Show simple item record

dc.contributor.authorRodofile, NR
dc.contributor.authorRadke, K
dc.contributor.authorFoo, E
dc.date.accessioned2020-03-25T01:24:52Z
dc.date.available2020-03-25T01:24:52Z
dc.date.issued2016
dc.identifier.isbn9781450340427
dc.identifier.doi10.1145/2843043.2843350
dc.identifier.urihttp://hdl.handle.net/10072/392608
dc.description.abstractThe Distributed Network Protocol v3.0 (DNP3) is one of the most widely used protocols to control national infrastructure. The move from point-to-point serial connections to Ethernet-based network architectures, allowing for large and complex critical infrastructure networks. However, networks and configurations change, thus auditing tools are needed to aid in critical infrastructure network discovery. In this paper we present a series of intrusive techniques used for reconnaissance on DNP3 critical infrastructure. Our algorithms will discover DNP3 outstation slaves along with their DNP3 addresses, their corresponding master, and class object configurations. To validate our presented DNP3 reconnaissance algorithms and demonstrate it's practicality, we present an implementation of a software tool using a DNP3 plug-in for Scapy. Our implementation validates the utility of our DNP3 reconnaissance technique. Our presented techniques will be useful for penetration testing, vulnerability assessments and DNP3 network discovery.
dc.description.peerreviewedYes
dc.publisherAssociation for Computing Machinery (ACM)
dc.relation.ispartofconferencenameEighteenth Australasian Computing Education Conference (ACE 2016)
dc.relation.ispartofconferencetitleProceedings of the Australasian Computer Science Week Multiconference
dc.relation.ispartofdatefrom2016-02-02
dc.relation.ispartofdateto2016-02-05
dc.relation.ispartoflocationCanberra, Australia
dc.relation.ispartofpagefrom1
dc.relation.ispartofpageto10
dc.subject.fieldofresearchDistributed Computing
dc.subject.fieldofresearchcode0805
dc.titleDNP3 Network Scanning and Reconnaissance For Critical Infrastructure
dc.typeConference output
dc.type.descriptionE1 - Conferences
dcterms.bibliographicCitationRodofile, NR; Radke, K; Foo, E, DNP3 Network Scanning and Reconnaissance For Critical Infrastructure, Proceedings of the Australasian Computer Science Week Multiconference, 2016, pp. 1-10
dc.date.updated2020-03-25T01:20:23Z
dc.description.versionAccepted Manuscript (AM)
gro.rights.copyright© ACM, 2016. This is the author's version of the work. It is posted here by permission of ACM for your personal use. Not for redistribution. The definitive version was published in ACSW '16: Proceedings of the Australasian Computer Science Week Multiconference, ISBN: 978-1-4503-4042-7, https://doi.org/10.1145/2843043.2843350
gro.hasfulltextFull Text
gro.griffith.authorFoo, Ernest


Files in this item

This item appears in the following Collection(s)

  • Conference outputs
    Contains papers delivered by Griffith authors at national and international conferences.

Show simple item record