Uncovering Vulnerable Industrial Control Systems from the Internet Core

Nawrocki, Marcin; Schmidt, Thomas C.; Wählisch, Matthias

doi:10.1109/NOMS47738.2020.9110256

DC Element	Wert	Sprache
dc.contributor.author	Nawrocki, Marcin	-
dc.contributor.author	Schmidt, Thomas C.	-
dc.contributor.author	Wählisch, Matthias	-
dc.date.accessioned	2020-09-02T15:38:43Z	-
dc.date.available	2020-09-02T15:38:43Z	-
dc.date.issued	2020-06-08	-
dc.identifier.isbn	978-1-7281-4973-8	en_US
dc.identifier.isbn	978-1-7281-4974-5	en_US
dc.identifier.uri	http://hdl.handle.net/20.500.12738/4583	-
dc.description.abstract	Industrial control systems (ICS) are managed remotely with the help of dedicated protocols that were originally designed to work in walled gardens. Many of these protocols have been adapted to Internet transport and support wide-area communication. ICS now exchange insecure traffic on an inter-domain level, putting at risk not only common critical infrastructure, but also the Internet ecosystem (e.g., DRDoS attacks). In this paper, we uncover unprotected inter-domain ICS traffic at two central Internet vantage points, an IXP and an ISP. This traffic analysis is correlated with data from honeypots and Internet-wide scans to separate industrial from non-industrial ICS traffic. We provide an in-depth view on Internet-wide ICS communication. Our results can be used (1) to create precise filters for potentially harmful non-industrial ICS traffic, and (2) to detect ICS sending unprotected inter-domain ICS traffic, being vulnerable to eavesdropping and traffic manipulation attacks.	en
dc.language.iso	en	en_US
dc.publisher	IEEE	en_US
dc.subject.ddc	004: Informatik	en_US
dc.title	Uncovering Vulnerable Industrial Control Systems from the Internet Core	en
dc.type	inProceedings	en_US
dc.relation.conference	IEEE/IFIP Network Operations and Management Symposium 2020	en_US
dc.description.version	PeerReviewed	en_US
local.contributorCorporate.editor	Institute of Electrical and Electronics Engineers	-
tuhh.oai.show	true	en_US
tuhh.publication.institute	Department Informatik	en_US
tuhh.publication.institute	Fakultät Technik und Informatik	en_US
tuhh.publisher.doi	10.1109/NOMS47738.2020.9110256	-
tuhh.relation.ispartofseries	Management in the age of softwarization and artificial intelligence : proceedings of IEEE/IFIP Network Operations and Management Symposium 2020 : 20-24 April 2020 / NOMS ; IEEE ComSoc - IEEE Communications Society, IFIP, IEEE	en_US
tuhh.type.opus	InProceedings (Aufsatz / Paper einer Konferenz etc.)	-
dc.type.casrai	Conference Paper	-
dc.type.dini	contributionToPeriodical	-
dc.type.driver	contributionToPeriodical	-
dc.type.status	info:eu-repo/semantics/publishedVersion	en_US
dcterms.DCMIType	Text	-
item.creatorGND	Nawrocki, Marcin	-
item.creatorGND	Schmidt, Thomas C.	-
item.creatorGND	Wählisch, Matthias	-
item.fulltext	No Fulltext	-
item.creatorOrcid	Nawrocki, Marcin	-
item.creatorOrcid	Schmidt, Thomas C.	-
item.creatorOrcid	Wählisch, Matthias	-
item.seriesref	Management in the age of softwarization and artificial intelligence : proceedings of IEEE/IFIP Network Operations and Management Symposium 2020 : 20-24 April 2020 / NOMS ; IEEE ComSoc - IEEE Communications Society, IFIP, IEEE	-
item.grantfulltext	none	-
item.cerifentitytype	Publications	-
item.tuhhseriesid	Management in the age of softwarization and artificial intelligence : proceedings of IEEE/IFIP Network Operations and Management Symposium 2020 : 20-24 April 2020 / NOMS ; IEEE ComSoc - IEEE Communications Society, IFIP, IEEE	-
item.languageiso639-1	en	-
item.openairecristype	http://purl.org/coar/resource_type/c_5794	-
item.openairetype	inProceedings	-
crisitem.author.dept	Department Informatik	-
crisitem.author.orcid	0000-0002-0956-7885	-
crisitem.author.parentorg	Fakultät Technik und Informatik	-
Enthalten in den Sammlungen:	Publications without full text