Universal Plug and Play (UPnP) Internet Gateway Device\u2014Port Control Protocol Interworking Function (IGD-PCP IWF)","author":"Boucadair Mohamad","year":"2013","unstructured":"Mohamad Boucadair, Reinaldo Penno, and Dan Wing. 2013. Universal Plug and Play (UPnP) Internet Gateway Device\u2014Port Control Protocol Interworking Function (IGD-PCP IWF). RFC 6970."},{"key":"e_1_3_2_13_2","unstructured":"A. Brandt Sigma Designs O. Troan J. Weil and Time Warner Cable. 2014. RFC 7368: IPv6 home networking architecture principles."},{"key":"e_1_3_2_14_2","volume-title":"CallStranger Technical Report","author":"Cadirci Yunus","year":"2020","unstructured":"Yunus Cadirci. 2020. CallStranger Technical Report. Technical Report. https:\/\/github.com\/yunuscadirci\/CallStranger."},{"key":"e_1_3_2_15_2","unstructured":"Martin Casado and Michael Freedman. 2006. Illuminating the shadows: Opportunistic network and web measurement. Retrieved from http:\/\/illuminati.coralcdn.org\/stats."},{"key":"e_1_3_2_16_2","first-page":"1","article-title":"NAT traversing solutions for SIP applications","volume":"2008","author":"Chen Whai-En","year":"2008","unstructured":"Whai-En Chen, Ya-Lin Huang, and Han-Chieh Chao. 2008. NAT traversing solutions for SIP applications. EURASIP J. Wireless Commun. Netw. 2008 (2008), 1\u20139.","journal-title":"EURASIP J. Wireless Commun. Netw."},{"key":"e_1_3_2_17_2","article-title":"RFC 6886: Nat port mapping protocol (NAT-PMP)","author":"Cheshire S.","year":"2013","unstructured":"S. Cheshire and M. Krochmal. 2013. RFC 6886: Nat port mapping protocol (NAT-PMP). IETF (2013).","journal-title":"IETF"},{"key":"e_1_3_2_18_2","unstructured":"Cisco. 2020. Cisco Meraki-go: Easy Networking for Busy People. Retrieved from https:\/\/www.meraki-go.com\/."},{"key":"e_1_3_2_19_2","unstructured":"Frontier Communications. 2020. Frontier Home Internet Setup Guide. Retrieved from https:\/\/frontier.com\/helpcenter\/topics\/install-fiber-optic Last Accessed: 10 March 2020."},{"key":"e_1_3_2_20_2","first-page":"521","volume-title":"Proceedings of the International Symposium on Signals, Circuits, and Systems (ISSCS\u201905)","volume":"2","author":"Constantinescu M. Aurel","year":"2005","unstructured":"M. Aurel Constantinescu, V. Croitoru, and D. Oana Cernaianu. 2005. NAT\/firewall traversal for SIP: Issues and solutions. In Proceedings of the International Symposium on Signals, Circuits, and Systems (ISSCS\u201905), Vol. 2. IEEE, 521\u2013524."},{"key":"e_1_3_2_21_2","unstructured":"MITRE Corporation. 2006. CVE-2006-2559. Retrieved from https:\/\/cve.mitre.org."},{"key":"e_1_3_2_22_2","unstructured":"MITRE Corporation. 2012. CVE-2012-0383. Retrieved from https:\/\/cve.mitre.org."},{"key":"e_1_3_2_23_2","unstructured":"MITRE Corporation. 2013. CVE-2013-3182. Retrieved from https:\/\/cve.mitre.org."},{"key":"e_1_3_2_24_2","unstructured":"MITRE Corporation. 2013. CVE-2013-6949. Retrieved from https:\/\/cve.mitre.org."},{"key":"e_1_3_2_25_2","unstructured":"MITRE Corporation. 2017. CVE-2017-17746. Retrieved from https:\/\/cve.mitre.org."},{"key":"e_1_3_2_26_2","unstructured":"MITRE Corporation. 2017. CVE-2017-7405. Retrieved from https:\/\/cve.mitre.org."},{"key":"e_1_3_2_27_2","unstructured":"MITRE Corporation. 2020. CVE-2020-16894. Retrieved from https:\/\/cve.mitre.org."},{"key":"e_1_3_2_28_2","unstructured":"MITRE Corporation. 2020. CVE-2020-25988. Retrieved from https:\/\/cve.mitre.org."},{"key":"e_1_3_2_29_2","unstructured":"MITRE Corporation. 2021. CVE-2007-2390. Retrieved from https:\/\/cve.mitre.org."},{"key":"e_1_3_2_30_2","volume-title":"Proceedings of the Conference on Network and Distributed Systems Security (NDSS\u201916)","author":"Czyz Jakub","year":"2016","unstructured":"Jakub Czyz, Matthew Luckie, Mark Allman, Michael Bailey et\u00a0al. 2016. Don\u2019t forget to lock the back door! A characterization of IPv6 network security policy. In Proceedings of the Conference on Network and Distributed Systems Security (NDSS\u201916)."