DoS Exploitation of Allen-Bradley’s Legacy Protocol through Fuzz Testing

dc.contributor.authorTacliad, Francisco
dc.contributor.authorNguyen, Thuy D.
dc.contributor.authorGondree, Mark
dc.contributor.corporateNaval Postgraduate School (U.S.)
dc.contributor.departmentComputer Science (CS)
dc.date.accessioned2018-03-12T19:09:02Z
dc.date.available2018-03-12T19:09:02Z
dc.date.issued2017-12-05
dc.descriptionThe article of record as published may be found at http://dx.doi.org/10.1145/3174776.3174780
dc.description.abstractEtherNet/IP is a TCP/IP-based industrial protocol commonly used in industrial control systems (ICS). TCP/IP connectivity to the outside world has enabled ICS operators to implement more agile practices, but it also has exposed these cyber-physical systems to cyber attacks. Using a custom Scapy-based fuzzer to test for implementation flaws in the EtherNet/IP software of commercial programmable logic controllers (PLC), we uncover a previously unreported denial-of-service (DoS) vulnerability in the Ethernet/IP implementation of the Rockwell Automation/Allen-Bradley MicroLogix 1100 PLC that, if exploited, can cause the PLC to fault. ICS-CERT recently announces this vulnerability in the security advisory ICSA-17-138-03. This paper describes this vulnerability, the development of an EtherNet/IP fuzzer, and an approach to remotely monitor for faults generated when fuzzing.en_US
dc.format.extent8 p.
dc.identifier.citationTacliad, Francisco, Thuy D. Nguyen, and Mark Gondree. "DoS Exploitation of Allen-Bradley's Legacy Protocol through Fuzz Testing." In Proceedings of the 3rd Annual Industrial Control System Security Workshop, pp. 24-31. ACM, 2017.
dc.identifier.urihttps://hdl.handle.net/10945/57263
dc.publisherACM
dc.rightsThis publication is a work of the U.S. Government as defined in Title 17, United States Code, Section 101. Copyright protection is not available for this work in the United States.
dc.subject.authorIndustrial control system
dc.subject.authorfuzz testing
dc.subject.authorEtherNet/IP
dc.subject.authorMicroLogix
dc.titleDoS Exploitation of Allen-Bradley’s Legacy Protocol through Fuzz Testingen_US
dc.typeArticle
dspace.entity.typePublication
Files
Original bundle
Now showing 1 - 1 of 1
Loading...
Thumbnail Image
Name:
Nguyen_DoS_Exploitation_.pdf
Size:
1.13 MB
Format:
Adobe Portable Document Format
Description:
License bundle
Now showing 1 - 1 of 1
Loading...
Thumbnail Image
Name:
license.txt
Size:
2.18 KB
Format:
Item-specific license agreed upon to submission
Description:
Collections