Vulnerability Discovery Method Based on Control Protocol Fuzzing for a Railway SCADA System

Woo-Nyon Kim; Moon-Su Jang; Jeongtaek Seo; Sangwook Kim

Vulnerability Discovery Method Based on Control Protocol Fuzzing for a Railway SCADA System

Vol. 39, No. 4, pp. 362-369, Apr. 2014

PDF

Abstract

A railway SCADA system is a control systems that provide the trains with the electricity. A railway SCADA system sends commands to the RTUs(remote terminal unit) and then it gathers status information of the field devices in the RTUs or controls field devices connected with the RTUs . The RTU can controls input output modules directly, gathers the status information of the field devices connected with it, and send the information to the control center. In this way, a railway SCADA system monitors and controls the electricity power for running trains. The cyber attackers may use some vulnerabilities in the railway SCADA system software to attack critical infrastructures. The vulnerabilities might be created in the railway software development process. Therefore it need to detect and remove the vulnerabilities in the control system. In this paper we propose a new control protocol fuzzing method to detect the vulnerabilities in the DNP3 protocol based application running on VxWorks in RTU(Remote Terminal Unit) that is a component of the centralized traffic control system for railway. Debug-channel based fuzzing method is required to obtain process status information from the VxWorks

Statistics

Cumulative Counts from November, 2022
Multiple requests among the same browser session are counted as one view. If you mouse over a chart, the values of data points will be shown.

Cite this article

[IEEE Style]

W. Kim, M. Jang, J. Seo, S. Kim, "Vulnerability Discovery Method Based on Control Protocol Fuzzing for a Railway SCADA System," The Journal of Korean Institute of Communications and Information Sciences, vol. 39, no. 4, pp. 362-369, 2014. DOI: .

[ACM Style]

Woo-Nyon Kim, Moon-Su Jang, Jeongtaek Seo, and Sangwook Kim. 2014. Vulnerability Discovery Method Based on Control Protocol Fuzzing for a Railway SCADA System. The Journal of Korean Institute of Communications and Information Sciences, 39, 4, (2014), 362-369. DOI: .

[KICS Style]

Woo-Nyon Kim, Moon-Su Jang, Jeongtaek Seo, Sangwook Kim, "Vulnerability Discovery Method Based on Control Protocol Fuzzing for a Railway SCADA System," The Journal of Korean Institute of Communications and Information Sciences, vol. 39, no. 4, pp. 362-369, 4. 2014.

Vulnerability Discovery Method Based on Control Protocol Fuzzing for a Railway SCADA System

Submenu

Search
(IN TITLE, AUTHOR, ABSTRACT,KEYWORDS)

Advanced Search

Recent Publications
(LAST 3 YEARS)

Vulnerability Discovery Method Based on Control Protocol Fuzzing for a Railway SCADA System

Submenu

Search (IN TITLE, AUTHOR, ABSTRACT,KEYWORDS)

Advanced Search

POPULAR KEYWORDS(TOP 10 KEYWORDS)

Recent Publications(LAST 3 YEARS)

Search
(IN TITLE, AUTHOR, ABSTRACT,KEYWORDS)

POPULAR KEYWORDS
(TOP 10 KEYWORDS)

Recent Publications
(LAST 3 YEARS)