The Global State of Security in Industrial Control Systems: An Empirical Analysis of Vulnerabilities around the World
| Autor: | Daniel Schneider, Daniel Krohmer, Daniel Fraunholz, Simon Duque Anton, Hans D. Schotten, Daniel Reti |
|---|---|
| Přispěvatelé: | Publica |
| Rok vydání: | 2021 |
| Předmět: |
FOS: Computer and information sciences
Industrial IT-Security Computer Science - Cryptography and Security Computer Networks and Communications Computer science Compromise media_common.quotation_subject Vulnerability OT-Security Computer security computer.software_genre Open Source Intelligence (OSINT) Threat Landscape media_common business.industry Information technology Industrial control system Attack surface Country of origin Internet of Things (IoT) Computer Science Applications Work (electrical) Hardware and Architecture Signal Processing The Internet business computer Cryptography and Security (cs.CR) Information Systems |
| DOI: | 10.48550/arxiv.2111.13862 |
| Popis: | Operational Technology (OT)-networks and -devices, i.e. all components used in industrial environments, were not designed with security in mind. Efficiency and ease of use were the most important design characteristics. However, due to the digitisation of industry, an increasing number of devices and industrial networks is opened up to public networks. This is beneficial for administration and organisation of the industrial environments. However, it also increases the attack surface, providing possible points of entry for an attacker. Originally, breaking into production networks meant to break an Information Technology (IT)-perimeter first, such as a public website, and then to move laterally to Industrial Control Systems (ICSs) to influence the production environment. However, many OT-devices are connected directly to the Internet, which drastically increases the threat of compromise, especially since OT-devices contain several vulnerabilities. In this work, the presence of OT-devices in the Internet is analysed from an attacker's perspective. Publicly available tools, such as the search engine Shodan and vulnerability databases, are employed to find commonly used OT-devices and map vulnerabilities to them. These findings are grouped according to country of origin, manufacturer, and number as well as severity of vulnerability. More than 13000 devices were found, almost all contained at least one vulnerability. European and Northern American countries are by far the most affected ones. Comment: IEEE Internet of Things Journal, May 2021 |
| Databáze: | OpenAIRE |
| Externí odkaz: |
|