Skip to Main content Skip to Navigation
New interface
Conference papers

A Firmware Verification Tool for Programmable Logic Controllers

Abstract : Current supervisory control and data acquisition (SCADA) systems do not have adequately tailored security solutions. Programmable logic controllers (PLCs) in SCADA systems are particularly vulnerable due to a lack of firmware auditing capabilities. Since a PLC is a field device that directly connects to a physical system for monitoring and control, a compromise of its firmware could have devastating consequences. This paper describes a tool developed specifically for verifying PLC firmware in SCADA systems. The tool captures serial data during firmware uploads and verifies it against a known good firmware executable. It can also replay captured data and analyze firmware without the presence of a PLC. The tool does not require any modifications to a SCADA system and can be implemented on a variety of platforms. These features, along with the ability to isolate the tool from production systems and adapt it to various architectures, make the tool attractive for use in diverse SCADA environments.
Document type :
Conference papers
Complete list of metadata
Contributor : Hal Ifip Connect in order to contact the contributor
Submitted on : Monday, March 6, 2017 - 3:02:03 PM
Last modification on : Sunday, April 29, 2018 - 1:48:02 PM
Long-term archiving on: : Wednesday, June 7, 2017 - 2:28:46 PM


Files produced by the author(s)


Distributed under a Creative Commons Attribution 4.0 International License



Lucille Mcminn, Jonathan Butts. A Firmware Verification Tool for Programmable Logic Controllers. 6th International Conference on Critical Infrastructure Protection (ICCIP), Mar 2012, Washington, DC, United States. pp.59-69, ⟨10.1007/978-3-642-35764-0_5⟩. ⟨hal-01483820⟩



Record views


Files downloads