Function code based vulnerability analysis of DNP3

Abstract

Distributed Network Protocol (DNP 3.0) is a reliable and an efficient open standard SCADA communication protocol predominantly used in the Energy Sector in USA. Due to its exhaustive specification and complex implementation it becomes essential to perform vulnerability analysis. The paper highlights attack surface specific to function codes present in Data Link and Application layer of the protocol stack. In order to realize the attack scenarios we have extended Scapy tool to add on DNP3 protocol stack. We have presented attack scenarios based on packet fabrication and packet modification threat categories. The subsequent findings and analysis of our work will help in developing DNP3/TCP based Protocol Validation tool to check the vendor implementation of the protocol. Further, it can also serve as Vulnerability Assessment and Penetrating Testing (VAPT) tool.