},{"key":"e_1_3_2_31_2","unstructured":"Nicholas De Leon. 2019. Many Wireless Routers Lack Basic Security Protections Consumer Reports\u2019 Testing Finds. Retrieved from https:\/\/www.consumerreports.org\/wireless-routers\/wireless-routers-lack-basic-security-protections\/. Last Accessed: 20 March 2021."},{"key":"e_1_3_2_32_2","doi-asserted-by":"publisher","DOI":"10.17487\/RFC1631"},{"key":"e_1_3_2_33_2","volume-title":"Updates to Network Address Translation (NAT) Behavioral Requirements","author":"al. Reinaldo Penno et","year":"2016","unstructured":"Reinaldo Penno et al.2016. Updates to Network Address Translation (NAT) Behavioral Requirements. BCP 127."},{"key":"e_1_3_2_34_2","volume-title":"Operational Security Considerations for IPv6 Networks","author":"al. Reinaldo Penno et","year":"2019","unstructured":"Reinaldo Penno et al.2019. Operational Security Considerations for IPv6 Networks. RFC Draft Ver 21."},{"key":"e_1_3_2_35_2","volume-title":"ISO\/IEC: 27000:2018 Information Technology\u2014Security Techniques\u2014Information Security Management Systems\u2014Overview and Vocabulary","author":"Standardization International Organization for","year":"2018","unstructured":"International Organization for Standardization. 2018. ISO\/IEC: 27000:2018 Information Technology\u2014Security Techniques\u2014Information Security Management Systems\u2014Overview and Vocabulary. Technical Report."},{"key":"e_1_3_2_36_2","first-page":"179","volume-title":"USENIX Annual Technical Conference, General Track","author":"Ford Bryan","year":"2005","unstructured":"Bryan Ford, Pyda Srisuresh, and Dan Kegel. 2005. Peer-to-peer communication across network address translators.. In USENIX Annual Technical Conference, General Track. 179\u2013192."},{"key":"e_1_3_2_37_2","unstructured":"UPnP Forum. 2020. UPnP Specification. Retrieved from https:\/\/openconnectivity.org\/developer\/specifications\/upnp-resources\/."},{"key":"e_1_3_2_38_2","doi-asserted-by":"publisher","DOI":"10.1007\/978-3-319-58460-7_45"},{"key":"e_1_3_2_39_2","unstructured":"Ryan Giobbi. 2008. UPnP Enabled By Default SEI Vulnerability Note VU347812. https:\/\/www.kb.cert.org\/vuls\/id\/347812\/."},{"key":"e_1_3_2_40_2","unstructured":"Google. 2020. Per-Country IPv6 Adoption. Retrieved from https:\/\/www.google.com\/intl\/en\/ipv6\/statistics.html#tab=per-country-ipv6-adoption Last Accessed: 20 March 2021."},{"key":"e_1_3_2_41_2","unstructured":"Google. 2021. Google nest technical specification. Retrieved from https:\/\/store.google.com\/us\/product\/nest_wifi_specs. (2021)."},{"key":"e_1_3_2_42_2","article-title":"NAT Behavioral Requirements for TCP","author":"Guha Saikat","year":"2008","unstructured":"Saikat Guha, Kaushik Biswas et\u00a0al. 2008. NAT Behavioral Requirements for TCP. RFC 5382.","journal-title":"RFC 5382"},{"key":"e_1_3_2_43_2","volume-title":"NAT Behavioral Requirements for ICMP","author":"Guha Saikat","year":"2009","unstructured":"Saikat Guha, Kaushik Biswas et\u00a0al. 2009. NAT Behavioral Requirements for ICMP. BCP 148."},{"key":"e_1_3_2_44_2","doi-asserted-by":"publisher","DOI":"10.5555\/1251086.1251104"},{"key":"e_1_3_2_45_2","first-page":"309","volume-title":"Proceedings of the International Workshop on Recent Advances in Intrusion Detection","author":"Guo Fanglu","year":"2005","unstructured":"Fanglu Guo and Tzi-cker Chiueh. 2005. Sequence number-based MAC address spoof detection. In Proceedings of the International Workshop on Recent Advances in Intrusion Detection. Springer, 309\u2013329."},{"key":"e_1_3_2_46_2","doi-asserted-by":"publisher","DOI":"10.17487\/RFC2993"},{"key":"e_1_3_2_47_2","first-page":"1","volume-title":"Proceedings of the International Conference on Research in Networking","author":"Halkes Gertjan","year":"2011","unstructured":"Gertjan Halkes and Johan Pouwelse. 2011. UDP NAT and firewall puncturing in the wild. In Proceedings of the International Conference on Research in Networking. Springer, 1\u201312."},{"key":"e_1_3_2_48_2","unstructured":"Nikolai Hampton and Patryk Szewczyk. 2015. A survey and method for analysing SOHO router firmware currency. https:\/\/ro.ecu.edu.au\/cgi\/viewcontent.cgi?article=1176&context=ism."