white paper on industrial automation security in fieldbus and

More documents

Recommendations

Info

20When the bus system starts, masters whichperform cyclical data exchange initialize theslaves which are assigned to them. Thisinitialization consists of a parameterization and aconfiguration step, in which the PROFIBUS DPparameters as well as possible vendor- ordevice-specific parameters are set in the slave.Additionally, the device number is verifiedagainst that which the master expects, to ensurethat the correct type of device exists at thecorrect address. In the configuration step, thelength and structure of the periodicallytransmitted I/O data is set, as defined in themaster setup. Both the parameterization andconfiguration procedures can be accepted orrejected by the slave. Each slave keeps track ofwhich master address configured them for dataexchange.To avoid the conflicting situation in whichdifferent masters try to command the same slave,it is possible to lock slaves to a single class 1master (the master which performs theinitialization procedure described above). It is,however, also possible that a slave is not locked,which would mean that a slave could be claimedby different masters. This is nevertheless morean issue of network management, i.e. ensuringthat slaves are locked to their primary master.to read the Identification & Maintenance (I&M)information from bus devices. The I&M is astructure of device identification informationwhich at a minimum includes the I&M0information, but optionally also other I&Mfields (see the table below) This kind ofinformation about a device (which can beidentified using its slave number in the bus) canreveal what the device is doing, the device typeand give clues as to how its behavior could becompromised. The I&M information may bechangeable by the owner or operator of a device,so in case this information is not write-protected,an intruder may attempt to change theinformation, e.g. change the text describingfunction, task, location or installation date sothat identification of the device istampered.Table 3. The I&M information inPROFIBUS and PROFINET devices.The PROFIBUS DP-V1 extension specifies anacyclic communication which can be used asneeded to e.g. read or write variables orparameters of a device, if it implements somedevice profile such as PROFIdrive or encoderprofile. A master class 2 can perform read and/orwrite operations targeted at a PROFIBUS DPslave device independent of the slave’srelationship to its primary master. This presentsrisk in case the master class 2 can modifyparameters which affect the operation of thedevice.If a device gains access to the bus, and is able toperform DP-V1 functionality, then it can attempt
21I&M Field Information DescriptionI&M0 Manufacturer IDOrder IDSerial NumberHardware RevisionSoftware RevisionRevision CounterProfile IDProfile-specific typeI&M versionI&Ms supportedNumber codeText stringText stringVersion NumberVersion NumberNumberNumberNumberVersion NumberBitmaskReveals the device vendor.Reveals the order number of the device.Reveals the serial number of the device.Reveals the hardware revision of the device.Reveals the software revision of the device.Change counter.Reveals implemented device profile.Possible profile-specific code.Reveals implemented I&M version.Reveals which I&Ms are supported.I&M1 Function TagLocation TagText stringText stringDescribes the function of the device.Describes the location of the device.I&M2 Installation Date Text string Reveals the installation date of the device.I&M3 Descriptor Text string Freely assignable comment/annotation.I&M4 Signature Text string Can be used as signature for tools.
Page 1 and 2: 1WHITE PAPER ON INDUSTRIAL AUTOMATI
Page 3 and 4: 3Table of Contents1 Introduction an
Page 5: 55.1.3 Bluetooth...................
Page 8 and 9: 8professional attackers are able to
Page 10 and 11: 10Table 1. A list of published IEC
Page 12 and 13: 12Information needs to be available
Page 14 and 15: 14Depending on the communication li
Page 16 and 17: 16observed with the purpose of reve
Page 18 and 19: 18Table 2. An overview of a few fie
Page 22 and 23: 22As with e.g. Modbus RTU, an intru
Page 24 and 25: 24malicious activity. The Physical
Page 26 and 27: 26filtering is another barrier for
Page 28 and 29: 28Table 4. An overview of a few ind
Page 30 and 31: 303.4.7.3 EtherCATEtherCAT is a rea
Page 32 and 33: 32devices should be assessed, prefe
Page 34 and 35: 344.4 Embedded devices withgeneral-
Page 36 and 37: 36not intended for the end-user sha
Page 38 and 39: 385 Security in wirelesscommunicati
Page 40 and 41: 40possibilities for a device sniffi
Page 42 and 43: 427 References[1] F-Secure Corporat

white paper on industrial automation security in fieldbus and

You also want an ePaper? Increase the reach of your titles

Delete template?

Save as template?