Upload File

industrial risk assessment map (iram) - scadacs.org · scada 2711 28% hmi 1735 41% erp 1400 0% tm...

  • Home
  • Documents
  • Industrial Risk Assessment Map (IRAM) - scadacs.org · SCADA 2711 28% HMI 1735 41% ERP 1400 0% TM 768 0% UPS 167 0%. SCADACS IRAM - Demonstration (Video) Video. SCADACS Zusammenfassung
26
SCADACS Industrial Risk Assessment Map (IRAM) Ein graphisches Werkzeug zur Bedrohungsanalyse Johannes Klick, Jan-Ole Malchow AG Sichere Identit¨ at Fachbereich Mathematik und Informatik Freie Universit¨ at Berlin

Upload: others

Post on 31-Oct-2019

1 views

Category:

Documents


0 download

Report

TRANSCRIPT

Page 1: Industrial Risk Assessment Map (IRAM) - scadacs.org · SCADA 2711 28% HMI 1735 41% ERP 1400 0% TM 768 0% UPS 167 0%. SCADACS IRAM - Demonstration (Video) Video. SCADACS Zusammenfassung

SCADACS

Industrial Risk Assessment Map (IRAM)

Ein graphisches Werkzeug zur Bedrohungsanalyse

Johannes Klick, Jan-Ole Malchow

AG Sichere Identitat

Fachbereich Mathematik und Informatik

Freie Universitat Berlin

Page 2: Industrial Risk Assessment Map (IRAM) - scadacs.org · SCADA 2711 28% HMI 1735 41% ERP 1400 0% TM 768 0% UPS 167 0%. SCADACS IRAM - Demonstration (Video) Video. SCADACS Zusammenfassung

SCADACS

Volker Roth Jan-Ole Malchow Johannes KlickDaniel Marzin Sascha Zinke Mateusz KhalilRobert Fehrmann Philipp Lammel

Page 3: Industrial Risk Assessment Map (IRAM) - scadacs.org · SCADA 2711 28% HMI 1735 41% ERP 1400 0% TM 768 0% UPS 167 0%. SCADACS IRAM - Demonstration (Video) Video. SCADACS Zusammenfassung

SCADACS

Problemstellung

Steuerungen sind schlecht Geschutzt gegen Angreifer

◮ fehlende Authentifizierung

◮ keine Verschlusselung

◮ direkt mit dem Internet verbunden

Page 4: Industrial Risk Assessment Map (IRAM) - scadacs.org · SCADA 2711 28% HMI 1735 41% ERP 1400 0% TM 768 0% UPS 167 0%. SCADACS IRAM - Demonstration (Video) Video. SCADACS Zusammenfassung

SCADACS

Fragestellung

◮ Wie sind die Steuerungen geografisch verteilt?

◮ Um welche Arten von Steuerungen handelt es sich?

◮ Handelt es sich um ein flachendeckendes Problem?

◮ Gibt es bestehende CVEs / Exploits zu den Geraten?

◮ Wie groß ist die Bedrohung fur eine bestimmte Region imFalle eines Angriffs?

Page 5: Industrial Risk Assessment Map (IRAM) - scadacs.org · SCADA 2711 28% HMI 1735 41% ERP 1400 0% TM 768 0% UPS 167 0%. SCADACS IRAM - Demonstration (Video) Video. SCADACS Zusammenfassung

SCADACS

Methodik - Prozessubersicht

Page 6: Industrial Risk Assessment Map (IRAM) - scadacs.org · SCADA 2711 28% HMI 1735 41% ERP 1400 0% TM 768 0% UPS 167 0%. SCADACS IRAM - Demonstration (Video) Video. SCADACS Zusammenfassung

SCADACS

Methodik - SHODAN Funktionsweise

SHODAN ist eine spezielle Suchmaschiene

◮ sucht im Internet nach Diensten wie SNMP, HTTP(S),Telnet etc.

◮ verbindet sich mit diesen Diensten und speichert bzw.fragt Identifikationsinformationen ab

◮ Verbindunsgziele werden zufallig bestimmt

◮ findet Gerate im Internet, die WEB-Suchmachien wieGoogle nicht finden

Page 7: Industrial Risk Assessment Map (IRAM) - scadacs.org · SCADA 2711 28% HMI 1735 41% ERP 1400 0% TM 768 0% UPS 167 0%. SCADACS IRAM - Demonstration (Video) Video. SCADACS Zusammenfassung

SCADACS

Was fur Steuerungen suchen wir im Internet?

