MUD Related Resources

The following links provide resources to MUD-related information, including standards, tools, implementations, research papers, and articles.

Certain commercial entities, equipment, or materials may be identified in this website or linked websites in order to support MUD understanding and use. Such identification is not intended to imply recommendation or endorsement by NIST, nor is it intended to imply that the entities, materials, or equipment are necessarily the best available for the purpose.

MUD Standard

RFC 8520, Manufacturer Usage Description Specification
- https://tools.ietf.org/html/rfc8520

MUD File Service

GlobalPlatform MUD File Service, help device manufacturers publish the MUD file library associated with their products
- https://globalplatform.org/iotopia/mud-file-service/

MUD Working Group

IETF Operations and Management Area Working Group (opsawg)
- https://datatracker.ietf.org/wg/opsawg/documents/

Related Standards

RFC 5652, Cryptographic Message Syntax (CMS) (used to sign MUD files)
- https://tools.ietf.org/html/rfc5652
RFC 7950, The YANG 1.1 Data Modeling Language (the MUD file uses this to express what sort of communications a device is designed to have):
- https://tools.ietf.org/html/rfc7950
RFC 8259, The JavaScript Object Notation (JSON) Data Interchange Format (a serialization format used in MUD files):
- https://tools.ietf.org/html/rfc8259
RFC 8519, YANG Data Model for Network Access Control Lists (ACLs) (the YANG modules provided in the MUD Specification, RFC 8520, are extensions of this YANG data model for ACLs):
- https://tools.ietf.org/html/rfc8519
RFC 7951, JSON Encoding of Data Modeled with YANG (A MUD file consists of a YANG model instance that has been serialized in JSON):
- https://tools.ietf.org/html/rfc7951

MUD Implementation

Cisco DevNet MUD site, with a MUD Overview and Developers Guide:
- https://developer.cisco.com/site/mud/
Cisco MUD-Manager Version 3.0 Open-Source GitHub repository:
- https://github.com/CiscoDevNet/MUD-Manager
NIST MUD Open-Source Github Repository
- https://github.com/usnistgov/nist-mud
CableLabs Micronets Open-Source Github Repository
- https://cablelabs.github.io/micronets/getting-started/

Tools

MUD Maker tool: used for creating a MUD file for an IoT device
- https://www.mudmaker.org/
MUD Visualizer: A tool to aid in visualizing, reading, and validating MUD files
- https://github.com/iot-onboarding/mud-visualizer
Cisco MUD URL Validator Open-Source GitHub Repository: used to validate that MUD URLs are properly formed
- https://github.com/CiscoDevNet/MUD-URL-Validator
University of New South Wales MUDGEE MUD Profile Generator: tool for generating a device’s MUD Profile based on its traffic trace (PCAP)
- https://iotanalytics.unsw.edu.au/mudprofiles
Shan Wang – IoT Hub Project: Design, build, and evaluate a home IoT Hub to help manage and secure IoT devices using MUD and other techniques
- https://shanwang.space/iot-hub-research
NCCoE MUD-PD: A tool for characterizing IoT devices particularly for use with MUD, helpful in generating MUD files
- https://github.com/usnistgov/MUD-PD

MUD Research Papers

Verifying and Monitoring IoT's Network Behavior Using MUD Profiles
- https://arxiv.org/abs/1902.02484
Detecting Volumetric Attacks on IoT Devices via SDN-Based Monitoring of MUD Activity
- https://dl.acm.org/doi/10.1145/3314148.3314352
Clear as MUD: Generating, Validating and Applying IoT Behavioral Profiles
- https://arxiv.org/pdf/1804.04358.pdf
Combining MUD Policies with SDN for IoT Intrusion Detection
- https://dl.acm.org/ft_gateway.cfm?id=3229571&type=pdf
Throwing MUD into the FOG: Defending IoT and Fog by expanding MUD to Fog network
- https://www.usenix.org/conference/hotedge19/presentation/andalibi
NFV-based IoT Security for Home Networks using MUD
- http://www.deepness-lab.org/pubs/noms2020_nfv_security_mud.pdf

News/Web/Blog Articles

IETF Journal - Managing the Internet of Things – It’s All About Scaling
- https://www.ietfjournal.org/managing-the-internet-of-things-its-all-about-scaling/
IETF News - Help managing the growing number of Things on our networks has arrived
- https://www.ietf.org/blog/mud/
Eliot Lear – Yet another IoT bug
- https://www.ofcourseimright.com/?tag=mud
Federal News Network - NIST updating cyber guidance as agencies continue to adopt internet of things
- https://federalnewsnetwork.com/internet-of-things/2018/09/nist-updating-cyber-guidance-as-agencies-continue-to-adopt-iot/
UsableSecurity MUD Page
- http://www.usablesecurity.net/projects/MUD/index.php

Conferences

IETF 105 Hackathon - July 20 and 21, 2019
IETF 109 Hackathon – November 9 - 13, 2020
NCCoE Trusted IoT Device Network-Layer Onboarding and Lifecycle Management Workshop – October 26, 2020