tra ffi c lights smart grid honeypots in ics environments
play

) tra ffi c lights smart grid Honeypots in ICS Environments space - PowerPoint PPT Presentation

Jan 14, 2023 •383 likes •656 views

) tra ffi c lights smart grid Honeypots in ICS Environments space station steel mill ( power plant supertanker death star gas pipeline sewage plant wind turbine ) cypherpunk chaotic neutral privacy activist researcher DI Daniel

  1. ) tra ffi c lights smart grid Honeypots in ICS Environments space station steel mill ( power plant supertanker death star gas pipeline sewage plant wind turbine

  2. ) cypherpunk chaotic neutral privacy activist researcher DI Daniel Haslinger, BSc. 
 developer IT Security Researcher honeynet ( project Institute of IT Security Research St. Poelten University of Applied Sciences member The Honeynet Project Norwegian “honeynor” chapter

  3. 2014: HAVEX 1999: Gazprom 
 2012: Flame 2008: Lodz 2006: Browns Ferry (published) ICS vulnerabilities are on the rise 2010: Stuxnet 2011: DUQU 2013: Shamoon 2000: Maroochy Shire

  4. No of published vulnerabilities found on the web 160 120 80 40 2009 2010 2011 2012 2013 2014

  5. Intrusion Detection Systems Data Loss Prevention Gateways L7 Firewalls Signature Based Detection Mechanisms ( Fuzzy Detection Mechanisms

  6. HONEY POTS “gathering needles since 1998”

  7. Valuable Intelligence: WHO is attacking us? WHAT is the attacker trying to achieve? HOW is the actual attack carried out?

  8. ) 
 laos poland japan north korea russia “Who’s really attacking your ICS Equipment” china united states published 2013, trend labs brazil vietnam ( great britain chile

  9. 
 Advantages of Honeypots (in general) Small Data Sets you only need to analyze data that matters… Reduced False Positives what you see is what you … got Catching False Negatives to measure the performance of conventional 
 security techniques

  10. Pros & Cons of Honeypots (in general) Crypto aware the honeypot is the endpoint IPv6 aware the final frontier Flexible & cheap most solutions run on commodity hardware

  11. Pros & Cons of Honeypots (in general) Risk may be involved especially if you use high interaction honeypots Limited field of view you do not see the whole picture Not a real security solution to count on after all, you still need conventional security

  12. Products & Solutions CIAG SCADA Honeynet scadahoneynet.sourceforge.net 
 telnet, ftp, modbus, http very minimal interaction, but profits from honeyd (network, os decept.) ~ 2004 - 2005 SHaPe C-based low interaction module for Dionaea IEC61850

  13. Products & Solutions Digital Bond SCADA Honeynet Honeywall based approach based on SNORT works with emulated and real hardware will not work properly with encrypted protocols General Purpose Honeypots (ENISA, 2012) Amun, Dionaea, KFsensor, Honeyd, Honeytrap, nepenthes, Tiny Honeypot, …

  14. Products & Solutions Conpot developed from scratch based on python Modbus, HTTP, SNMP, S7comm, Kamstrup Hybrid Interaction through request forwarding Central Databus all across the protocols TAXII*, HPfriends, SQL, Syslog No OS deception stack (yet) Still under heavy development * DHS

  15. Deployment Strategies Thick Deployments Every entity contains the whole logic Global high interaction honeypot? - shipping, customs and hardware costs Individual maintenance involved Entity operator has physical access to your data

  16. Deployment Strategies Thin Deployments A central server spawns instances of honeypots Each instance serves one “honey tra ffi c reflector” Little to no hardware costs on the receiving site Tra ffi c is forwarded without the loss of vital information Logs and logic always stay in your hands

  17. Deployment Strategies Thin Deployments 192.92.13.5 72.23.4.1 10.0.0.z 10.0.0.y openVPN HP 10.0.0.x 10.0.0.1 BACKEND

  18. Deployment Strategies Thin Deployments 192.92.13.5 72.23.4.1 10.0.0.z 10.0.0.y POOH openVPN HP 10.0.0.x 10.0.0.1 BACKEND

  19. Deployment Strategies Thin Deployments 192.92.13.5 72.23.4.1 10.0.0.z 10.0.0.y POOH openVPN HP 10.0.0.x 10.0.0.1 BACKEND

  20. Deployment Strategies Thin Deployments 192.92.13.5 72.23.4.1 10.0.0.z 10.0.0.y POOH openVPN HP 10.0.0.x 10.0.0.1 BACKEND

