Security Issues with BACnet Value Handling

Matthew Peacock, Michael N. Johnstone, Craig Valli

2017

Abstract

Building automation systems, or building management systems, control services such as heating, air-conditioning and security access in facilities. A common protocol used to transmit data regarding the status of components is BACnet. Unfortunately, whilst security is included in the BACnet standard, it is rarely implemented by vendors of building automation systems. This lack of attention to security can lead to vulnerabilities in the protocol being exploited with the result that the systems and the buildings they control can be compromised. This paper describes a proof-of-concept protocol attack on a BACnet system and examines the potential of modeling the basis of the attack.

References

  1. Bodeau, D. and Graubart, R. (2013). Characterizing effects on the cyber adversary: A vocabulary for analysis and assessment. Technical report, MITRE.
  2. Chipkin, P. (2009). Bacnet for field technicians. Technical report, Chipkin Automation Systems.
  3. Gamma, E., Helm, R., Johnson, R., and Vlissides, J. (1995). Design patterns: elements of reusable object-oriented software. Addison-Wesley Longman Publishing Co., Inc., Boston, MA, USA.
  4. Granzer, W. and Kastner, W. (2010). Communication services for secure building automation networks. In Industrial Electronics (ISIE), 2010 IEEE International Symposium on, pages 3380-3385.
  5. Hoare, C. A. R. (1978). Communicating sequential processes. Commun. ACM, 21(8):666-677.
  6. Holmberg, D. G. (2003). Bacnet wide area network security threat assessment. Technical report, NIST.
  7. Holmberg, D. G., Bender, J. J., and Galler, M. A. (2006). Using the bacnet firewall router. ASHRAE American Society for Heating, Refrigeration and Air Conditioning Journal, 48(11).
  8. Johnstone, M. N., Peacock, M., and den Hartog, J. (2015). Timing attack detection on bacnet via a machine learning approach. In Proceedings of the 13th Australian Information Security Management Conference, pages pp57-64.
  9. Kastner, W., Neugschwandtner, G., Soucek, S., and Newman, H. (2005). Communication systems for building automation and control. Proceedings of the IEEE, 93(6):1178-1203.
  10. Kaur, J., Tonejc, J., Wendzel, S., and Meier, M. (2015). Securing bacnet's pitfalls. In Federrath, H. and Gollmann, D., editors, ICT Systems Security and Privacy Protection, volume 455 of IFIP Advances in Information and Communication Technology, pages 616-629. Springer International Publishing.
  11. Newman, H. M. (2013). BACnet: The Global Standard for Building Automation and Control Networks.
  12. (OMG), O. M. G. (2014). Object Constraint Language (OCL). Version 2.4.
  13. Peacock, M. and Johnstone, M. N. (2014). An analysis of security issues in building automation systems. In Proceedings of the 12th Australian Information Security Management Conference, pages 100-104.
  14. Spivey, J. M. (1989). The Z Notation: A Reference Manual. Prentice-Hall, Inc., Upper Saddle River, NJ, USA.
  15. SSPC-135 (2012). Bacnet: A data communciation protocol for building automation and control networks.
  16. SSPC-135 (2014). Bacnet addenda and companion standards.
Download


Paper Citation


in Harvard Style

Peacock M., Johnstone M. and Valli C. (2017). Security Issues with BACnet Value Handling . In Proceedings of the 3rd International Conference on Information Systems Security and Privacy - Volume 1: ICISSP, ISBN 978-989-758-209-7, pages 546-552. DOI: 10.5220/0006263405460552


in Bibtex Style

@conference{icissp17,
author={Matthew Peacock and Michael N. Johnstone and Craig Valli},
title={Security Issues with BACnet Value Handling},
booktitle={Proceedings of the 3rd International Conference on Information Systems Security and Privacy - Volume 1: ICISSP,},
year={2017},
pages={546-552},
publisher={SciTePress},
organization={INSTICC},
doi={10.5220/0006263405460552},
isbn={978-989-758-209-7},
}


in EndNote Style

TY - CONF
JO - Proceedings of the 3rd International Conference on Information Systems Security and Privacy - Volume 1: ICISSP,
TI - Security Issues with BACnet Value Handling
SN - 978-989-758-209-7
AU - Peacock M.
AU - Johnstone M.
AU - Valli C.
PY - 2017
SP - 546
EP - 552
DO - 10.5220/0006263405460552