Exploring Network Security in PROFIsafe

Authors:
Johan Åkerberg;Mats Björkman
Affiliations:
ABB AB, Corporate Research, Västerås, Sweden 721 78;Academy of Innovation, Design, and Technology, Mälardalens University, Västerås, Sweden
Venue:
SAFECOMP '09 Proceedings of the 28th International Conference on Computer Safety, Reliability, and Security
Year:
2009

Citing 2
Cited 1

Computer Networks

Computer Networks
Exploring Security in PROFINET IO

COMPSAC '09 Proceedings of the 2009 33rd Annual IEEE International Computer Software and Applications Conference - Volume 01

Towards the protection of industrial control systems: conclusions of a vulnerability analysis of profinet IO

DIMVA'13 Proceedings of the 10th international conference on Detection of Intrusions and Malware, and Vulnerability Assessment

Quantified Score

Hi-index	0.00

Visualization

Abstract

Safety critical systems are used to reduce the probability of failure that could cause danger to person, equipment or environment. The increasing level of vertical and horizontal integration increases the security risks in automation. Since the risk of security attacks can not be treated as negligible anymore, there is a need to investigate possible security attacks on safety critical communication. In this paper we show that it is possible to attack PROFIsafe and change the safety-related process data without any of the safety measures in the protocol detecting the attack. As a countermeasure to network security attacks, the concept of security modules in combination with PROFIsafe will reduce the risk of security attacks, and is in line with the security concept defense-in-depth .