The GlobalPlatform MUD File Service helps device manufacturers publish, in a unique location, the MUD file library associated with their products. Publication in the MUD File Service simplifies the access and consumption of MUD files from networks hosting these devices.
The MUD File Service is currently operated as a free beta service, to facilitate convenient and secure connectivity between device manufacturers and MUD file consumers around the world.
Manufacturer Usage Description (MUD) files enable constrained end devices (e.g., IoT devices) to signal to a network, confirming the type of access and network functionality required to properly function. As the number of different types of IoT devices continues to grow, the deployment and usage of MUD files will greatly improve the security of connected things and the networks they are connected to.
MUD is published by the Internet Engineering Task Force (IETF). The MUD specification can be found at https://tools.ietf.org/html/rfc8520.
The MUD manager regularly, as well as during the first connection to the network, retrieves the MUD file to obtain information from the manufacturer regarding the allowed behaviors for specific devices. The MUD manager uses the information (stored in a MUD file) to communicate with network services like firewalls, DNS, and DHCP services and / or other services such as network monitoring software, to communicate allowed behaviors of individual devices.
You can also visit the National Cybersecurity Center of Excellence (NCCoE) at https://www.nccoe.nist.gov/content/mud-related-resources to access more resources related to MUD.
Learn about the security considerations that IoT manufacturers must address when building connected devices and how MUD files simplify secure network onboarding.
Current participation statistics for GlobalPlatform's MUD URL program