Envisioning Smart Building Botnets
نویسندگان
چکیده
A building automation system (BAS) is the IT equipment within a building that monitors and controls the building (e.g., measuring temperature in a room to configure the heating level within the same room). We discuss the potential and the use of botnets in the context of BAS. Our botnet concept and scenario is novel in the sense that it takes advantage of the phyiscal capabilities of a building and as it has to adapt to a specialized environment being highly deterministic, predictable, simplistic and conservative. These properties make anomalies easy to detect. Smart building botnets allow the monitoring and remote control of (critical) building automation infrastructure in public and private facilities, such as airports or hospitals. We discuss why building automation botnets could thus enable attackers to cause various critical damage on whole regions and economies. Hiding the command and control communication is a highly beneficial step to adapt botnets to the BAS environment. We show that this is not necessarily a big hurdle and can be solved using existing covert channel techniques.
منابع مشابه
Univ . Grenoble Alpes , CNRS , EDDEN - PACTE
Smart Grid technology appears necessary to succeed in activating the demand through demand side management (DSM) programs. This would in turn improve energy efficiency and achieve environmental targets through controlled consumption. The many pilot projects led worldwide involving smart grids technology, brought quantitative evaluations of DSM measures on electricity load. Efficient DSM instrum...
متن کاملI Trust my Zombies: A Trust-enabled Botnet
Defending against botnets has always been a cat and mouse game. Cyber-security researchers and government agencies attempt to detect and take down botnets by playing the role of the cat. In this context, a lot of work has been done towards reverse engineering certain variants of malware families as well as understanding the network protocols of botnets to identify their weaknesses (if any) and ...
متن کاملMultiphase Intrusion Detection Technique in Peer to Peer Network
A number of approaches for network-based botnet detection has been recently proposed as Botnets are found to be taught-to-commit several malicious activities, such as establishing distributed denial-of-service (DDoS) attacks, sending spam, or stealing private information. In this regard we propose a framework which can classify & identify effectively which are likely-to-be bots through Anomaly ...
متن کاملA Multi-Layered Approach to Botnet Detection
– The goal of this research was to design a multi-layered architecture for the detection of a wide range of existing and new botnets. By not relying on a single technique but rather building in the ability to support multiple techniques, the goal is to be able to detect a wider array of bots and botnets than is possible with a single technique. The open architecture and API will allow any techn...
متن کاملA New Real-Time Pricing Scheme Considering Smart Building Energy Management System
Real-time pricing schemes make the customers to feel the energy price volatility and improve their load profiles. However, these schemes have no significant effect on demand-side uncertainty reduction. In this paper, considering smart grid infrastructures and smart building Energy Management System (EMS), a new real-time pricing scheme is presented to reduce the uncertainty of demand-side. In t...
متن کامل