A Meta Model for a Comprehensive Description of Network Protocols Improving Security Tests

Steffen Pfrang; David Meier; Andreas Fleig; Jürgen Beyerer; Jürgen Beyerer

doi:10.5220/0009150206710682

A Meta Model for a Comprehensive Description of Network Protocols Improving Security Tests

Steffen Pfrang, David Meier, Andreas Fleig, Jürgen Beyerer, Jürgen Beyerer

2020

Abstract

Modern industrial automation and control systems (IACS) are highly interconnected via Ethernet. Performing security tests to detect possible vulnerabilities in IACS is one of the measures requested by the IEC 62443 series of standards in order to improve their security. However, security testing tools and frameworks which exceed the power of random fuzzing require precise network protocol definitions. Unfortunately, those definitions vary greatly from tool to tool. Additionally, their creation and maintenance is time-consuming and error-prone. In consequence, especially common IACS protocols like Profinet IO or OPC UA are seldom to never implemented. To overcome this issue, this work proposes and implements an approach of a generic meta model for a comprehensive description of arbitrary network protocols. An important use case of this meta model is the export of network protocol definitions for different testing tools.

Download

Paper Citation

in Harvard Style

Pfrang S., Meier D., Fleig A. and Beyerer J. (2020). A Meta Model for a Comprehensive Description of Network Protocols Improving Security Tests. In Proceedings of the 6th International Conference on Information Systems Security and Privacy - Volume 1: ICISSP, ISBN 978-989-758-399-5, pages 671-682. DOI: 10.5220/0009150206710682

in Bibtex Style

@conference{icissp20,
author={Steffen Pfrang and David Meier and Andreas Fleig and Jürgen Beyerer},
title={A Meta Model for a Comprehensive Description of Network Protocols Improving Security Tests},
booktitle={Proceedings of the 6th International Conference on Information Systems Security and Privacy - Volume 1: ICISSP,},
year={2020},
pages={671-682},
publisher={SciTePress},
organization={INSTICC},
doi={10.5220/0009150206710682},
isbn={978-989-758-399-5},
}

in EndNote Style

TY - CONF

JO - Proceedings of the 6th International Conference on Information Systems Security and Privacy - Volume 1: ICISSP,
TI - A Meta Model for a Comprehensive Description of Network Protocols Improving Security Tests
SN - 978-989-758-399-5
AU - Pfrang S.
AU - Meier D.
AU - Fleig A.
AU - Beyerer J.
PY - 2020
SP - 671
EP - 682
DO - 10.5220/0009150206710682