Publisher URL: https://arxiv.org/abs/1901.04411
Title: Uncovering Vulnerable Industrial Control Systems from the Internet Core
Authors: Nawrocki, Marcin 
Schmidt, Thomas  
Wählisch, Matthias 
Issue Date: Jan-2019
Abstract: 
Industrial control systems (ICS) are managed remotely with the help of dedicated protocols that were originally designed to work in walled gardens. Many of these protocols have been adapted to Internet transport and support wide-area communication. ICS now exchange insecure traffic on an inter-domain level, putting at risk not only common critical infrastructure, but also the Internet ecosystem (e.g., DRDoS attacks). In this paper, we uncover unprotected inter-domain ICS traffic at two central Internet vantage points, an IXP and an ISP. This traffic analysis is correlated with data from honeypots and Internet-wide scans to separate industrial from non-industrial ICS traffic. We provide an in-depth view on Internet-wide ICS communication. Our results can be used (1) to create precise filters for potentially harmful non-industrial ICS traffic, and (2) to detect ICS sending unprotected inter-domain ICS traffic, being vulnerable to eavesdropping and traffic manipulation attacks.
URI: http://hdl.handle.net/20.500.12738/903
Institute: Department Informatik 
Fakultät Technik und Informatik 
Type: Report
Appears in Collections:Publications without full text

Show full item record

Page view(s)

85
checked on Dec 27, 2024

Google ScholarTM

Check

HAW Katalog

Check

Add Files to Item

Note about this record


Items in REPOSIT are protected by copyright, with all rights reserved, unless otherwise indicated.