tra ffi c lights smart grid honeypots in ics environments
play

) tra ffi c lights smart grid Honeypots in ICS Environments space - PowerPoint PPT Presentation

Jan 14, 2023 •383 likes •656 views

) tra ffi c lights smart grid Honeypots in ICS Environments space station steel mill ( power plant supertanker death star gas pipeline sewage plant wind turbine ) cypherpunk chaotic neutral privacy activist researcher DI Daniel

  1. ) tra ffi c lights smart grid Honeypots in ICS Environments space station steel mill ( power plant supertanker death star gas pipeline sewage plant wind turbine

  2. ) cypherpunk chaotic neutral privacy activist researcher DI Daniel Haslinger, BSc. 
 developer IT Security Researcher honeynet ( project Institute of IT Security Research St. Poelten University of Applied Sciences member The Honeynet Project Norwegian “honeynor” chapter

  3. 2014: HAVEX 1999: Gazprom 
 2012: Flame 2008: Lodz 2006: Browns Ferry (published) ICS vulnerabilities are on the rise 2010: Stuxnet 2011: DUQU 2013: Shamoon 2000: Maroochy Shire

  4. No of published vulnerabilities found on the web 160 120 80 40 2009 2010 2011 2012 2013 2014

  5. Intrusion Detection Systems Data Loss Prevention Gateways L7 Firewalls Signature Based Detection Mechanisms ( Fuzzy Detection Mechanisms

  6. HONEY POTS “gathering needles since 1998”

  7. Valuable Intelligence: WHO is attacking us? WHAT is the attacker trying to achieve? HOW is the actual attack carried out?

  8. ) 
 laos poland japan north korea russia “Who’s really attacking your ICS Equipment” china united states published 2013, trend labs brazil vietnam ( great britain chile

  9. 
 Advantages of Honeypots (in general) Small Data Sets you only need to analyze data that matters… Reduced False Positives what you see is what you … got Catching False Negatives to measure the performance of conventional 
 security techniques

  10. Pros & Cons of Honeypots (in general) Crypto aware the honeypot is the endpoint IPv6 aware the final frontier Flexible & cheap most solutions run on commodity hardware

  11. Pros & Cons of Honeypots (in general) Risk may be involved especially if you use high interaction honeypots Limited field of view you do not see the whole picture Not a real security solution to count on after all, you still need conventional security

  12. Products & Solutions CIAG SCADA Honeynet scadahoneynet.sourceforge.net 
 telnet, ftp, modbus, http very minimal interaction, but profits from honeyd (network, os decept.) ~ 2004 - 2005 SHaPe C-based low interaction module for Dionaea IEC61850

  13. Products & Solutions Digital Bond SCADA Honeynet Honeywall based approach based on SNORT works with emulated and real hardware will not work properly with encrypted protocols General Purpose Honeypots (ENISA, 2012) Amun, Dionaea, KFsensor, Honeyd, Honeytrap, nepenthes, Tiny Honeypot, …

  14. Products & Solutions Conpot developed from scratch based on python Modbus, HTTP, SNMP, S7comm, Kamstrup Hybrid Interaction through request forwarding Central Databus all across the protocols TAXII*, HPfriends, SQL, Syslog No OS deception stack (yet) Still under heavy development * DHS

  15. Deployment Strategies Thick Deployments Every entity contains the whole logic Global high interaction honeypot? - shipping, customs and hardware costs Individual maintenance involved Entity operator has physical access to your data

  16. Deployment Strategies Thin Deployments A central server spawns instances of honeypots Each instance serves one “honey tra ffi c reflector” Little to no hardware costs on the receiving site Tra ffi c is forwarded without the loss of vital information Logs and logic always stay in your hands

  17. Deployment Strategies Thin Deployments 192.92.13.5 72.23.4.1 10.0.0.z 10.0.0.y openVPN HP 10.0.0.x 10.0.0.1 BACKEND

  18. Deployment Strategies Thin Deployments 192.92.13.5 72.23.4.1 10.0.0.z 10.0.0.y POOH openVPN HP 10.0.0.x 10.0.0.1 BACKEND

  19. Deployment Strategies Thin Deployments 192.92.13.5 72.23.4.1 10.0.0.z 10.0.0.y POOH openVPN HP 10.0.0.x 10.0.0.1 BACKEND

