Assessing the Security of OPC UA Deployments

DSpace Repositorium (Manakin basiert)

Assessing the Security of OPC UA Deployments

Roepert, Linus; Dahlmanns, Markus; Fink, Ina; Pennekamp, Jan; Henze, Martin
Dateien:
Thumbnail
141. KB
PDF
Zitierfähiger Link (URI): http://hdl.handle.net/10900/100433
http://nbn-resolving.de/urn:nbn:de:bsz:21-dspace-1004337
http://dx.doi.org/10.15496/publikation-41813
Dokumentart: Konferenzveröffentlichung
Erscheinungsdatum: 2020-05-11
Sprache: Englisch
Fakultät: 7 Mathematisch-Naturwissenschaftliche Fakultät
Fachbereich: Informatik
DDC-Klassifikation: 004 - Informatik
Schlagworte: OPC UA
Lizenz: http://tobias-lib.uni-tuebingen.de/doku/lic_mit_pod.php?la=de http://tobias-lib.uni-tuebingen.de/doku/lic_mit_pod.php?la=en
Gedruckte Kopie bestellen: Print-on-Demand
Zur Langanzeige

Abstract:

To address the increasing security demands of industrial deployments, OPC UA is one of the first industrial protocols explicitly designed with security in mind. However, deploying it securely requires a thorough configuration of a wide range of options. Thus, assessing the security of OPC UA deployments and their configuration is necessary to ensure secure operation, most importantly confidentiality and integrity of industrial processes. In this work, we present extensions to the popular Metasploit Framework to ease network-based security assessments of OPC UA deployments. To this end, we discuss methods to discover OPC UA servers, test their authentication, obtain their configuration, and check for vulnerabilities. Ultimately, our work enables operators to verify the (security) configuration of their systems and identify potential attack vectors.

Das Dokument erscheint in: