Title
Low delay network attributes randomization to proactively mitigate reconnaissance attacks in industrial control systemsVersion
http://purl.org/coar/version/c_970fb48d4fbd8a85
Rights
© 2023 The AuthorsAccess
http://purl.org/coar/access_right/c_abf2Publisher’s version
https://doi.org/10.1007/s11276-022-03212-5Published at
Wireless Networks Publisher
SpringerKeywords
Industrial control systems
Moving Target Defense
Software defined networking
Industrial network security ... [+]
Moving Target Defense
Software defined networking
Industrial network security ... [+]
Industrial control systems
Moving Target Defense
Software defined networking
Industrial network security
Proactive intrusion response [-]
Moving Target Defense
Software defined networking
Industrial network security
Proactive intrusion response [-]
Abstract
Industrial Control Systems are used in a wide variety of industrial facilities, including critical infrastructures, becoming the main target of multiple security attacks. A malicious and successful at ... [+]
Industrial Control Systems are used in a wide variety of industrial facilities, including critical infrastructures, becoming the main target of multiple security attacks. A malicious and successful attack against these infrastructures could cause serious economic and environmental consequences, including the loss of human lives. Static networks configurations and topologies, which characterize Industrial Control Systems, represent an advantage for attackers, allowing them to scan for vulnerable devices or services before carrying out the attack. Identifying active devices and services is often the first step for many attacks. This paper presents a proactive network reconnaissance defense mechanism based on the temporal randomization of network IP addresses, MAC addresses and port numbers. The obtained information distortion minimizes the knowledge acquired by the attackers, hindering any attack that relies on network addressing. The temporal randomization of network attributes is performed in an adaptive way, minimizing the overhead introduced in the network and avoiding any error and latency in communications. The implementation as well as the tests have been carried out in a laboratory with real industrial equipment, demonstrating the effectiveness of the presented solution. [-]
xmlui.dri2xhtml.METS-1.0.item-sponsorship
Gobierno Vasco-Eusko Jaurlaritzaxmlui.dri2xhtml.METS-1.0.item-projectID
info:eu-repo/grantAgreement/GV/Ikertalde Convocatoria 2022-2025/IT1676-22/CAPV/Grupo de sistemas inteligentes para sistemas industriales/Collections
- Articles - Engineering [643]
The following license files are associated with this item: