Utilize este identificador para referenciar este registo:
https://hdl.handle.net/10316/101586
Título: | A Comprehensive Security Analysis of a SCADA Protocol: From OSINT to Mitigation | Autor: | Rosa, Luís Freitas, Miguel Mazo, Sergey Monteiro, Edmundo Cruz, Tiago Simões, Paulo |
Palavras-chave: | SCADA; security; PCOM; ICS; IACS | Data: | 2019 | Projeto: | ATENA H2020 EU Project (H2020-DS-2015-1 Project) under Grant 700581 | Título da revista, periódico, livro ou evento: | IEEE Access | Volume: | 7 | Resumo: | It is an established fact that the security of Industrial Automation and Control Systems (IACS) strongly depends on the robustness of the underlying supervisory control and data acquisition (SCADA) network protocols (among other factors). This becomes especially evident when considering the extent to which certain protocols, designed with poor or nonexistent security mechanisms, have led to a considerable number of past incident reports affecting critical infrastructures and essential services. Considering the current situation, it is rather obvious why the proper auditing and analysis of SCADA protocols are considered as key when it comes to design and/or protect IACS infrastructures. However, while the security of some protocols, such as Modbus or DNP3, has already been extensively analyzed, the same cannot be said for other protocols and technologies being used in the same domain that have not received the same amount of attention. In this paper, we provide a comprehensive security analysis of the PCOM SCADA protocol, including a dissection of PCOM, a demonstration of several attacks scenarios on PCOM-based systems, and also an analysis of possible mitigation strategies against these potential attacks. Moreover, this paper also describes a number of open-source tools that we developed for further analysis and research of PCOM security aspects, including a PCOM Wireshark dissector, a Nmap NSE PCOM scan, multiple Metasploit PCOM modules, a set of Snort PCOM rules, and several network traf c datasets containing multiple samples of different types of PCOM operations. | URI: | https://hdl.handle.net/10316/101586 | ISSN: | 2169-3536 | DOI: | 10.1109/ACCESS.2019.2906926 | Direitos: | openAccess |
Aparece nas coleções: | I&D CISUC - Artigos em Revistas Internacionais |
Ficheiros deste registo:
Ficheiro | Descrição | Tamanho | Formato | |
---|---|---|---|---|
A_Comprehensive_Security_Analysis_of_a_SCADA_Protocol_From_OSINT_to_Mitigation.pdf | 7.14 MB | Adobe PDF | Ver/Abrir |
Citações SCOPUSTM
16
Visto em 17/nov/2022
Citações WEB OF SCIENCETM
14
Visto em 2/mai/2023
Visualizações de página
96
Visto em 17/jul/2024
Downloads
300
Visto em 17/jul/2024
Google ScholarTM
Verificar
Altmetric
Altmetric
Este registo está protegido por Licença Creative Commons