Segurança em redes industriais: aplicação da técnica de autenticação HB-MP* em rede Modbus
The growth in the integration and use of standards and protocols common to computer networks has seen industrial networks increasingly subject to attacks and invasions. Modbus is an example of a widely used industrial protocol, and like others, does not possess native tools for secure communication....
| Autor: | |
|---|---|
| Tipo de recurso: | tesis doctoral |
| Estado: | Versión publicada |
| Fecha de publicación: | 2022 |
| País: | Brasil |
| Institución: | Universidade Federal de Uberlândia (UFU) |
| Repositorio: | Repositório Institucional da UFU |
| Idioma: | portugués |
| OAI Identifier: | oai:repositorio.ufu.br:123456789/35622 |
| Acceso en línea: | https://repositorio.ufu.br/handle/123456789/35622 http://doi.org/10.14393/ufu.te.2022.422 |
| Access Level: | acceso abierto |
| Palabra clave: | Segurança de redes Network security Sistemas de automação industrial Networked control systems Autenticação Authentication Modbus TCP CNPQ::ENGENHARIAS::ENGENHARIA ELETRICA::SISTEMAS ELETRICOS DE POTENCIA Engenharia Elétrica Sistemas de energia elétrica - Controle Eletrônica de potência |
| Sumario: | The growth in the integration and use of standards and protocols common to computer networks has seen industrial networks increasingly subject to attacks and invasions. Modbus is an example of a widely used industrial protocol, and like others, does not possess native tools for secure communication. Security for Modbus is achieved generally by use of security techniques on the lower layers of the communication stack. This study highlights vulnerabilities associated with Modbus, with its focus on Modbus TCP, while offering a protection proposal through use of Master and Slave authentication at the application layer level. The technique was implemented with the HB-MP* protocol, which focused on protection against invading Masters or Slaves. The main contribution of this paper is found through providing Modbus communications greater security at the application layer level, as a single security implementation or increasing security in conjunction with other lower layer security techniques. A Modbus TCP network was set up with Master and Slave nodes performing Modbus communication with HB-MP* authentication, subject to different intrusion scenarios. Results showed it was possible to detect invading nodes and prevent some attacks, whereas suffering only a small cost associated with processing and transmission delays. |
|---|