},{"key":"e_1_3_2_49_2","doi-asserted-by":"publisher","DOI":"10.1016\/j.comnet.2018.11.025"},{"key":"e_1_3_2_50_2","doi-asserted-by":"publisher","DOI":"10.1145\/1879141.1879174"},{"key":"e_1_3_2_51_2","doi-asserted-by":"publisher","DOI":"10.1016\/j.cose.2018.07.011"},{"key":"e_1_3_2_52_2","doi-asserted-by":"crossref","unstructured":"Matt Holdrege and Pyda Srisuresh. 2001. Protocol complications with the IP network address translator (NAT). RFC 3027.","DOI":"10.17487\/rfc3027"},{"key":"e_1_3_2_53_2","first-page":"241","volume-title":"Proceedings of the IEEE 10th International Symposium on Network Computing and Applications","author":"Holzapfel Sebastian","year":"2011","unstructured":"Sebastian Holzapfel, Matthaus Wander, Arno Wacker, and Torben Weis. 2011. SYNI-TCP Hole punching bBased on SYN injection. In Proceedings of the IEEE 10th International Symposium on Network Computing and Applications. IEEE, 241\u2013246."},{"key":"e_1_3_2_54_2","volume-title":"Teredo: Tunneling IPv6 over UDP Through Network Address Translations (NATs)","author":"Huitema Christopher","year":"2006","unstructured":"Christopher Huitema. 2006. Teredo: Tunneling IPv6 over UDP Through Network Address Translations (NATs). RFC 4380."},{"issue":"2","key":"e_1_3_2_55_2","first-page":"199","article-title":"A survey of NAT behavior discovery in VOIP applications","volume":"12","author":"Hunag Shiang-Ming","year":"2011","unstructured":"Shiang-Ming Hunag, Quincy Wu et\u00a0al. 2011. A survey of NAT behavior discovery in VOIP applications. J. Internet Technol. 12, 2 (2011), 199\u2013210.","journal-title":"J. Internet Technol."},{"key":"e_1_3_2_56_2","volume-title":"Securing IoT Devices: How Safe Is Your Wi-Fi Router?","author":"Institute The American Consumer","year":"2018","unstructured":"The American Consumer Institute. 2018. Securing IoT Devices: How Safe Is Your Wi-Fi Router? Retrieved from https:\/\/www.theamericanconsumer.org\/wp-content\/uploads\/2018\/09\/FINAL-Wi-Fi-Router-Vulnerabilities.pdf."},{"key":"e_1_3_2_57_2","unstructured":"Senator Hannah-Beth Jackson. 2017. California Senate Bill SB-327 Chapter 866. Retrieved from https:\/\/leginfo.legislature.ca.gov\/faces\/billTextClient.xhtml?bill_id=201720180SB327. Accessed: 2022-10-17."},{"key":"e_1_3_2_58_2","volume-title":"NAT Classification Test Results","author":"Jennings Cullen","year":"2007","unstructured":"Cullen Jennings. 2007. NAT Classification Test Results. Internet-Draft draft-jennings-behave-test-results-04. Internet Engineering Task Force. Retrieved from https:\/\/datatracker.ietf.org\/doc\/html\/draft-jennings-behave-test-results-04."},{"key":"e_1_3_2_59_2","unstructured":"Daryl Johnson and Bruce Hartpence. 2010. A re-examination of network address translation security. https:\/\/scholarworks.rit.edu\/cgi\/viewcontent.cgi?article=1764&context=other."},{"key":"e_1_3_2_60_2","first-page":"35","article-title":"Usable security and privacy: A case study of developing privacy management tools","volume":"93","author":"Brodie Carolyn","year":"2005","unstructured":"Carolyn Brodie, Clare-marie Karat, John Karat and Jinjuan Feng. 2005. Usable security and privacy: A case study of developing privacy management tools. ACM International Conference Proceeding Series, Vol. 93, 35\u201343. 10.1145\/1073001.1073005.","journal-title":"ACM International Conference Proceeding Series"},{"key":"e_1_3_2_61_2","volume-title":"Interactive Connectivity Establishment (ICE)","author":"Keranen A.","year":"2018","unstructured":"A. Keranen, C. Holmberg, and J. Rosenberg. 2018. Interactive Connectivity Establishment (ICE). RFC 8445."},{"key":"e_1_3_2_62_2","first-page":"102","volume-title":"Proceedings of the International Conference on Dependable Systems and Networks","author":"Killourhy Kevin S.","year":"2004","unstructured":"Kevin S. Killourhy, Roy A. Maxion, and Kymie M. C. Tan. 2004. A defense-centric taxonomy based on attack manifestations. In Proceedings of the International Conference on Dependable Systems and Networks. IEEE, 102\u2013111."},{"key":"e_1_3_2_63_2","doi-asserted-by":"publisher","DOI":"10.1109\/SURV.2012.121112.00190"},{"key":"e_1_3_2_64_2","doi-asserted-by":"publisher","DOI":"10.1016\/j.infsof.2013.07.010"},{"key":"e_1_3_2_65_2","first-page":"1169","volume-title":"Proceedings of the 28th USENIX Security Symposium","author":"Kumar Deepak","year":"2019","unstructured":"Deepak Kumar, Kelly Shen, Benton Case, Deepali Garg, Galina Alperovich, Dmitry Kuznetsov, Rajarshi Gupta, and Zakir Durumeric. 2019. All things considered: An analysis of IoT devices on home networks. In Proceedings of the 28th USENIX Security Symposium. 1169\u20131185."},{"key":"e_1_3_2_66_2","doi-asserted-by":"publisher","DOI":"10.1145\/3133956.3134072"},{"key":"e_1_3_2_67_2","first-page":"88","volume-title":"Proceedings of the 51st Annual IEEE\/IFIP International Conference on Dependable Systems and Networks (DSN\u201921)","author":"Li Xiang","year":"2021","unstructured":"Xiang Li, Baojun Liu, Xiaofeng Zheng, Haixin Duan, Qi Li, and Youjun Huang. 2021. Fast IPv6 network periphery discovery and security implications. In Proceedings of the 51st Annual IEEE\/IFIP International Conference on Dependable Systems and Networks (DSN\u201921). IEEE, 88\u2013100."},{"key":"e_1_3_2_68_2","unstructured":"Linksys. 2019. Configuring the MAC Filter feature of the Linksys Smart Wi-Fi Router using the local access interface. Retrieved from https:\/\/www.linksys.com\/us\/support-article?articleNum=143602. Last Accessed: 2 February 2020."},{"key":"e_1_3_2_69_2","doi-asserted-by":"crossref","first-page":"12","DOI":"10.1109\/DISCEX.2000.821506","volume-title":"Proceedings of the DARPA Information Survivability Conference and Exposition (DISCEX\u201900","volume":"2","author":"Lippmann Richard P.","year":"2000","unstructured":"Richard P. Lippmann, David J. Fried et\u00a0al. 2000. Evaluating intrusion detection systems: The 1998 DARPA off-line intrusion detection evaluation. In Proceedings of the DARPA Information Survivability Conference and Exposition (DISCEX\u201900), Vol. 2. IEEE, 12\u201326."},{"key":"e_1_3_2_70_2","doi-asserted-by":"publisher","DOI":"10.17487\/rfc5766"},{"key":"e_1_3_2_71_2","doi-asserted-by":"crossref","first-page":"32","DOI":"10.1007\/978-3-642-19260-9_4","volume-title":"Proceedings of the International Conference on Passive and Active Network Measurement","author":"Maier Gregor","year":"2011","unstructured":"Gregor Maier, Fabian Schneider, and Anja Feldmann. 2011. NAT usage in residential broadband networks. In Proceedings of the International Conference on Passive and Active Network Measurement. Springer, 32\u201341."},{"key":"e_1_3_2_72_2","unstructured":"Paul Marrapese. 2019. IoT Security Flaw Leaves 496 Million Devices Vulnerable At Businesses: Report. Retrieved from https:\/\/www.crn.com\/news\/internet-of-things\/300106806\/iot-security-flaw-leaves-496-million-devices-vulnerable-at-businesses\/-report.htm."},{"key":"e_1_3_2_73_2","unstructured":"Dylan Martin. 2018. Security Cameras Vulnerable to Hijacking. Retrieved from https:\/\/hacked.camera\/."},{"key":"e_1_3_2_74_2","unstructured":"Troy Mattessich. 2012. Exploits and Vulnerabilities of IP Camera\u2019s. Retrieved from http:\/\/cysecure.org. Accessed: 2021-02-17."},{"key":"e_1_3_2_75_2","volume-title":"Code Complete","author":"McConnell Steve","year":"2004","unstructured":"Steve McConnell. 2004. Code Complete. Pearson Education."},{"key":"e_1_3_2_76_2","doi-asserted-by":"publisher","DOI":"10.1145\/997150.997156"},{"key":"e_1_3_2_77_2","unstructured":"MITRE. 2021. Common Vulnerabilities and Exposures. Retrieved from https:\/\/cve.mitre.org\/. Last Accessed: 17 February 2021."},{"key":"e_1_3_2_78_2","unstructured":"H. D. Moore. 2013. Security Flaws in Universal Plug and Play: Unplug. Don\u2019t Play. Rapid7. Retrieved from https:\/\/information.rapid7.com\/rs\/411-NAK-970\/images\/SecurityFlawsUPnP.pdf. Accessed: 2021-02-17."},{"key":"e_1_3_2_79_2","doi-asserted-by":"crossref","unstructured":"Philipp Morgner Christoph Mai Nicole Koschate-Fischer Felix Freiling and Zinaida Benenson. 2019. Security update labels: Establishing economic incentives for security patching of IoT consumer products. Retrieved from https:\/\/arXiv:1906.11094.","DOI":"10.1109\/SP40000.2020.00021"},{"key":"e_1_3_2_80_2","doi-asserted-by":"publisher","DOI":"10.1109\/MNET.2008.4626227"},{"key":"e_1_3_2_81_2","first-page":"1","volume-title":"Proceedings of the IEEE 10th International Conference on Peer-to-Peer Computing (P2P)","author":"Muller Andreas","year":"2010","unstructured":"Andreas Muller, Nathan Evans, Christian Grothoff, and Samy Kamkar. 2010. Autonomous NAT traversal. In Proceedings of the IEEE 10th International Conference on Peer-to-Peer Computing (P2P). IEEE, 1\u20134."},{"key":"e_1_3_2_82_2","first-page":"264","volume-title":"Proceedings of the International Conference on Research in Networking","author":"M\u00fcller Andreas","year":"2008","unstructured":"Andreas M\u00fcller, Andreas Klenk, and Georg Carle. 2008. On the applicability of knowledge based NAT-traversal for home networks. In Proceedings of the International Conference on Research in Networking. Springer, 264\u2013275."},{"key":"e_1_3_2_83_2","first-page":"1745","volume-title":"Proceedings of the IEEE International Conference on Parallel and Distributed Processing with Applications, Big Data and Cloud Computing, Sustainable Computing and Communications, Social Computing and Networking (ISPA\/BDCloud\/SocialCom\/SustainCom\u201921)","author":"Nader Christelle","year":"2021","unstructured":"Christelle Nader and Elias Bou-Harb. 2021. Revisiting IoT fingerprinting behind a NAT. In Proceedings of the IEEE International Conference on Parallel and Distributed Processing with Applications, Big Data and Cloud Computing, Sustainable Computing and Communications, Social Computing and Networking (ISPA\/BDCloud\/SocialCom\/SustainCom\u201921). IEEE, 1745\u20131752."},{"key":"e_1_3_2_84_2","unstructured":"Netgear. 2019. What is Explicit Beamforming and How Does It Work? Retrieved from https:\/\/kb.netgear.com\/31299\/What-is-explicit-beamforming-and-how-does-it-work."},{"key":"e_1_3_2_85_2","unstructured":"SMC Networks. 2015. SMC8014WG-SI User Manual. Retrieved from https:\/\/manualmachine.com\/smcnetworks\/ezconnectsmc8014wgsi\/479465-user-manual\/."},{"key":"e_1_3_2_86_2","unstructured":"Marcus Niemietz and J\u00f6rg Schwenk. 2015. Owning your home nnetwork: Router security revisited. Retrieved from https:\/\/arXiv:1506.04112."},{"key":"e_1_3_2_87_2","unstructured":"NIST. 2021. National Vulnerability Database. Retrieved from https:\/\/nvd.nist.gov\/. Last Accessed: 17 February 2021."},{"key":"e_1_3_2_88_2","doi-asserted-by":"publisher","DOI":"10.14722\/eurousec.2018.23011"},{"key":"e_1_3_2_89_2","doi-asserted-by":"publisher","DOI":"10.6028\/NIST.CSWP.02042022-2"},{"key":"e_1_3_2_90_2","volume-title":"Proceedings of the Probability and Meaning Conference (PaM\u201921)","author":"Olson Karl","year":"2021","unstructured":"Karl Olson, Jack Wampler, Fan Shen, and Nolen Scaife. 2021. NATting else matters: Evaluating IPv6 access control in residential networks. In Proceedings of the Probability and Meaning Conference (PaM\u201921)."},{"key":"e_1_3_2_91_2","unstructured":"Alexandre Pankratov. 2012. Server-Mediated Setup and Maintenance of Peer-to-Peer Communications. U.S. Patent 8 296 437."},{"key":"e_1_3_2_92_2","doi-asserted-by":"crossref","DOI":"10.17487\/RFC8489","volume-title":"Session Traversal Utilities for NAT (STUN)","author":"Petit-Huguenin Marc","year":"2020","unstructured":"Marc Petit-Huguenin, Gonzalo Salgueiro, Jonathon Rosenberg, Dan Wing, Rohan Mahy, and Phillip Matthews. 2020. Session Traversal Utilities for NAT (STUN). RFC 8489."},{"key":"e_1_3_2_93_2","doi-asserted-by":"publisher","DOI":"10.17487\/RFC0792"},{"key":"e_1_3_2_94_2","volume-title":"Wi-Fi Router Security Knowledge Gap Putting Devices and Private Data at Risk in UK Homes","author":"Powell Matt","year":"2018","unstructured":"Matt Powell. 2018. Wi-Fi Router Security Knowledge Gap Putting Devices and Private Data at Risk in UK Homes. Retrieved from https:\/\/www.broadbandgenie.co.uk\/blog\/20180409-wifi-router-security-survey."},{"key":"e_1_3_2_95_2","unstructured":"Associated Press. 2006. No Rush to Upgrade Your WiFi Router. Retrieved from https:\/\/www.law.com\/legaltechnews\/almID\/1167214009597\/?id=1167214009597?id=1167214009597&slreturn=2021101715253. Last accessed 5 Nov 2021."},{"key":"e_1_3_2_96_2","first-page":"215","volume-title":"Proceedings of the Internet Measurement Conference","author":"Richter Philipp","year":"2016","unstructured":"Philipp Richter, Florian Wohlfart, Narseo Vallina-Rodriguez, Mark Allman, Randy Bush, Anja Feldmann, Christian Kreibich, Nicholas Weaver, and Vern Paxson. 2016. A multi-perspective analysis of carrier-grade NAT deployment. In Proceedings of the Internet Measurement Conference. 215\u2013229."},{"key":"e_1_3_2_97_2","volume-title":"Interactive Connectivity Establishment (ICE): A Protocol for Network Address Translator (NAT) Traversal for Offer\/Answer Protocols","author":"Rosenberg Jonathon","year":"2010","unstructured":"Jonathon Rosenberg. 2010. Interactive Connectivity Establishment (ICE): A Protocol for Network Address Translator (NAT) Traversal for Offer\/Answer Protocols. RFC 5245."},{"key":"e_1_3_2_98_2","doi-asserted-by":"publisher","DOI":"10.17487\/RFC3489"},{"issue":"2","key":"e_1_3_2_99_2","doi-asserted-by":"crossref","first-page":"8","DOI":"10.1016\/S1353-4858(10)70024-6","article-title":"Negotiating WiFi security","volume":"2010","author":"Rowan Tom","year":"2010","unstructured":"Tom Rowan. 2010. Negotiating WiFi security. Netw. Secur. 2010, 2 (2010), 8\u201312.","journal-title":"Netw. Secur."},{"issue":"2007","key":"e_1_3_2_100_2","article-title":"Adoption is not development: First mover advantages in the diffusion of new technology","author":"Ruiz-Aliseda Francisco","year":"2006","unstructured":"Francisco Ruiz-Aliseda and Peter B. Zemsky. 2006. Adoption is not development: First mover advantages in the diffusion of new technology. INSEAD Business School Research Paper2007\/03 (2006).","journal-title":"INSEAD Business School Research Paper"},{"key":"e_1_3_2_101_2","doi-asserted-by":"publisher","DOI":"10.1145\/357401.357402"},{"key":"e_1_3_2_102_2","unstructured":"O. Santos. 2016. The Evolution of Scoring Security Vulnerabilities: The Sequel. Retrieved from https:\/\/blogs.cisco.com\/security\/cvssv3-study. Accessed: 2021-02-17."},{"issue":"1","key":"e_1_3_2_103_2","doi-asserted-by":"crossref","first-page":"25","DOI":"10.1080\/13691180701858836","article-title":"Software defaults as de facto regulation the case of the wireless internet","volume":"11","author":"Shah Rajiv","year":"2008","unstructured":"Rajiv Shah and Christian Sandvig. 2008. Software defaults as de facto regulation the case of the wireless internet. Info., Commun. Soc. 11, 1 (2008), 25\u201346.","journal-title":"Info., Commun. Soc."},{"key":"e_1_3_2_104_2","first-page":"1768","volume-title":"Proceedings of the IEEE 27th Conference on Computer Communications (INFOCOM\u201908)","author":"Sheng Young","year":"2008","unstructured":"Young Sheng, Keren Tan et\u00a0al. 2008. Detecting 802.11 MAC layer spoofing using received signal strength. In Proceedings of the IEEE 27th Conference on Computer Communications (INFOCOM\u201908). 1768\u20131776."},{"key":"e_1_3_2_105_2","unstructured":"Shodan. 2021. UPnP Exposure Scan. Retrieved from https:\/\/www.shodan.io\/. Last accessed 20 February 2021."},{"key":"e_1_3_2_106_2","volume-title":"Basic Requirements for IPv6 Customer Edge Routers","author":"Singh Hemant","year":"2013","unstructured":"Hemant Singh, Wes Beebee et\u00a0al. 2013. Basic Requirements for IPv6 Customer Edge Routers. Technical Report. 2070\u20131721."},{"key":"e_1_3_2_107_2","doi-asserted-by":"publisher","DOI":"10.1007\/s12652-017-0494-4"},{"issue":"2","key":"e_1_3_2_108_2","doi-asserted-by":"crossref","first-page":"391","DOI":"10.1109\/TNET.2013.2256147","article-title":"IPv4 address sharing mechanism classification and tradeoff analysis","volume":"22","author":"\u0160koberne Nejc","year":"2013","unstructured":"Nejc \u0160koberne, Olaf Maennel, Iain Phillips, Randy Bush, Jan Zorz, and Mojca Ciglaric. 