Vis enkel innførsel

dc.contributor.advisorKnapskog, Svein Johannb_NO
dc.contributor.advisorMartin Gilje, Jaatunnb_NO
dc.contributor.advisorHansen, Kainb_NO
dc.contributor.advisorSommestad, Teodornb_NO
dc.contributor.authorCheah, Zi Binnb_NO
dc.date.accessioned2014-12-19T14:15:27Z
dc.date.available2014-12-19T14:15:27Z
dc.date.created2013-09-09nb_NO
dc.date.issued2008nb_NO
dc.identifier646843nb_NO
dc.identifierntnudaim:4135nb_NO
dc.identifier.urihttp://hdl.handle.net/11250/262826
dc.description.abstractIEC 60870-5-104 protocol is an important protocol in the SCADA system. ABB Company uses this protocol for monitoring and managing power utility devices. These devices are interconnected and form part of an important SCADA systems.As SCADA environment becomes more interconnected to the networked world, the understanding of SCADA and it's associated protocol increases in the public domain. The concept of security by obscurity that protected the SCADA environment is no more efficient. In this thesis we look at the many characteristics of power utility SCADA devices and it's possible weaknesses.This thesis studied the IEC 60870-5-104 protocol. We used a method called ?fuzzing? to test the protocol implementation in ABB devices. This method allows us to inject random or semi-random data into ABB devices. We also used vulnerability scanners and HTTP scanner to probe the ABB device. Finally, we performed a TCP/IP based attack on the device as a proof-of-concept that these devices are vulnerable to TCP/IP based attacks. IEC 60870-5-104 is vulnerable to IEC 60870-5-104 attack because it sits on top of the TCP/IP stack. With the test results, we have suggested improvements and propose on future work. The author of this thesis has signed an Non Disclosure Agreement with ABB Corporate Research Centre, Oslo. The content of this thesis should only be read by people who have also signed the Non Disclosure Agreement.nb_NO
dc.languageengnb_NO
dc.publisherInstitutt for telematikknb_NO
dc.titleTesting and Exploring Vulnerabilities of the Applications Implementing IEC 60870-5-104 Protocolnb_NO
dc.typeMaster thesisnb_NO
dc.source.pagenumber93nb_NO
dc.contributor.departmentNorges teknisk-naturvitenskapelige universitet, Fakultet for informasjonsteknologi, matematikk og elektroteknikk, Institutt for telematikknb_NO


Tilhørende fil(er)

Thumbnail
Thumbnail

Denne innførselen finnes i følgende samling(er)

Vis enkel innførsel