Securing BACnet’s Pitfalls

Abstract : Building Automation Systems (BAS) are crucial for monitoring and controlling buildings, ranging from small homes to critical infrastructure, such as airports or military facilities. A major concern in this context is the security of BAS communication protocols and devices. The building automation and control networking protocol (BACnet) is integrated into products of more than 800 vendors worldwide. However, BACnet devices are vulnerable to attacks. We present a novel solution for the two most important BACnet layers, i.e. those independent of the data link layer technology, namely the network and the application layer. We provide the first implementation and evaluation of traffic normalization for BAS traffic. Our proof of concept code is based on the open source software Snort.
Type de document :
Communication dans un congrès
Hannes Federrath; Dieter Gollmann. 30th IFIP International Information Security Conference (SEC), May 2015, Hamburg, Germany. IFIP Advances in Information and Communication Technology, AICT-455, pp.616-629, 2015, ICT Systems Security and Privacy Protection. 〈10.1007/978-3-319-18467-8_41〉
Liste complète des métadonnées

Littérature citée [13 références]  Voir  Masquer  Télécharger

https://hal.inria.fr/hal-01345153
Contributeur : Hal Ifip <>
Soumis le : mercredi 13 juillet 2016 - 11:17:06
Dernière modification le : mercredi 13 juillet 2016 - 11:18:40

Fichier

337885_1_En_41_Chapter.pdf
Fichiers produits par l'(les) auteur(s)

Licence


Distributed under a Creative Commons Paternité 4.0 International License

Identifiants

Citation

Jaspreet Kaur, Jernej Tonejc, Steffen Wendzel, Michael Meier. Securing BACnet’s Pitfalls. Hannes Federrath; Dieter Gollmann. 30th IFIP International Information Security Conference (SEC), May 2015, Hamburg, Germany. IFIP Advances in Information and Communication Technology, AICT-455, pp.616-629, 2015, ICT Systems Security and Privacy Protection. 〈10.1007/978-3-319-18467-8_41〉. 〈hal-01345153〉

Partager

Métriques

Consultations de la notice

63

Téléchargements de fichiers

8