A Strategy for Security Testing Industrial Firewalls

Proceedings of the Fifth Annual Industrial Control System Security (ICSS) Workshop Pub Date : 2019-12-10 DOI:10.1145/3372318.3372323

Thuy D. Nguyen, S. C. Austin, C. Irvine

{"title":"A Strategy for Security Testing Industrial Firewalls","authors":"Thuy D. Nguyen, S. C. Austin, C. Irvine","doi":"10.1145/3372318.3372323","DOIUrl":null,"url":null,"abstract":"The ability to secure industrial control systems (ICS) against adversaries relies on defense in depth and implementation of security controls. However, as automation and networking of industrial processes increases, so do the opportunities for adversaries to cause destruction and disruption. Many industrial firewalls are proprietary and often users blindly trust that the firewalls meet vendor security claims. Independent testing can assess these claims. This paper describes the security testing of two commercial ICS firewalls to determine whether or not these firewalls provide protection of resources as advertised. Our test philosophy is guided by the Flaw Hypothesis Methodology (FHM)---a penetration testing technique for discovery of security flaws derived from documentation and other evidence. The test coverage includes functional testing, exception testing, and penetration testing. Testing is conducted on a simulated natural gas compressor system, utilizing two open-source vulnerability analysis tools, Nessus and Metasploit. The testing methodology is the first step toward a general approach for selecting and testing firewalls intended for critical control systems.","PeriodicalId":287941,"journal":{"name":"Proceedings of the Fifth Annual Industrial Control System Security (ICSS) Workshop","volume":"63 1","pages":"0"},"PeriodicalIF":0.0000,"publicationDate":"2019-12-10","publicationTypes":"Journal Article","fieldsOfStudy":null,"isOpenAccess":false,"openAccessPdf":"","citationCount":"2","resultStr":null,"platform":"Semanticscholar","paperid":null,"PeriodicalName":"Proceedings of the Fifth Annual Industrial Control System Security (ICSS) Workshop","FirstCategoryId":"1085","ListUrlMain":"https://doi.org/10.1145/3372318.3372323","RegionNum":0,"RegionCategory":null,"ArticlePicture":[],"TitleCN":null,"AbstractTextCN":null,"PMCID":null,"EPubDate":"","PubModel":"","JCR":"","JCRName":"","Score":null,"Total":0}

引用次数: 2

Abstract

The ability to secure industrial control systems (ICS) against adversaries relies on defense in depth and implementation of security controls. However, as automation and networking of industrial processes increases, so do the opportunities for adversaries to cause destruction and disruption. Many industrial firewalls are proprietary and often users blindly trust that the firewalls meet vendor security claims. Independent testing can assess these claims. This paper describes the security testing of two commercial ICS firewalls to determine whether or not these firewalls provide protection of resources as advertised. Our test philosophy is guided by the Flaw Hypothesis Methodology (FHM)---a penetration testing technique for discovery of security flaws derived from documentation and other evidence. The test coverage includes functional testing, exception testing, and penetration testing. Testing is conducted on a simulated natural gas compressor system, utilizing two open-source vulnerability analysis tools, Nessus and Metasploit. The testing methodology is the first step toward a general approach for selecting and testing firewalls intended for critical control systems.

查看原文本刊更多论文

工业防火墙的安全测试策略

保护工业控制系统(ICS)免受攻击的能力依赖于深度防御和安全控制的实现。然而，随着工业过程自动化和网络化的增加，对手造成破坏和破坏的机会也在增加。许多工业防火墙都是专有的，用户常常盲目地相信防火墙符合供应商的安全声明。独立测试可以评估这些说法。本文描述了两个商用ICS防火墙的安全测试，以确定这些防火墙是否如宣传的那样提供资源保护。我们的测试理念是由缺陷假设方法论(FHM)指导的，这是一种渗透测试技术，用于发现源自文档和其他证据的安全缺陷。测试覆盖范围包括功能测试、异常测试和渗透测试。利用Nessus和Metasploit两个开源漏洞分析工具，在模拟天然气压缩机系统上进行了测试。测试方法是选择和测试用于关键控制系统的防火墙的通用方法的第一步。

本文章由计算机程序翻译，如有差异，请以英文原文为准。

求助全文

约1分钟内获得全文求助全文

来源期刊

Proceedings of the Fifth Annual Industrial Control System Security (ICSS) Workshop

自引率

0.00%

发文量