Security Analysis of Multilayer Scada Protocols: a Modbus Tcp Case Study
نویسندگان
چکیده
The layering of protocols in critical infrastructure networks – exemplified by Modbus TCP in the oil and gas sector and SS7oIP in the telecommunications sector – raises important security issues. The individual protocol stacks, e.g., Modbus and SS7, have certain vulnerabilities, and transporting these protocols using carrier protocols, e.g., TCP/IP, brings into play the vulnerabilities of the carrier protocols. Moreover, the layering produces unintended inter-protocol interactions and, possibly, new vulnerabilities. This paper describes a formal methodology for evaluating the security of multilayer SCADA protocols. The methodology, involving the analysis of peer-to-peer communications and multilayer protocol interactions, is discussed in the context of Modbus TCP, the predominant protocol used for oil and gas pipeline operations.
منابع مشابه
Security Strategies for SCADA Networks
SCADA systems have historically been isolated from other computing resources. However, the use of TCP/IP as a carrier protocol and the trend to interconnect SCADA systems with enterprise networks introduce serious security threats. This paper describes two strategies for securing SCADA networks, both of which have been implemented in a laboratory-scale Modbus network. The first utilizes a secur...
متن کاملThe Use of Attack Trees in Assessing Vulnerabilities in SCADA Systems
Protocol standards, particularly those for critical control systems in the petroleum and power industry, have traditionally been designed to address a specific application with little regard for security. At best, there has been only passing concern for security issues that may arise in deployment; at worst, protocol designers assume a closed (and therefore secure) environment, which, in many c...
متن کاملVirtual SCADA Systems for Cyber Security
This paper describes a pair of virtual Supervisory Control and Data Acquisition (SCADA) systems. These virtual simulations were built using virtual devices that simulate industrial processes, emulate control system ladder logic functionality, utilize control system communication protocols, and implement industrial Human Machine Interfaces (HMI). The first of these focuses on a comprehensive vir...
متن کاملA Testbed for locally Monitoring SCADA Networks in Smart Grids
This paper proposes a testbed for validating how our process-aware monitoring approach is able to increase the security of decentralized SCADA networks in power grids. The testbed builds on the simulation framework Mosaik, and cosimulates in an integrated way, the power distribution network itself, and the control network (Modbus/TCP). By extending the existing Mosaik framework with with a SCAD...
متن کاملDesign and Implementation of a Secure Modbus Protocol
The interconnectivity of modern and legacy supervisory control and data acquisition (SCADA) systems with corporate networks and the Internet has significantly increased the threats to critical infrastructure assets. Meanwhile, traditional IT security solutions such as firewalls, intrusion detection systems and antivirus software are relatively ineffective against attacks that specifically targe...
متن کامل