{"title":"Cyber Security of Internet Connected ICS/SCADA Devices and Services","authors":"Ísmail Erkek, E. Irmak","doi":"10.1109/ISCTURKEY53027.2021.9654285","DOIUrl":null,"url":null,"abstract":"The monitoring and control of automation systems in the most critical infrastructures are provided by industrial control systems (ICS). Because of the importance and criticality of these systems, they are likely to be exposed to some external and internal cyber threats. Especially if they have internet access, the cyber risks increase and these systems cause functional disorders. Within the scope of this study, search engines such as Shodan, Censys, Fofa, which are used to determine industrial control systems facing to internet access, have been examined and analyzed. Among them, an API for the Shodan search engine has been created. With the relevant API, industrial communication protocols and industrial control systems open to internet access have been extracted and usage statistics have been determined. In line with the information obtained, these communication protocols and systems have been analyzed and security recommendations have been made for industrial control systems open to internet access.","PeriodicalId":383915,"journal":{"name":"2021 International Conference on Information Security and Cryptology (ISCTURKEY)","volume":"68 1","pages":"0"},"PeriodicalIF":0.0000,"publicationDate":"2021-12-02","publicationTypes":"Journal Article","fieldsOfStudy":null,"isOpenAccess":false,"openAccessPdf":"","citationCount":"2","resultStr":null,"platform":"Semanticscholar","paperid":null,"PeriodicalName":"2021 International Conference on Information Security and Cryptology (ISCTURKEY)","FirstCategoryId":"1085","ListUrlMain":"https://doi.org/10.1109/ISCTURKEY53027.2021.9654285","RegionNum":0,"RegionCategory":null,"ArticlePicture":[],"TitleCN":null,"AbstractTextCN":null,"PMCID":null,"EPubDate":"","PubModel":"","JCR":"","JCRName":"","Score":null,"Total":0}
引用次数: 2
Abstract
The monitoring and control of automation systems in the most critical infrastructures are provided by industrial control systems (ICS). Because of the importance and criticality of these systems, they are likely to be exposed to some external and internal cyber threats. Especially if they have internet access, the cyber risks increase and these systems cause functional disorders. Within the scope of this study, search engines such as Shodan, Censys, Fofa, which are used to determine industrial control systems facing to internet access, have been examined and analyzed. Among them, an API for the Shodan search engine has been created. With the relevant API, industrial communication protocols and industrial control systems open to internet access have been extracted and usage statistics have been determined. In line with the information obtained, these communication protocols and systems have been analyzed and security recommendations have been made for industrial control systems open to internet access.
京公网安备 11010802042870号
京ICP备2023020795号-1
分享
求助内容:
应助结果提醒方式:
扫码关注我们