  20. Deployment Strategies Thin Deployments 192.92.13.5 72.23.4.1 10.0.0.z 10.0.0.y POOH openVPN HP 10.0.0.x 10.0.0.1 BACKEND

  21. Deployment Strategies Thin Deployments 192.92.13.5 72.23.4.1 10.0.0.z 10.0.0.y POOH openVPN HP 10.0.0.x 10.0.0.1 BACKEND DNAT

  22. Deployment Strategies Thin Deployments 192.92.13.5 72.23.4.1 10.0.0.z 10.0.0.y POOH openVPN HP 10.0.0.x 10.0.0.1 BACKEND

  23. Deployment Strategies Thin Deployments 192.92.13.5 72.23.4.1 10.0.0.z 10.0.0.y POOH openVPN HP 10.0.0.x 10.0.0.1 BACKEND LOG & RESPOND

  24. Deployment Strategies Thin Deployments 192.92.13.5 72.23.4.1 10.0.0.z 10.0.0.y POOH openVPN HP 10.0.0.x 10.0.0.1 BACKEND

  25. Deployment Strategies Thin Deployments 192.92.13.5 72.23.4.1 10.0.0.z 10.0.0.y POOH openVPN HP 10.0.0.x 10.0.0.1 BACKEND SNAT

  26. Deployment Strategies Thin Deployments 192.92.13.5 72.23.4.1 10.0.0.z 10.0.0.y POOH openVPN HP 10.0.0.x 10.0.0.1 BACKEND

  27. Lessons learned Sifting through aggregated data is serious work Creating good templates is a work for perfectionists Don’t be overly attached to your CC OS deception is a MUST

Recommend

GRID PHD GRID, PHD The Smart Grid Cyber Security and the Future of Keeping the Lights On The

GRID PHD GRID, PHD The Smart Grid Cyber Security and the Future of Keeping the Lights On The

GRID PHD GRID, PHD The Smart Grid Cyber Security and the Future of Keeping the Lights On The Smart Grid, Cyber Security, and the Future of Keeping the Lights On Kelly Ziegler Chi f O Chief Operating Officer ti Offi National Board of

1.01k views • 48 slides
Keeping the Lights On: Challenges of Cybersecurity Training and Awareness for the Smart Grid

Keeping the Lights On: Challenges of Cybersecurity Training and Awareness for the Smart Grid

Keeping the Lights On: Challenges of Cybersecurity Training and Awareness for the Smart Grid Susan Farrand What is the Grid? Why is the Grid like it is? The War of the Currents Thomas Edison Nikola Tesla George Westinghouse Electricity

303 views • 27 slides
Smart Grid Increasing the IQ of the Smart Grid Unclear exactly what the smart grid is, but

Smart Grid Increasing the IQ of the Smart Grid Unclear exactly what the smart grid is, but

Smart Grid Increasing the IQ of the Smart Grid Unclear exactly what the smart grid is, but Through Active Customer it does include Participation in Wholesale Electricity Interval meters Markets Storage and load flexibility

465 views • 15 slides
Sustainability and Smart Grid Implementing a Non residential Smart Metering System PaperCon

Sustainability and Smart Grid Implementing a Non residential Smart Metering System PaperCon

Sustainability and Smart Grid Implementing a Non residential Smart Metering System PaperCon 2011 Page 195 Smart Grid Popular Topics in the News Smart Grid Smart Meter Smart Meter Micro Grid Distributive Generation Most talk is

427 views • 39 slides
Modernizing T&D on the Electric Grid 11/29/2011 Mark Nealon System Meter & Smart Grid

Modernizing T&D on the Electric Grid 11/29/2011 Mark Nealon System Meter & Smart Grid

Modernizing T&D on the Electric Grid 11/29/2011 Mark Nealon System Meter & Smart Grid Ameren Missouri PSC Smart Grid Technical Conference 1 What is the Smart Grid? What Smart Grid means to Ameren Transform Amerens grid to

341 views • 7 slides
Smart Grid Smart Grid Our Mission Our Mission Seattle City Light is dedicated to exceeding our

Smart Grid Smart Grid Our Mission Our Mission Seattle City Light is dedicated to exceeding our

Smart Grid Smart Grid Our Mission Our Mission Seattle City Light is dedicated to exceeding our customers expectations in producing and delivering environmentally responsible, safe, low cost and reliable power. The Smart Grid Definition

222 views • 19 slides
Smart Grid As Smart as the Quality of its Measurements by Linoh Magagula, PhD, MIEEE,

Smart Grid As Smart as the Quality of its Measurements by Linoh Magagula, PhD, MIEEE,

Smart Grid As Smart as the Quality of its Measurements by Linoh Magagula, PhD, MIEEE, National Metrology Institute of South Africa (NMISA) Smart: communication; sensing; control Smart grid intelligently integrated electricity

397 views • 18 slides
Technologies for the Smart Grid Smart Power Grid Technology Conference Dr. William Kao May 12,

Technologies for the Smart Grid Smart Power Grid Technology Conference Dr. William Kao May 12,

Technologies for the Smart Grid Smart Power Grid Technology Conference Dr. William Kao May 12, 2011 Agenda Smart Grid : what is it? Three important elements towards achieving SM: Architecture, Communications, Technology Five key SG

161 views • 15 slides
3. Overall vision of smart grid The so called smart grid should be Intelligent - capable of

3. Overall vision of smart grid The so called smart grid should be Intelligent - capable of

3. Overall vision of smart grid The so called smart grid should be Intelligent - capable of sensing, rerouting power, and minimizing a potential outage - work autonomously and respond faster than humans Efficient - capable of meeting

278 views • 11 slides
The Role of Smart Lighting in the Smart Grid St Stewart Findlater t Fi dl t VP, Engineering

The Role of Smart Lighting in the Smart Grid St Stewart Findlater t Fi dl t VP, Engineering

The Role of Smart Lighting in the Smart Grid St Stewart Findlater t Fi dl t VP, Engineering Discussing Today The smart grid needs a smart load The smart grid needs a smart load Lighting in commercial buildings LEDs a flexible

479 views • 10 slides
Basic Smart Grid Ingredients IIT Bombay (source: Gridwise Alliance) 21 Smart Grid Pyramid IIT

Basic Smart Grid Ingredients IIT Bombay (source: Gridwise Alliance) 21 Smart Grid Pyramid IIT

Basic Smart Grid Ingredients IIT Bombay (source: Gridwise Alliance) 21 Smart Grid Pyramid IIT Bombay (source: BC Hydro) 22 IEEE Smart Grid Conceptual Framework IIT Bombay The National Institute of Standards and Technology (NIST) Smart

785 views • 43 slides
Energy Transition towards a Cellular Smart Grid Community Grid Edge Flexibility & Power

Energy Transition towards a Cellular Smart Grid Community Grid Edge Flexibility & Power

GridSens & Smart Grid II Meeting Strathclyde 3 Feb 2016 Energy Transition towards a Cellular Smart Grid Community Grid Edge Flexibility & Power Quality Empowering Energy Citizens Building Regulated Smart

628 views • 46 slides
The Intersection of Smart Grid Technology and Intellectual Property Issues Finding the Keys to

The Intersection of Smart Grid Technology and Intellectual Property Issues Finding the Keys to

The Intersection of Smart Grid Technology and Intellectual Property Issues Finding the Keys to the Smart Grid Ken Van Meter Principal, Energy and Cyber Services Lockheed Martin The Smart Grid is, and must be, a national priority Security

333 views • 9 slides
Exelon Smart Grid Multi-Service Communications Architecture Do Doug Mc McGi Ginnis 4/ 4/5/

Exelon Smart Grid Multi-Service Communications Architecture Do Doug Mc McGi Ginnis 4/ 4/5/

Exelon Smart Grid Multi-Service Communications Architecture Do Doug Mc McGi Ginnis 4/ 4/5/ 5/13 Smart Grid (Generation 1) Grid Automation is not a new concept SCADA/AMR functions have been around for years Smart Grid is the embodiment

514 views • 28 slides
Designing Sensors for the Smart Grid Dr. Darold Wobschall President, Esensors Inc. 2011

Designing Sensors for the Smart Grid Dr. Darold Wobschall President, Esensors Inc. 2011

Designing Sensors for the Smart Grid Dr. Darold Wobschall President, Esensors Inc. 2011 Advanced Energy Conference - Buffalo 1 Networked Smart Grid Sensors Agenda Overview of the Smart Grid Smart sensor design aspects Sensor

1.26k views • 97 slides
Security and Privacy Challenges in the Smart Grid Patrick McDaniel and Stephen McLaughlin CS 598