Page 8: Industrial Risk Assessment Map (IRAM) - scadacs.org · SCADA 2711 28% HMI 1735 41% ERP 1400 0% TM 768 0% UPS 167 0%. SCADACS IRAM - Demonstration (Video) Video. SCADACS Zusammenfassung

SCADACS

SCADA Systeme

Page 9: Industrial Risk Assessment Map (IRAM) - scadacs.org · SCADA 2711 28% HMI 1735 41% ERP 1400 0% TM 768 0% UPS 167 0%. SCADACS IRAM - Demonstration (Video) Video. SCADACS Zusammenfassung

SCADACS

PLC - Programmable Logic Controller

Page 10: Industrial Risk Assessment Map (IRAM) - scadacs.org · SCADA 2711 28% HMI 1735 41% ERP 1400 0% TM 768 0% UPS 167 0%. SCADACS IRAM - Demonstration (Video) Video. SCADACS Zusammenfassung

SCADACS

PLC Network Devices (PLCND)

Page 11: Industrial Risk Assessment Map (IRAM) - scadacs.org · SCADA 2711 28% HMI 1735 41% ERP 1400 0% TM 768 0% UPS 167 0%. SCADACS IRAM - Demonstration (Video) Video. SCADACS Zusammenfassung

SCADACS

HMI - Human Machine Interfaces

Page 12: Industrial Risk Assessment Map (IRAM) - scadacs.org · SCADA 2711 28% HMI 1735 41% ERP 1400 0% TM 768 0% UPS 167 0%. SCADACS IRAM - Demonstration (Video) Video. SCADACS Zusammenfassung

SCADACS

BMS - Building Management Systems

Page 13: Industrial Risk Assessment Map (IRAM) - scadacs.org · SCADA 2711 28% HMI 1735 41% ERP 1400 0% TM 768 0% UPS 167 0%. SCADACS IRAM - Demonstration (Video) Video. SCADACS Zusammenfassung

SCADACS

PDU - Power Distribution Units

Page 14: Industrial Risk Assessment Map (IRAM) - scadacs.org · SCADA 2711 28% HMI 1735 41% ERP 1400 0% TM 768 0% UPS 167 0%. SCADACS IRAM - Demonstration (Video) Video. SCADACS Zusammenfassung

SCADACS

TM - Traffic Management Devices

Page 15: Industrial Risk Assessment Map (IRAM) - scadacs.org · SCADA 2711 28% HMI 1735 41% ERP 1400 0% TM 768 0% UPS 167 0%. SCADACS IRAM - Demonstration (Video) Video. SCADACS Zusammenfassung

SCADACS

ERP - Enterprise Rescource Planning Systems

Page 16: Industrial Risk Assessment Map (IRAM) - scadacs.org · SCADA 2711 28% HMI 1735 41% ERP 1400 0% TM 768 0% UPS 167 0%. SCADACS IRAM - Demonstration (Video) Video. SCADACS Zusammenfassung

SCADACS

UPS - Uninterruptible Power Supplys

Page 17: Industrial Risk Assessment Map (IRAM) - scadacs.org · SCADA 2711 28% HMI 1735 41% ERP 1400 0% TM 768 0% UPS 167 0%. SCADACS IRAM - Demonstration (Video) Video. SCADACS Zusammenfassung

SCADACS

IRAM - Deutschland

Page 18: Industrial Risk Assessment Map (IRAM) - scadacs.org · SCADA 2711 28% HMI 1735 41% ERP 1400 0% TM 768 0% UPS 167 0%. SCADACS IRAM - Demonstration (Video) Video. SCADACS Zusammenfassung

SCADACS

IRAM - Europa

Page 19: Industrial Risk Assessment Map (IRAM) - scadacs.org · SCADA 2711 28% HMI 1735 41% ERP 1400 0% TM 768 0% UPS 167 0%. SCADACS IRAM - Demonstration (Video) Video. SCADACS Zusammenfassung

SCADACS

IRAM - USA Nachtaufnahme ohne Steuerungen

Page 20: Industrial Risk Assessment Map (IRAM) - scadacs.org · SCADA 2711 28% HMI 1735 41% ERP 1400 0% TM 768 0% UPS 167 0%. SCADACS IRAM - Demonstration (Video) Video. SCADACS Zusammenfassung

SCADACS

IRAM - USA Nachtaufnahme mit Steuerungen

Page 21: Industrial Risk Assessment Map (IRAM) - scadacs.org · SCADA 2711 28% HMI 1735 41% ERP 1400 0% TM 768 0% UPS 167 0%. SCADACS IRAM - Demonstration (Video) Video. SCADACS Zusammenfassung

SCADACS

IRAM - Asien

Page 22: Industrial Risk Assessment Map (IRAM) - scadacs.org · SCADA 2711 28% HMI 1735 41% ERP 1400 0% TM 768 0% UPS 167 0%. SCADACS IRAM - Demonstration (Video) Video. SCADACS Zusammenfassung

SCADACS

Analyse

Page 23: Industrial Risk Assessment Map (IRAM) - scadacs.org · SCADA 2711 28% HMI 1735 41% ERP 1400 0% TM 768 0% UPS 167 0%. SCADACS IRAM - Demonstration (Video) Video. SCADACS Zusammenfassung

SCADACS

Analyse

Kategorien Gerate CVEs/Exploits

BMS 31411 9%PLCND 23873 14%PLC 14166 62%PDU 10381 0%SCADA 2711 28%HMI 1735 41%ERP 1400 0%TM 768 0%UPS 167 0%

Page 24: Industrial Risk Assessment Map (IRAM) - scadacs.org · SCADA 2711 28% HMI 1735 41% ERP 1400 0% TM 768 0% UPS 167 0%. SCADACS IRAM - Demonstration (Video) Video. SCADACS Zusammenfassung

