nach oben

Automatic Control and Computer Sciences

Erschienen in:

01.12.2019

Actual Vulnerabilities of Industrial Automation Protocols of an Open Platform Communications Series

verfasst von: D. P. Zegzhda, M. O. Kalinin, M. V. Levykin

Erschienen in: Automatic Control and Computer Sciences | Ausgabe 8/2019

Einloggen, um Zugang zu erhalten

Aktivieren Sie unsere intelligente Suche, um passende Fachinhalte oder Patente zu finden.

search-config

KI-gestützte Suche

Aus

Abstract

Open Platform Communications (OPC), the interoperability standard for the secure and reliable exchange of data in the industrial automation space, consists of two main types of protocol – classic and unified. The paper reviews a classic set of DA/HDA/A&E protocols, which is based on Microsoft DCOM and RPC technologies. Architectural cyber threats of the classic type of OPC are systematized in this work.

Vorheriger Artikel Organization of the Quantum Cryptographic Keys Distribution System for Transportation Infrastructure Users

Nächster Artikel Spoofing Attack on Eigenfaces-Based Biometric Identification System

Levykin, M.V., New features of self-propagating malware, Sist. Sredstva Inf., 2011, vol. 21, no. 2, pp. 69–72.

The RPC Model. The RPC programming model in the official MSDN documentation. https://docs.microsoft.com/ en-us/windows/desktop/Rpc/microsoft-rpc-model.

Authentication-Level Constants. Description of RPC levels in the official MSDN documentation. https://docs.microsoft.com/en-us/windows/desktop/rpc/authentication-level-constants.

RPC_IF_CALLBACK_FN callback function. Procedure callback function that implements data security checks. https://docs.microsoft.com/ru-ru/windows/desktop/api/rpcdce/nc-rpcdce-rpc_if_callback_fn.

BadLock attack description. https://adsecurity.org/?p=2812.

Siering, P., Badlock—Why the Windows and Samba Vulnerability is Important. https://www.heise.de/ct/artikel/ Badlock-Why-the-Windows-and-Samba-Vulnerability-is-Important-3175176.html.

Impacket Framework. Impacket Source Code. https://github.com/SecureAuthCorp/impacket.

SpoolSample Utility. SpoolSample Source Code. https://github.com/leechristensen/SpoolSample.

NetNTLMtoSilverTicket Utility. Source Code. https://github.com/NotMedic/NetNTLMtoSilverTicket.

10.

Grusho, A.A., Grusho, N.A., Levykin, M.V., and Timonina, E.E., Methods of identifying host capture in distributed metadata-protected computing systems, Inf. Primen., 2018, vol. 12, no. 4, pp. 39–43.

11.

LogonTracer Utility. LogonTracer Source Code. https://github.com/JPCERTCC/LogonTracer.

Titel: Actual Vulnerabilities of Industrial Automation Protocols of an Open Platform Communications Series
verfasst von: D. P. Zegzhda
M. O. Kalinin
M. V. Levykin
Publikationsdatum: 01.12.2019
Verlag: Pleiades Publishing
Erschienen in: Automatic Control and Computer Sciences / Ausgabe 8/2019
Print ISSN: 0146-4116
Elektronische ISSN: 1558-108X
DOI: https://doi.org/10.3103/S0146411619080339

Springer Professional

Abstract

Bitte loggen Sie sich ein, um Zugang zu Ihrer Lizenz zu erhalten.

Weitere Artikel der Ausgabe 8/2019

Detection of Weaknesses in Information Systems for Automatic Selection of Security Actions

Forming the Composition of Functions and Instructions of Microprocessor Devices for Access Control Systems

Detection of Security Threats to Modern Websites

An Approach to Building Cyber-Resistant Interactions in the Industrial Internet of Things

A Consistent Approach to Building Secure Big Data Processing and Storage Systems

On the Construction of a Cybervisor for the Intelligent Monitoring and Control of Data Centers