Skip to content. | Skip to navigation

Personal tools

This is SunRain Plone Theme

Navigation

You are here: Home / Publications

Abstract

Marcin Nawrocki, Thomas C. Schmidt, Matthias Wählisch,
Uncovering Vulnerable Industrial Control Systems from the Internet Core,
Technical Report, No. arXiv:1901.04411, January 2019.
[html][pdf][BibTeX][Abstract]

Abstract: Industrial control systems (ICS) are managed remotely with the help of dedicated protocols that were originally designed to work in walled gardens. Many of these protocols have been adapted to Internet transport and support wide-area communication. ICS now exchange insecure traffic on an inter-domain level, putting at risk not only common critical infrastructure, but also the Internet ecosystem (e.g., DRDoS attacks). In this paper, we uncover unprotected inter-domain ICS traffic at two central Internet vantage points, an IXP and an ISP. This traffic analysis is correlated with data from honeypots and Internet-wide scans to separate industrial from non-industrial ICS traffic. We provide an in-depth view on Internet-wide ICS communication. Our results can be used (1) to create precise filters for potentially harmful non-industrial ICS traffic, and (2) to detect ICS sending unprotected inter-domain ICS traffic, being vulnerable to eavesdropping and traffic manipulation attacks.

Themes: Network Security, Internet Measurement and Analysis

 


This page generated by bibTOhtml on Tue 21 May 00:05:08 CEST 2019

Document Actions

« May 2019 »
May
MoTuWeThFrSaSu
12345
6789101112
13141516171819
20212223242526
2728293031
Upcoming Events
IFIP Networking Conference May 20, 2019 - May 22, 2019 — Warsaw, Poland
RIOT Hack'n'ACK (2019/05) May 28, 2019 05:00 PM - 11:00 PM — HAW Hamburg, BT7, R4.60
RIOT Hack'n'ACK (2019/06) Jun 25, 2019 05:00 PM - 11:00 PM — HAW Hamburg, BT7, R4.60
Upcoming events…