Simulating command injection attacks on IEC 60870-5-104 protocol in SCADA system

Qais Saif Qassim,Maslina Daud,Wan Azlan Wan Kamarulzaman,Roslan Ismail,Norhamadi Ja'Affar,Salman Yussof,Norziana Jamil

doi:10.14419/ijet.v7i2.14.12816

Simulating command injection attacks on IEC 60870-5-104 protocol in SCADA system

Qais Saif Qassim, Maslina Daud + Show 5 more

Open Access

PDF Available

https://doi.org/10.14419/ijet.v7i2.14.12816

Copy DOI

Export

Save

Cite

Journal: International Journal of Engineering & Technology	Publication Date: Apr 6, 2018
Citations: 6

Affiliation: Universiti Tenaga Nasional, Cyberjaya University College of Medical Sciences, Tenaga Nasional Berhad (Malaysia)

#Command Injection Attack #SCADA System #Industrial Control Systems #Power System Applications #Protocol For Monitoring #Catastrophic Impact #Electrical Power System Applications #Command Injection #Common Attacks #Control Command

Abstract
Full-Text PDF
Similar Papers

Abstract

Listen

IEC 60870-5-104 is an international standard used for tele-control in electrical engineering and power system applications. It is one of the major principal protocols in SCADA system. Major industrial control vendors use this protocol for monitoring and managing power utility devices. One of the most common attacks which has a catastrophic impact on industrial control systems is the control command injection attack. It happens when an attacker injects false control commands into a control system. This paper presents the IEC 60870-5-104 vulnera-bilities from the perspective of command and information data injection. From the SCADA testbed that we setup, we showed that a success-ful control command injection attack can be implemented by exploiting the vulnerabilities identified earlier.

Full Text

Published Version (Free)

View/Download pdf

Talk to us

Join us for a 30 min session where you can share your feedback and ask us any queries you have

Schedule a call

Similar Papers

Paper Title

Journal

Date

Author

View more papers

More From: International Journal of Engineering & Technology

Paper Title

Journal

Date

Author

View more papers

Disclaimer: All third-party content on this website/platform is and will remain the property of their respective owners and is provided on "as is" basis without any warranties, express or implied. Use of third-party content does not indicate any affiliation, sponsorship with or endorsement by them. Any references to third-party content is to identify the corresponding services and shall be considered fair use under The CopyrightLaw.

R Discovery Prime

Simulating command injection attacks on IEC 60870-5-104 protocol in SCADA system