SCADACS

IRAM - Demonstration (Video)

Video

Page 25: Industrial Risk Assessment Map (IRAM) - scadacs.org · SCADA 2711 28% HMI 1735 41% ERP 1400 0% TM 768 0% UPS 167 0%. SCADACS IRAM - Demonstration (Video) Video. SCADACS Zusammenfassung

SCADACS

Zusammenfassung

◮ Eine große Menge von Steuerungseinheiten befinden sichdirekt im Internet

◮ Viele Steuerungen sind gefahrdet und ungeschutzt

◮ Besonders in wirtschaftlich starken Regionen sind vieleGerate zu finden

◮ Es handelt sich um ein internationales undfachendeckendes Problem

◮ Es besteht Handlungsbedarf

Page 26: Industrial Risk Assessment Map (IRAM) - scadacs.org · SCADA 2711 28% HMI 1735 41% ERP 1400 0% TM 768 0% UPS 167 0%. SCADACS IRAM - Demonstration (Video) Video. SCADACS Zusammenfassung

SCADACS

Vielen Dank fur Ihre Aufmerksamkeit!


IRAM 11605

Metodo 5 (IRAM)

Iram iso9001

Iram Dibujo Tecnico

Normas iram _dibujo_tecnico_

Iram 2026.MaterialesAislantes.pdf

Normas iram dibujo_tecnico

Norma IRAM 4502. Tipos de líneas Norma IRAM 4503. Letras y números. Norma IRAM 4504. Formato y plegado de láminas. Norma IRAM 4501. Definiciones de vistas. ... Norma IRAM 4536

Norma IRAM 6736

IRAM-Normas Bioseguridad

IRAM 04191 in Taurus: Infall, rotation, and outflow1.2. IRAM 04191: A very young Class 0 protostar in Taurus The massive (Mtot ∼ 1.5M⊙) dense core/envelope of the Class 0 object,

Michael Bremer (IRAM), Michel Guélin (IRAM), Nimesh Patel … · IRC+10216 in high-resolution Molecular Lines Michael Bremer (IRAM), Michel Guélin (IRAM), Nimesh Patel (CfA), José

IRAM Newsletter

IRAM - Cornell Universityastro.cornell.edu/~amelie/Project/documents/proposals/pilot... · IRAM 300, rue de la Piscine 38406 ST. MARTIN d’HERES (France) Fax: (33/0) 476 42 54 69

Simbologia electrica IRAM

IRAM IQBAL UOG

LICENSE GRANTED BY IRAM FOR THE USE OF THE IRAM MARK … · LICENSE GRANTED BY IRAM FOR THE USE OF THE IRAM MARK OF CONFORMITY ACCORDING TO A REFERENCE DOCUMENT AND THE S.I.C. & M

Fr´ed´eric Gueth, IRAM Grenoble 8th IRAM Millimeter ... · Large-field imaging Fr´ed´eric Gueth, IRAM Grenoble 8th IRAM Millimeter Interferometry School 15–19 October 2012

12 CO(1-0) & 12 CO(2-1) main beams at IRAM 30m

Norma Iram 11549

IRAM 16 - Stålöv · Box 165, S-574 22 VETLANDA, SWEDEN Phone +46 (0)383 76 23 40 Fax +46 (0)383 151 96 IRAM 16 Index to illustrations (assemblies) 16-01-1 Top lid

ESQUEMA 1 DE NORMA IRAM 1666*hormigonelaborado.com/.../07/Esquema-1-de-la-IRAM-1666-2.pdf · 2019-07-15 · Esquema 1 IRAM 1666:2019 6 IRAM 1524 - Hormigón de cemento. Preparación

LICENSE GRANTED BY IRAM FOR THE USE OF THE ... IRAM CEDASEG...LICENCIA QUE OTORGA IRAM PARA EL USO DEL SELLO IRAM DE CONFORMIDAD CON NORMA IRAM Y LA MARCA DE SEGURIDAD DE LA S.I.C

IRAM 10000

IRAM 11604

Sébastien Muller (ASIAA, Taiwan) M. Guélin (IRAM) M. Dumke (ESO) R. Lucas (IRAM)

IRAM 2341 (extracto)

Iram 3517 parte1

Normas-Dibujo IRAM

IRAM 35050E1

IRAM 12 - Stålöv · Box 165, S-574 22 VETLANDA, SWEDEN Phone +46 (0)383 - 76 23 40 Fax +46 (0)383 - 151 96 IRAM 12 Index to illustrations (assemblies) 12-01-1 Door and covers -

IRAM 35052 E1

Norma Iram 14102

iram info · 2010. 2. 25. · iram info Number 74 February 2010 IRAM Grenoble 300, rue de la Piscine, Domaine Universitaire, 38406, Saint Martin d’Hères, France Phone : +33 (0)4

NORMA IRAM ARGENTINA 3573 - ingenieria.faa.mil.aringenieria.faa.mil.ar/Normas/Iram/Proteccion Contra Incendios/Stan… · IRAM 3573* Segunda edición 2006-11-15 Referencia Numérica: