@techreport{morais-iotops-inxu-00, number = {draft-morais-iotops-inxu-00}, type = {Internet-Draft}, institution = {Internet Engineering Task Force}, publisher = {Internet Engineering Task Force}, note = {Work in Progress}, url = {https://datatracker.ietf.org/doc/html/draft-morais-iotops-inxu-00}, author = {Sávyo Morais and Claudio Miceli de Farias}, title = {{Intra-Network eXposure analyzer Utility Specification}}, pagetotal = 39, year = 2021, month = nov, day = 22, abstract = {This document proposes the Intra-Network eXposure analyzer Utility (INXU) as a vulnerability management solution for IoT networks. The goal of INXU is to extend the functions of the RFC 8520 and support a Security Experts Team on protecting multiple heterogeneous IoT networks, even when there is a few or none private information of the networks. INXU identifies and analyzes the capability of an IoT device being exploited by an well known malicious activity. We also propose the Malicious Traffic Description (MTD), a data-model to describe traffic related to malicious activities.}, }