2013. IPv4 address sharing mechanism classification and tradeoff analysis. IEEE\/ACM Trans. Netw. 22, 2 (2013), 391\u2013404.","journal-title":"IEEE\/ACM Trans. Netw."},{"key":"e_1_3_2_109_2","first-page":"355","article-title":"Network security using NAT and NAPT","author":"Smith Matt","year":"2002","unstructured":"Matt Smith and Ray Hunt. 2002. Network security using NAT and NAPT. Proceedings of the 10th IEEE International Conference on Networks (ICON\u201902): Towards Network Superiority. 355\u2013360.","journal-title":"Proceedings of the 10th IEEE International Conference on Networks (ICON\u201902): Towards Network Superiority"},{"key":"e_1_3_2_110_2","first-page":"355","volume-title":"Proceedings of the 10th IEEE International Conference on Networks (ICON\u201902): Towards Network Superiority","author":"Smith Matt","year":"2002","unstructured":"Matt Smith and Ray Hunt. 2002. Network security using NAT and NAPT. In Proceedings of the 10th IEEE International Conference on Networks (ICON\u201902): Towards Network Superiority. IEEE, 355\u2013360."},{"key":"e_1_3_2_111_2","doi-asserted-by":"publisher","DOI":"10.17487\/RFC2663"},{"key":"e_1_3_2_112_2","volume-title":"NAT Traversal Techniques in VoIP Protocols","author":"Starnberger G\u00fcnther","year":"2007","unstructured":"G\u00fcnther Starnberger. 2007. NAT Traversal Techniques in VoIP Protocols. Ph.D. Dissertation."},{"key":"e_1_3_2_113_2","unstructured":"Amber Steele. 2016. Keep Your Friends Close and Your Passwords Closer. Retrieved from https:\/\/blog.lastpass.com\/2016\/02\/infographic-keep-your-friends-close-your-passwords-closer-2.html\/. Last Accessed: 28 March 2022."},{"key":"e_1_3_2_114_2","unstructured":"Synopsis. 2021. MiniUPnP. Retrieved from https:\/\/www.openhub.net\/p\/miniupnp. Last Accessed: 2021-02-17."},{"issue":"3","key":"e_1_3_2_115_2","first-page":"1","article-title":"Insecurity by obscurity: A review of SoHo router literature from a network security perspective","volume":"4","author":"Szewczyk Patryk","year":"2009","unstructured":"Patryk Szewczyk and Craig Valli. 2009. Insecurity by obscurity: A review of SoHo router literature from a network security perspective. J. Dig. Forens., Secur. Law 4, 3 (2009), 1.","journal-title":"J. Dig. Forens., Secur. Law"},{"key":"e_1_3_2_116_2","first-page":"1","volume-title":"Proceedings of the International Conference on Computer and Information Sciences (ICCIS\u201919)","author":"Tabassum Kahkashan","year":"2019","unstructured":"Kahkashan Tabassum, Ahmed Ibrahim, and Sahar A. El Rahman. 2019. Security issues and challenges in IoT. In Proceedings of the International Conference on Computer and Information Sciences (ICCIS\u201919). IEEE, 1\u20135."},{"key":"e_1_3_2_117_2","unstructured":"Trendmicro. 2019. UPnP-enabled Home Devices and Vulnerabilities. Retrieved from https:\/\/www.trendmicro.com\/en_us\/research\/19\/c\/upnp-enabled-connected-devices-in-home-upnpatched-known-vulnerabilities.html. Last Accessed: 1 February 2021."},{"key":"e_1_3_2_118_2","unstructured":"Tripwire. 2014. SOHO Wireless Router (In)Security. Retrieved from http:\/\/www.properaccess.com\/docs\/_SOHO_Router_Insecurity_white_paper.pdf. Last accessed 20 October 2020."},{"key":"e_1_3_2_119_2","volume-title":"BlueBorne Technical White Paper","author":"Seri B.","year":"2017","unstructured":"B. Seri and G. Vishnepolsky. 2017. BlueBorne Technical White Paper. Armis Labs. Available From: https:\/\/info.armis.com\/rs\/645-PDC-047\/images\/BlueBorne%20Technical%20White%20Paper_20171130.pdf?_ga=2.119171470.602323090.1679241418-1914181406.1679241418."},{"key":"e_1_3_2_120_2","unstructured":"Lisandro Ubiedo Thomas O\u2019Hara Mar\u00eda Jos\u00e9 Erquiaga and Sebastian Garcia. 2021. Current state of IPv6 security in IoT. Retrieved from https:\/\/arXiv:2105.02710."},{"key":"e_1_3_2_121_2","volume-title":"A Comprehensive Taxonomy of Wi-Fi Attacks","author":"Vink Mark","year":"2020","unstructured":"Mark Vink, Erik Poll, and Alex Verbiest. 