Design of an Example Network Protocol for Security Tests Targeting Industrial Automation Systems

Steffen Pfrang, Mark Giraud, Anne Borcherding, David Meier, Jürgen Beyerer

Abstract

Emerging concepts like Industrial Internet of Things (IIOT) and Industrie 4.0 require Industrial Automation and Control Systems (IACS) to be connected via networks and even to the Internet. These connections raise the importance of security for those devices enormously. Security testing for IACS aims at searching for vulnerabilities which can be utilized by attackers from the network. Once discovered, those gaps should be closed with patches before they can get exploited. Different tools utilized for this kind of security testing are dealing with network protocols. In practice, they suffer from peculiarities being present in common industrial automation protocols like OPC UA and Profinet IO. This paper tries to improve the situation by providing an extensive overview of network packet structures and network protocol behavior. Based on this analysis, an example protocol has been developed. The idea behind this artificial network protocol is that tools which are able to handle all the specialties of this protocol, are able to handle every imaginable protocol. Finally, those tools can be used to conduct exhaustive security tests for IACS.

Download


Paper Citation


in Harvard Style

Pfrang S., Giraud M., Borcherding A., Meier D. and Beyerer J. (2019). Design of an Example Network Protocol for Security Tests Targeting Industrial Automation Systems.In Proceedings of the 5th International Conference on Information Systems Security and Privacy - Volume 1: ForSE, ISBN 978-989-758-359-9, pages 727-738. DOI: 10.5220/0007704907270738


in Bibtex Style

@conference{forse19,
author={Steffen Pfrang and Mark Giraud and Anne Borcherding and David Meier and Jürgen Beyerer},
title={Design of an Example Network Protocol for Security Tests Targeting Industrial Automation Systems},
booktitle={Proceedings of the 5th International Conference on Information Systems Security and Privacy - Volume 1: ForSE,},
year={2019},
pages={727-738},
publisher={SciTePress},
organization={INSTICC},
doi={10.5220/0007704907270738},
isbn={978-989-758-359-9},
}


in EndNote Style

TY - CONF

JO - Proceedings of the 5th International Conference on Information Systems Security and Privacy - Volume 1: ForSE,
TI - Design of an Example Network Protocol for Security Tests Targeting Industrial Automation Systems
SN - 978-989-758-359-9
AU - Pfrang S.
AU - Giraud M.
AU - Borcherding A.
AU - Meier D.
AU - Beyerer J.
PY - 2019
SP - 727
EP - 738
DO - 10.5220/0007704907270738