Security and Privacy Challenges in the Smart Grid Patrick McDaniel and Stephen McLaughlin CS 598

Security and Privacy Challenges in the Smart Grid Patrick McDaniel and Stephen McLaughlin CS 598 AB Fall 2016 October 20 Presented by: Simon Kim 1 The Smart Grid 2 The Smart Grid Modernization of the existing electrical system A

546 views • 15 slides
Applications of Data Science to Mini-Grid Smart Meter and Survey Data 3 rd Africa Smart Grid

Applications of Data Science to Mini-Grid Smart Meter and Survey Data 3 rd Africa Smart Grid

Applications of Data Science to Mini-Grid Smart Meter and Survey Data 3 rd Africa Smart Grid Forum - Kigali, Rwanda October 4, 2018 Nathan Williams nwilliams@cmu.edu Department of Engineering and Public Policy Status of Electrification in

398 views • 25 slides
Missouri Smart Grid Workshop Nov 28, 2011 Landis+ Gyrwho we are.what we do + A global smart

Missouri Smart Grid Workshop Nov 28, 2011 Landis+ Gyrwho we are.what we do + A global smart

Missouri Smart Grid Workshop Nov 28, 2011 Landis+ Gyrwho we are.what we do + A global smart grid technology provider to utilities with the mission of helping the world Manage Energy Better + A leading provider of Smart Meters + A

113 views • 10 slides
Intrusion Detection w ith Motivation Honeypots What is a honeypot? Types of honeypots

Intrusion Detection w ith Motivation Honeypots What is a honeypot? Types of honeypots

Overview Intrusion Detection w ith Motivation Honeypots What is a honeypot? Types of honeypots What can you do with them? Claire OShea Problems with honeypots COMP 290 Spring 2005 Overview Motivation Examples of

645 views • 15 slides
TRAFFICS USING NON- PREEMPTIVE PRIORITY QUEUES Contents Smart Grid Model and Components.

TRAFFICS USING NON- PREEMPTIVE PRIORITY QUEUES Contents Smart Grid Model and Components.

MODELING OF SMART GRID TRAFFICS USING NON- PREEMPTIVE PRIORITY QUEUES Contents Smart Grid Model and Components. Future Smart grid components. Classification of Smart Grid Traffic. Brief explanation of Preemptive, Non-Preemptive

452 views • 19 slides
Smart Grid Customer Privacy TCIPG Consumer Acceptance of Smart Grid October 31 , 2012 Kevin B.

Smart Grid Customer Privacy TCIPG Consumer Acceptance of Smart Grid October 31 , 2012 Kevin B.

Smart Grid Customer Privacy TCIPG Consumer Acceptance of Smart Grid October 31 , 2012 Kevin B. Jones, PhD Associate Director and Senior Fellow for Energy Technology & Policy Institute for Energy and the Environment Vermont Law School

274 views • 15 slides
CLICK HERE TO KNOW MORE The First Smart Grid Project in Thailand, Pattaya City By Mr.Pongsakorn

CLICK HERE TO KNOW MORE The First Smart Grid Project in Thailand, Pattaya City By Mr.Pongsakorn

CLICK HERE TO KNOW MORE The First Smart Grid Project in Thailand, Pattaya City By Mr.Pongsakorn Yuthagovit Deputy Director of System Planning Department and Project Manager of the Smart Grid Pilot Project Geo Smart Asia 2016 , Kuala Lumpur,

670 views • 26 slides
Potential Impacts of 9 150 kHz Harmonic Emissions on Smart Grid Communications in the United

Potential Impacts of 9 150 kHz Harmonic Emissions on Smart Grid Communications in the United

Potential Impacts of 9 150 kHz Harmonic Emissions on Smart Grid Communications in the United States Mark Halpin Auburn University, USA halpism@auburn.edu Background Smart grid mostly means smart metering in USA Costs covered by

176 views • 14 slides
Open Smart Grid id Pla latform An Open source IoT platform for large infrastructures Why did

Open Smart Grid id Pla latform An Open source IoT platform for large infrastructures Why did

Open Smart Grid id Pla latform An Open source IoT platform for large infrastructures Why did we develop the Open Smart Grid Platform? The Open Smart Grid Platform architecture Use cases: Applications Smart Lighting Application

488 views • 9 slides

More recommend