Optimizing Internet Scanning for Assessing Industrial Systems Exposure

Abstract : Industrial systems are composed of multiple components whose security has not been addressed for a while. Even if recent propositions target to improve it, they are still often exposed to vulnerabilities, since their components are hard to update or replace. In parallel, they tend to be more and more exposed in the public Internet for convenience. Although awareness of such a problem has been raised, there is no precise evaluation of such a risk. In this paper, we define a methodology to measure the exposure of industrial systems through Internet. In particular, a carefully designed scanning approach, named WiScan, is proposed with a low footprint due to the high sensitivity and low resources of targeted systems. It has been applied on the entire IPv4 address space, by targeting specific SCADA ports.
Type de document :
Communication dans un congrès
7th International Workshop on TRaffic Analysis and Characterization, Sep 2016, Paphos, Cyprus. 2016, TRAC 2016 - 7th International Workshop on TRaffic Analysis and Characterization. 〈10.1109/IWCMC.2016.7577111〉
Liste complète des métadonnées

Littérature citée [22 références]  Voir  Masquer  Télécharger

https://hal.inria.fr/hal-01371674
Contributeur : Jérôme François <>
Soumis le : jeudi 17 novembre 2016 - 09:18:58
Dernière modification le : lundi 9 avril 2018 - 15:50:04
Document(s) archivé(s) le : jeudi 16 mars 2017 - 15:52:24

Fichier

trac2016CR.pdf
Fichiers produits par l'(les) auteur(s)

Identifiants

Collections

Citation

Jérôme François, Abdelkader Lahmadi, Valentin Giannini, Damien Cupif, Frédéric Beck, et al.. Optimizing Internet Scanning for Assessing Industrial Systems Exposure. 7th International Workshop on TRaffic Analysis and Characterization, Sep 2016, Paphos, Cyprus. 2016, TRAC 2016 - 7th International Workshop on TRaffic Analysis and Characterization. 〈10.1109/IWCMC.2016.7577111〉. 〈hal-01371674〉

Partager

Métriques

Consultations de la notice

343

Téléchargements de fichiers

168