  21. Deployment Strategies Thin Deployments 192.92.13.5 72.23.4.1 10.0.0.z 10.0.0.y POOH openVPN HP 10.0.0.x 10.0.0.1 BACKEND DNAT

  22. Deployment Strategies Thin Deployments 192.92.13.5 72.23.4.1 10.0.0.z 10.0.0.y POOH openVPN HP 10.0.0.x 10.0.0.1 BACKEND

  23. Deployment Strategies Thin Deployments 192.92.13.5 72.23.4.1 10.0.0.z 10.0.0.y POOH openVPN HP 10.0.0.x 10.0.0.1 BACKEND LOG & RESPOND

  24. Deployment Strategies Thin Deployments 192.92.13.5 72.23.4.1 10.0.0.z 10.0.0.y POOH openVPN HP 10.0.0.x 10.0.0.1 BACKEND

  25. Deployment Strategies Thin Deployments 192.92.13.5 72.23.4.1 10.0.0.z 10.0.0.y POOH openVPN HP 10.0.0.x 10.0.0.1 BACKEND SNAT

  26. Deployment Strategies Thin Deployments 192.92.13.5 72.23.4.1 10.0.0.z 10.0.0.y POOH openVPN HP 10.0.0.x 10.0.0.1 BACKEND

  27. Lessons learned Sifting through aggregated data is serious work Creating good templates is a work for perfectionists Don’t be overly attached to your CC OS deception is a MUST

Download Presentation
Download Policy: The content available on the website is offered to you 'AS IS' for your personal information and use only. It cannot be commercialized, licensed, or distributed on other websites without prior consent from the author. To download a presentation, simply click this link. If you encounter any difficulties during the download process, it's possible that the publisher has removed the file from their server.

Recommend

GRID PHD GRID, PHD The Smart Grid Cyber Security and the Future of Keeping the Lights On The

GRID PHD GRID, PHD The Smart Grid Cyber Security and the Future of Keeping the Lights On The

GRID PHD GRID, PHD The Smart Grid Cyber Security and the Future of Keeping the Lights On The Smart Grid, Cyber Security, and the Future of Keeping the Lights On Kelly Ziegler Chi f O Chief Operating Officer ti Offi National Board of

1.01k views • 48 slides
Keeping the Lights On: Challenges of Cybersecurity Training and Awareness for the Smart Grid

Keeping the Lights On: Challenges of Cybersecurity Training and Awareness for the Smart Grid

Keeping the Lights On: Challenges of Cybersecurity Training and Awareness for the Smart Grid Susan Farrand What is the Grid? Why is the Grid like it is? The War of the Currents Thomas Edison Nikola Tesla George Westinghouse Electricity

303 views • 27 slides
Smart Grid Increasing the IQ of the Smart Grid Unclear exactly what the smart grid is, but

Smart Grid Increasing the IQ of the Smart Grid Unclear exactly what the smart grid is, but

Smart Grid Increasing the IQ of the Smart Grid Unclear exactly what the smart grid is, but Through Active Customer it does include Participation in Wholesale Electricity Interval meters Markets Storage and load flexibility

465 views • 15 slides
Sustainability and Smart Grid Implementing a Non residential Smart Metering System PaperCon

Sustainability and Smart Grid Implementing a Non residential Smart Metering System PaperCon

Sustainability and Smart Grid Implementing a Non residential Smart Metering System PaperCon 2011 Page 195 Smart Grid Popular Topics in the News Smart Grid Smart Meter Smart Meter Micro Grid Distributive Generation Most talk is

427 views • 39 slides
Modernizing T&D on the Electric Grid 11/29/2011 Mark Nealon System Meter & Smart Grid

Modernizing T&D on the Electric Grid 11/29/2011 Mark Nealon System Meter & Smart Grid

Modernizing T&D on the Electric Grid 11/29/2011 Mark Nealon System Meter & Smart Grid Ameren Missouri PSC Smart Grid Technical Conference 1 What is the Smart Grid? What Smart Grid means to Ameren Transform Amerens grid to

341 views • 7 slides
Smart Grid Smart Grid Our Mission Our Mission Seattle City Light is dedicated to exceeding our

Smart Grid Smart Grid Our Mission Our Mission Seattle City Light is dedicated to exceeding our

Smart Grid Smart Grid Our Mission Our Mission Seattle City Light is dedicated to exceeding our customers expectations in producing and delivering environmentally responsible, safe, low cost and reliable power. The Smart Grid Definition

222 views • 19 slides
Smart Grid As Smart as the Quality of its Measurements by Linoh Magagula, PhD, MIEEE,

Smart Grid As Smart as the Quality of its Measurements by Linoh Magagula, PhD, MIEEE,

Smart Grid As Smart as the Quality of its Measurements by Linoh Magagula, PhD, MIEEE, National Metrology Institute of South Africa (NMISA) Smart: communication; sensing; control Smart grid intelligently integrated electricity

397 views • 18 slides
Technologies for the Smart Grid Smart Power Grid Technology Conference Dr. William Kao May 12,

Technologies for the Smart Grid Smart Power Grid Technology Conference Dr. William Kao May 12,

Technologies for the Smart Grid Smart Power Grid Technology Conference Dr. William Kao May 12, 2011 Agenda Smart Grid : what is it? Three important elements towards achieving SM: Architecture, Communications, Technology Five key SG

161 views • 15 slides
3. Overall vision of smart grid The so called smart grid should be Intelligent - capable of

3. Overall vision of smart grid The so called smart grid should be Intelligent - capable of

3. Overall vision of smart grid The so called smart grid should be Intelligent - capable of sensing, rerouting power, and minimizing a potential outage - work autonomously and respond faster than humans Efficient - capable of meeting

278 views • 11 slides
The Role of Smart Lighting in the Smart Grid St Stewart Findlater t Fi dl t VP, Engineering

The Role of Smart Lighting in the Smart Grid St Stewart Findlater t Fi dl t VP, Engineering

The Role of Smart Lighting in the Smart Grid St Stewart Findlater t Fi dl t VP, Engineering Discussing Today The smart grid needs a smart load The smart grid needs a smart load Lighting in commercial buildings LEDs a flexible

479 views • 10 slides
Basic Smart Grid Ingredients IIT Bombay (source: Gridwise Alliance) 21 Smart Grid Pyramid IIT

Basic Smart Grid Ingredients IIT Bombay (source: Gridwise Alliance) 21 Smart Grid Pyramid IIT

Basic Smart Grid Ingredients IIT Bombay (source: Gridwise Alliance) 21 Smart Grid Pyramid IIT Bombay (source: BC Hydro) 22 IEEE Smart Grid Conceptual Framework IIT Bombay The National Institute of Standards and Technology (NIST) Smart

785 views • 43 slides
Energy Transition towards a Cellular Smart Grid Community Grid Edge Flexibility & Power

Energy Transition towards a Cellular Smart Grid Community Grid Edge Flexibility & Power

GridSens & Smart Grid II Meeting Strathclyde 3 Feb 2016 Energy Transition towards a Cellular Smart Grid Community Grid Edge Flexibility & Power Quality Empowering Energy Citizens Building Regulated Smart

628 views • 46 slides
The Intersection of Smart Grid Technology and Intellectual Property Issues Finding the Keys to

The Intersection of Smart Grid Technology and Intellectual Property Issues Finding the Keys to

The Intersection of Smart Grid Technology and Intellectual Property Issues Finding the Keys to the Smart Grid Ken Van Meter Principal, Energy and Cyber Services Lockheed Martin The Smart Grid is, and must be, a national priority Security

333 views • 9 slides
Exelon Smart Grid Multi-Service Communications Architecture Do Doug Mc McGi Ginnis 4/ 4/5/

Exelon Smart Grid Multi-Service Communications Architecture Do Doug Mc McGi Ginnis 4/ 4/5/

Exelon Smart Grid Multi-Service Communications Architecture Do Doug Mc McGi Ginnis 4/ 4/5/ 5/13 Smart Grid (Generation 1) Grid Automation is not a new concept SCADA/AMR functions have been around for years Smart Grid is the embodiment

514 views • 28 slides
Designing Sensors for the Smart Grid Dr. Darold Wobschall President, Esensors Inc. 2011

Designing Sensors for the Smart Grid Dr. Darold Wobschall President, Esensors Inc. 2011

Designing Sensors for the Smart Grid Dr. Darold Wobschall President, Esensors Inc. 2011 Advanced Energy Conference - Buffalo 1 Networked Smart Grid Sensors Agenda Overview of the Smart Grid Smart sensor design aspects Sensor

1.26k views • 97 slides
Security and Privacy Challenges in the Smart Grid Patrick McDaniel and Stephen McLaughlin CS 598

Security and Privacy Challenges in the Smart Grid Patrick McDaniel and Stephen McLaughlin CS 598

Security and Privacy Challenges in the Smart Grid Patrick McDaniel and Stephen McLaughlin CS 598 AB Fall 2016 October 20 Presented by: Simon Kim 1 The Smart Grid 2 The Smart Grid Modernization of the existing electrical system A

546 views • 15 slides
Programming Distributed Systems 13 Blockchains Christian Weilbach & Annette Bieniusa AG

Programming Distributed Systems 13 Blockchains Christian Weilbach & Annette Bieniusa AG

Programming Distributed Systems 13 Blockchains Christian Weilbach & Annette Bieniusa AG Softech FB Informatik TU Kaiserslautern Summer Term 2018 Christian Weilbach & Annette Bieniusa Programming Distributed Systems Summer Term 2018

870 views • 65 slides
Solutions pour la Scurit des rseaux Prof. Gildas Avoine UCL Belgium Introduction

Solutions pour la Scurit des rseaux Prof. Gildas Avoine UCL Belgium Introduction

cole Internationale de Printemps Systmes Rpartis : METIS2008 Architecture, Scurit & Fiabilit Rabat, 20-23 Mai 2008 Solutions pour la Scurit des rseaux Prof. Gildas Avoine UCL Belgium Introduction Confidentiality,

1.85k views • 135 slides
RC4: Non-Randomness in the index j and some results on its Cycles Chandratop Chakraborty, Pranab

RC4: Non-Randomness in the index j and some results on its Cycles Chandratop Chakraborty, Pranab

RC4: Non-Randomness in the index j and some results on its Cycles Chandratop Chakraborty, Pranab Chakraborty, Subhamoy Maitra PES University, Wipro Limited, Indian Statistical Institute [chandratop@protonmail.ch, kojagori@gmail.com,

536 views • 31 slides
Concepts in Crypto Parker Higgins parker@eff.org @xor PGP: 4FF3 AA1B D29E 1638 32DE C765 9433

Concepts in Crypto Parker Higgins parker@eff.org @xor PGP: 4FF3 AA1B D29E 1638 32DE C765 9433

Concepts in Crypto Parker Higgins parker@eff.org @xor PGP: 4FF3 AA1B D29E 1638 32DE C765 9433 5F88 9A36 7709 Micah Lee micah@eff.org @micahflee PGP: 5C17 6163 61BD 9F92 422A C08B B4D2 5A1E 9999 9697 ELECTRONIC FRONTIER FOUNDATION

549 views • 24 slides
Belfast CryptoParty Welcome Pete Maynard @pgmaynard October 14, 2014 Belfast CryptoParty

Belfast CryptoParty Welcome Pete Maynard @pgmaynard October 14, 2014 Belfast CryptoParty

Belfast CryptoParty Welcome Pete Maynard @pgmaynard October 14, 2014 Belfast CryptoParty #cryptofast Pete Maynard @pgmaynard 1 What is a CryptoParty? A CryptoParty is free, public and fun. Its a decentralized, global initiative to

760 views • 8 slides
Mixminion: A next-generation anonymous remailer George Danezis Roger Dingledine Nick Mathewson

Mixminion: A next-generation anonymous remailer George Danezis Roger Dingledine Nick Mathewson

Mixminion: A next-generation anonymous remailer George Danezis Roger Dingledine Nick Mathewson 1 Outline Background Related systems A few improvements over past work Secure single-use reply block mechanism 2 Anonymous,

544 views • 22 slides
P r i v a c y b y D e f a u l t . P G P / G P G P G P P r e t t

P r i v a c y b y D e f a u l t . P G P / G P G P G P P r e t t

p r e t t y E a s y p r i v a c y N U L L c o n 2 0 1 7 , G o a s v a @ p E p . f o u n d a t i o n h t t p s : / / p E p . f o u n d a t i o n t w i t t e r @ s v a

1.32k views • 85 slides
Distributed Ledger Technology: An introduction to interoperability Andrea Lisi, Paolo Mori

Distributed Ledger Technology: An introduction to interoperability Andrea Lisi, Paolo Mori

Distributed Ledger Technology: An introduction to interoperability Andrea Lisi, Paolo Mori Universit degli studi di Pisa 02/03/20 2009 2 2009 3 2009 Bitcoin is a P2P payment system where nodes share the ledger of money Transactions, the

655 views • 28 slides

More recommend