Validating Security Configurations and Detecting Backdoors in New Network Devices

With!the!discovery!of!admin!backdoors!in!network!devices!of!Barracuda!in!January! last!year,!it!once!again!has!become!apparent!that!internetPfacing!network!devices! are!vulnerable!to!unauthorized!remote!access.!It!was!found!that!80%!of!bestPselling! routers!have!security!vulnerabilities!that!may!be!exploited!to!gain!unauthorized! remote!access.!With!increasing!reports!of!router!vulnerabilities!found!like!the!ones! in!Cisco!NX!based!devices!in!early!2014,!the!question!arises!whether!these!routers! and!network!devices!are!doing!a!good!job!in!keeping!their!users’!networks!and! personal!data!secure.!Even!worse,!with!hidden!builtPin!vendor!backdoors!and! default!logins!found!in!network!devices,!the!question!arises!if!users!can!trust!their! vendors!to!uphold!security!as!a!key!feature!of!their!products.!Apart!from!analyzing! vulnerability!disclosures!in!the!past,!this!paper!outlines!techniques!und!provides! suggestions!to!mitigate!the!risk!associated!with!router!vulnerabilities.! ! ! Router!backdoors!.!Can!you!trust!your!vendor?! 2 ! Christoph!Eckstein,[email protected]! ! !