UPnP comes from Universal Plug and Play . It is a series of communication protocols that have the objective of connecting and discovering multiple devices on the network in a simple way, such as printers, access points or a mobile phone. Now, this can be a problem for network security if we do not take the appropriate measures, as we will explain in this article.
What is UPnP
As we say, it is a set of communication protocols to facilitate the use of certain devices on the network . For example connecting access points, a computer, a printer … It allows us to share data, to access those devices in a simple way.
We can say that it is something ideal for the home , since there we will connect equipment that we trust and there will be no external users.
We can compare it a bit with Plug and Play, the technology that allows you to connect a pendrive and many other devices to a computer, for example, without having to configure anything previously. They are similar in the sense that once we connect a device we will not need to configure anything and it will establish communications automatically.
How UPnP works
When we connect a printer, for example, the process is simple. The first thing it will do is try to obtain an IP address through a process called DHCP. This step is no different from other computers, and virtually all modern routers today support DHCP.
Once that UPnP device has obtained an IP address, what it does is look for a control point , which in this case would be the router. Basically what it does is send information to the router about the device itself, the manufacturer, the firmware version, its functionality …
Let’s take as an example that we connect a printer. The router obtains information about what model it is, its functionality, the firmware version … Later, when we want to install the printer on our computer, the router itself offers that information that it has already collected.
In addition, thanks to the UPnP protocol, other entertainment devices can also be connected to each other. This, for example, allows you to transfer music or videos from one computer to another in a simple and fast way.
Why is UPnP a risk
We have seen the positives of UPnP. We have observed that it is a protocol that makes things easier when connecting other computers to the network. Now, precisely this can also be a security problem and compromise our devices.
One of the main problems is that it is designed specifically for the home. What does this mean? It basically means that you will fully trust those devices that we connect. You understand that they are reliable, that they will not represent a problem for our network . It is based on the fact that our network will be properly protected from the outside and there will be no intruders.
This that we mentioned causes UPnP not to have basic authentication and the devices can be exposed to possible cyber attacks. In the event that our router had some unpatched vulnerability, that the Wi-Fi network was not protected or that anyone had access to it, it could compromise the security of our network. In the same way it could be a problem if we connect an unreliable device.
UPnP has the ability to even open our network to security holes. For example, it could allow our network to request that certain ports be opened, through which malicious requests could be executed.
Logically, what we mentioned is aggravated if we are going to use a business network, in a public place or any space in which there are many connected users. It could seriously expose our security and privacy.
What to do to use UPnP safely
First of all, something basic would be to disable UPnP of our router if we are not going to use it. There is no better protection than that to avoid the problems that we have been mentioning and have some kind of unpleasant surprise. However, if we want to use it, we must take into account some fundamental factors.
Update the router firmware
Something basic to protect ourselves not only from this problem but also from any other similar, is to keep the router firmware updated. We have seen that on many occasions vulnerabilities can arise that put security at risk. They can take advantage of these flaws to spread threats.
Our advice is to always keep the router firmware correctly updated. It is essential to have the latest versions so as not to expose our network when using the UPnP protocol.
Use strong passwords
Of course we must also take into account the importance of having passwords that are secure and complex . Here you must mention both the password to access the router itself, as well as that of the Wi-Fi network. The goal is to prevent intruders that can enter and damage our security.
That password must have letters (uppercase and lowercase), numbers, and other special symbols. All this also in a random way and with a considerable length to make it difficult to be ascertained.
Check what devices we connect to the router
We must also take into account what devices we connect to the router or what devices are already connected. Do we see something strange? Are there any devices that no longer need to be connected? Taking this into account can save us from problems that affect network security.
Keeping equipment safe
In addition, it is necessary to indicate the importance of keeping the equipment correctly safe . We must have security tools, keep them also updated and install only reliable tools downloaded from official sources. This way we will avoid problems.
Reset factory settings if in doubt
Sometimes it can happen that we have doubts about a device. We can think that it has suffered some type of attack, that we have installed some software that we do not trust, etc. Something we can also do is restore the factory settings in case we have any questions.
In short, these are some interesting tips to always maintain security when using the UPnP protocol. It is important that we protect our network at all times and do not make mistakes.