2020. A Comprehensive Taxonomy of Wi-Fi Attacks. Ph.D. Dissertation. Radboud University Nijmegen Nijmegen, The Netherlands."},{"key":"e_1_3_2_122_2","volume-title":"A Taxonomy of Computer Intrusions","author":"Weber Daniel James","year":"1998","unstructured":"Daniel James Weber. 1998. A Taxonomy of Computer Intrusions. Ph.D. Dissertation. Massachusetts Institute of Technology."},{"key":"e_1_3_2_123_2","unstructured":"P. Weidenbach and J. vom Dorp. 2020. Home Router Security 2020. Retrieved from https:\/\/www.fkie.fraunhofer.de\/content\/dam\/fkie\/de\/documents\/HomeRouter\/HomeRouterSecurity_2020_Bericht.pdf. Accessed: 2021-02-17."},{"key":"e_1_3_2_124_2","volume-title":"Wireless LAN Security in a SOHO Environment: A Holistic Approach","author":"Wimmer Christian","year":"2008","unstructured":"Christian Wimmer. 2008. Wireless LAN Security in a SOHO Environment: A Holistic Approach. GRIN Verlag, 2012."},{"key":"e_1_3_2_125_2","volume-title":"Port Control Protocol (PCP)","author":"Wing Dan","year":"2013","unstructured":"Dan Wing, Stuart Cheshire et\u00a0al. 2013. Port Control Protocol (PCP). RFC 6887."},{"key":"e_1_3_2_126_2","volume-title":"Recommended Simple Security Capabilities in Customer Premises Equipment (CPE) for Providing Residential IPv6 Internet Service","author":"Woodyatt James","year":"2011","unstructured":"James Woodyatt. 2011. Recommended Simple Security Capabilities in Customer Premises Equipment (CPE) for Providing Residential IPv6 Internet Service. RFC 6092."},{"key":"e_1_3_2_127_2","doi-asserted-by":"publisher","DOI":"10.1109\/MC.2004.2"},{"key":"e_1_3_2_128_2","doi-asserted-by":"publisher","DOI":"10.1145\/2500423.2500444"},{"issue":"5","key":"e_1_3_2_129_2","doi-asserted-by":"crossref","first-page":"8","DOI":"10.1109\/MNET.2008.4626226","article-title":"A retrospective view of network address translation","volume":"22","author":"Zhang Lixia","year":"2008","unstructured":"Lixia Zhang. 2008. A retrospective view of network address translation. IEEE Netw. 22, 5 (2008), 8\u201312.","journal-title":"IEEE Netw."},{"key":"e_1_3_2_130_2","first-page":"1","volume-title":"Proceedings of the 6th International Conference on Wireless Communications Networking and Mobile Computing (WiCOM\u201910)","author":"Zhang Lizhuo","year":"2010","unstructured":"Lizhuo Zhang, Weijia Jia et\u00a0al. 2010. Research of TCP NAT traversal solution based on port correlation analysis & prediction algorithm. In Proceedings of the 6th International Conference on Wireless Communications Networking and Mobile Computing (WiCOM\u201910). IEEE, 1\u20134."}],"container-title":["ACM Computing Surveys"],"original-title":[],"language":"en","link":[{"URL":"https:\/\/dl.acm.org\/doi\/10.1145\/3586007","content-type":"unspecified","content-version":"vor","intended-application":"text-mining"},{"URL":"https:\/\/dl.acm.org\/doi\/pdf\/10.1145\/3586007","content-type":"unspecified","content-version":"vor","intended-application":"similarity-checking"}],"deposited":{"date-parts":[[2025,6,17]],"date-time":"2025-06-17T16:46:10Z","timestamp":1750178770000},"score":1,"resource":{"primary":{"URL":"https:\/\/dl.acm.org\/doi\/10.1145\/3586007"}},"subtitle":[],"short-title":[],"issued":{"date-parts":[[2023,7,17]]},"references-count":129,"journal-issue":{"issue":"14s","published-print":{"date-parts":[[2023,12,31]]}},"alternative-id":["10.1145\/3586007"],"URL":"https:\/\/doi.org\/10.1145\/3586007","relation":{},"ISSN":["0360-0300","1557-7341"],"issn-type":[{"value":"0360-0300","type":"print"},{"value":"1557-7341","type":"electronic"}],"subject":[],"published":{"date-parts":[[2023,7,17]]},"assertion":[{"value":"2022-04-01","order":0,"name":"received","label":"Received","group":{"name":"publication_history","label":"Publication History"}},{"value":"2023-02-21","order":1,"name":"accepted","label":"Accepted","group":{"name":"publication_history","label":"Publication History"}},{"value":"2023-07-17","order":2,"name":"published","label":"Published","group":{"name":"publication_history","label":"Publication History"}}]}}