Revision as of 17:36, 17 February 2023 edit 2001:1438:400c:7720:bcb:3a6f:1fda:35b3 (talk) →Implementations: nanoCoAP implements DTLS as of https://github.com/RIOT-OS/RIOT/pull/18724 ← Previous edit		Revision as of 19:01, 3 March 2023 edit undo Dondervogel 2 (talk \| contribs) Extended confirmed users 17,902 edits m →Security issues: Gbit/s Next edit →
Line 303: == Security issues == Although the protocol standard includes provisions for mitigating the threat of [[DDoS]] amplification attacks,<ref>[https://blog.cloudflare.com/why-iot-is-insecure/ "TLS 1.3 is going to save us all, and other reasons why IoT is still insecure", Dani Grant, 2017-12-24]</ref> these provisions are not implemented in practice,<ref>[https://i.blackhat.com/eu-18/Thu-Dec-6/eu-18-Maggi-When-Machines-Cant-Talk-wp.pdf "When Machines Can't Talk: Security and Privacy Issues of Machine-to-Machine Data Protocols", Federico Maggi and Rainer Vosseler, 2018-12-06]</ref> resulting in the presence of over 580,000 targets primarily located in China and attacks up to 320 ~~Gbps~~Gbit/s.<ref>[https://www.zdnet.com/article/the-coap-protocol-is-the-next-big-thing-for-ddos-attacks/ "The CoAP protocol is the next big thing for DDoS attacks", Catalin Cimpanu, 2018-12-05]</ref> ==See also==

Constrained Application Protocol: Difference between revisions