Exposed Infrastructures: Discovery, Attacks and Remediation of Insecure ICS Remote Management Devices

Sasaki, Takayuki; Fujita, Akira; Gañán, Carlos; Eeten, Michel van; Yoshioka, Katsunari; Matsumoto, Tsutomu

doi:10.1109/sp46214.2022.9833730

Cited by 19 publications

(10 citation statements)

References 19 publications

(19 reference statements)

Supporting

Mentioning

Contrasting

Order By: Relevance

“…Telnet serves as a communication tool, allowing users to interact with devices located at remote locations. Network administrators commonly utilize Telnet for accessing and managing remote devices by establishing connections through the IP address or hostname of the remote device [91]. Figure 4 below illustrates the Telnet.…”

Section: Telnetmentioning

confidence: 99%

Performance, privacy, and security issues of TCP/IP at the application layer: A comprehensive survey

Timothy Murkomen

2024

GSC Adv. Res. Rev.

View full text Add to dashboard Cite

TCP/IP is the backbone of modern network communication, connecting devices across the world. TCP/IP at its core is a suite of protocols that enables the transmission of data between computers, facilitating the foundation of the interconnected global network. At the Application Layer of TCP/IP is where the interaction between software applications and the network occurs. The user-centric protocols such as HTTP, SMTP, FTP, POP3, IMAP and DNS facilitate various tasks at this layer such as web browsing, email communication, and file transfer. This comprehensive survey conducted an exploration of the performance, security and privacy issues at the application layer of the TCP/IP. It initiated by providing a background of TCP/IP model, it’s architecture and the core characteristics, with major focus on the application layer. This paper aimed to discuss the state-of-the-art of performance, privacy and security concerns in TCP/IP application layer. It also proposed future research areas to equip researchers, practitioners, policy makers and the decision makers with tangible knowledge, offering guidance in navigating the performance, privacy and security concerns in TCP/IP Application Layer. It aimed to discuss the current performance, privacy and security research gaps at the Application Layer of the TCP/IP Model. The findings of this research sheds light on the performance, privacy and security issues while suggesting the countermeasures to strengthen and optimize the overall performance, security and privacy of TCP/IP model at the application layer. The paper finally suggests future directions and research areas at the TCP/IP application layer.

show abstract

Section: Telnetmentioning

confidence: 99%

Performance, privacy, and security issues of TCP/IP at the application layer: A comprehensive survey

Timothy Murkomen

2024

GSC Adv. Res. Rev.

View full text Add to dashboard Cite

show abstract

“…Exploiting such vulnerability allows a remote authenticated attacker to escalate the privilege. The attacker may manipulate the ICS devices connected to the DL8 [29].…”

Section: Critical Path Selectionmentioning

confidence: 99%

Critical Relation Path Aggregation-Based Industrial Control Component Exploitable Vulnerability Reasoning

Wang¹,

Huo²,

Zhang³

et al. 2023

Computers, Materials &Amp; Continua

View full text Add to dashboard Cite

“…In the ICS domain, malicious front-end code can be pushed to a programmable controller through the legitimate channels discussed in Section IV-B and perpetually executed on a multitude of browser-equipped devices throughout the industrial network [16]. [17]. In this work, Sasaki et al scanned the public Internet to find Remote Management Device web portals (these servers are often intentionally Internet-facing since they are meant to be used remotely) and performed successful penetration tests on interfaces made by various mid-sized vendors.…”

Section: Introductionmentioning

confidence: 99%

Compromising Industrial Processes using Web-Based Programmable Logic Controller Malware

Pickren,

Shekari,

Zonouz

et al. 2024

Proceedings 2024 Network and Distributed System Security Symposium

View full text Add to dashboard Cite

We present a novel approach to developing programmable logic controller (PLC) malware that proves to be more flexible, resilient, and impactful than current strategies. While previous attacks on PLCs infect either the control logic or firmware portions of PLC computation, our proposed malware exclusively infects the web application hosted by the emerging embedded webservers within the PLCs. This strategy allows the malware to stealthily attack the underlying real-world machinery using the legitimate web application program interfaces (APIs) exposed by the admin portal website. Such attacks include falsifying sensor readings, disabling safety alarms, and manipulating physical actuators. Furthermore, this approach has significant advantages over existing PLC malware techniques (control logic and firmware) such as platform independence, easeof-deployment, and higher levels of persistence. Our research shows that the emergence of web technology in industrial control environments has introduced new security concerns that are not present in the IT domain or consumer IoT devices. Depending on the industrial process being controlled by the PLC, our attack can potentially cause catastrophic incidents or even loss of life. We verified these claims by performing a Stuxnet-style attack using a prototype implementation of this malware on a widely-used PLC model by exploiting zero-day vulnerabilities that we discovered during our research 1 . Our investigation reveals that every major PLC vendor (80% of global market share [1]) produces a PLC that is vulnerable to our proposed attack vector. Lastly, we discuss potential countermeasures and mitigations.

show abstract

Exposed Infrastructures: Discovery, Attacks and Remediation of Insecure ICS Remote Management Devices

Cited by 19 publications

References 19 publications

Performance, privacy, and security issues of TCP/IP at the application layer: A comprehensive survey

Performance, privacy, and security issues of TCP/IP at the application layer: A comprehensive survey

Critical Relation Path Aggregation-Based Industrial Control Component Exploitable Vulnerability Reasoning

Compromising Industrial Processes using Web-Based Programmable Logic Controller Malware

Contact Info

Product

Resources

About