Litcius/Paper detail

A Stealthy False Command Injection Attack on Modbus based SCADA Systems

Wael Alsabbagh, Samuel Amogbonjaye, Diego Urrego, Peter Langendörfer

202330 citationsDOI

Abstract

Modbus is a widely-used industrial protocol in Supervisory Control and Data Acquisition (SCADA) systems for different purposes such as controlling remote devices, monitoring physical processes, data acquisition, etc. Unfortunately, such a protocol lacks security means i.e., authentication, integrity, and confidentiality. This has exposed industrial plants using the Modbus protocol and made them attractive to malicious adversaries who could perform various kinds of cyber-attacks causing significant consequences as Stuxnet showed. In this paper, we exploit the insecurity of the Modbus protocol and perform a stealthy false command injection scenario concealing our injection from the SCADA operator. Our attack approach is comprised of two main phases: 1) Pre-attack phase (offline) where an attacker sniffs, collects and stores sufficient valid request-response pairs in a database, 2) Attack phase (online) where the attacker performs false command injection and conceals his injection by replaying a valid response from his database upon each request sent from the HMI user. Such a scenario is quite severe and might cause disastrous damages in SCADA systems and critical infrastructures if it is successfully implemented by malicious adversaries. Finally, we suggest some appropriate mitigation solutions to prevent such a serious threat.

Topics & Concepts

ModbusSCADAComputer securityComputer scienceProtocol (science)Fault injectionIndustrial control systemEmbedded systemComputer networkCommunications protocolControl (management)EngineeringOperating systemSoftwarePathologyElectrical engineeringArtificial intelligenceAlternative medicineMedicineSmart Grid Security and ResilienceSecurity and Verification in ComputingAdvanced Malware Detection Techniques
A Stealthy False Command Injection Attack on Modbus based SCADA Systems | Litcius