• Home

  • Documents

  • THE PITFALLS OF LEGACY TECHNOLOGY...in Industrial Programming,” we reveal previously unknown...
1
For the details of our findings and security recommendations, read our research paper at http://bit.ly/rogueautomation. In partnership with THE PITFALLS OF LEGACY TECHNOLOGY Exposing Critical Flaws in Programmable Industrial Machines Security-Sensitive Features in Industrial Automation Our main discovery revolves around security-sensitive features that are present in the legacy programming languages of some of the most popular industrial robotic platforms. We demonstrate how these features could lead to vulnerabilities or be abused by malicious actors to create new strains of self-propagating malware that traditional endpoint scanners would not be able to detect. Failure to address these issues could allow an advanced, state-level attacker to remain persistent within the digital equipment of a smart factory for surveillance and reconnaissance, and to perform a variety of malicious activities — from altering the quality of products and halting the manufacturing line to causing damage to robots and even exfiltrating intellectual property. Actionable Advice for the Manufacturing Industry We coordinated with Robot Operating System – Industrial (ROS-I), a consortium of leading original equipment manufacturers and research organizations, to establish practical security recommendations that can help users avoid common configuration and programming mistakes. Used with proper network security equipment, these guidelines can help reduce the exploitability of the vulnerabilities that we discovered. The Industrial Control Systems Cyber Emergency Response Team (ICS-CERT) of the US Cybersecurity and Infrastructure Security Agency (CISA) also released an alert confirming the severity of our findings and acknowledging the suggested mitigation strategy. Our recommendations can be summarized thus: • Network segmentation: Use proper network protection devices to isolate industrial robots that need to process data coming from other networks. • Secure programming: Promote secure programming guidelines among control process engineers and programmers. • Automation code management: Know and keep track of the automation code that is produced by a system integrator and runs in the factory. Industrial automation enables enterprises across sectors in the manufacturing industry — including automotive, avionics, military, food and beverage, and pharmaceuticals — to produce goods on a large scale. In our research paper “Rogue Automation: Vulnerable and Malicious Code in Industrial Programming,” we reveal previously unknown design flaws that threat actors could exploit to hide malicious functionalities in robots and other programmable industrial machines. The technology that drives programmable industrial machines was designed decades ago, but it remains to be the backbone of modern manufacturing. This is why the flaws we found are hard to fix at their root and can be mitigated only with specific secure network architectures.

THE PITFALLS OF LEGACY TECHNOLOGY...in Industrial Programming,” we reveal previously unknown design flaws that threat actors could exploit to hide malicious functionalities in robots

  • Upload
    others

  • View
    0

  • Download
    0

Embed Size (px)

Citation preview

Page 1: THE PITFALLS OF LEGACY TECHNOLOGY...in Industrial Programming,” we reveal previously unknown design flaws that threat actors could exploit to hide malicious functionalities in robots

For the details of our findings and security recommendations,

read our research paper at http://bit.ly/rogueautomation.

In partnership with

THE PITFALLS OF LEGACY TECHNOLOGYExposing Critical Flaws in

Programmable Industrial Machines

Security-Sensitive Features in Industrial Automation

Our main discovery revolves around security-sensitive features that are present in the legacy programming languages of some of the most popular industrial robotic platforms. We demonstrate how these features could lead to vulnerabilities or be abused by malicious actors to create new strains of self-propagating malware that traditional endpoint scanners would not be able to detect.

Failure to address these issues could allow an advanced, state-level attacker to remain persistent within the digital equipment of a smart factory for surveillance and reconnaissance, and to perform a variety of malicious activities — from altering the quality of products and halting the manufacturing line to causing damage to robots and even exfiltrating intellectual property.

Actionable Advice for the Manufacturing Industry

We coordinated with Robot Operating System – Industrial (ROS-I), a consortium of leading original equipment manufacturers and research organizations, to establish practical security recommendations that can help users avoid common configuration and programming mistakes. Used with proper network security equipment, these guidelines can help reduce the exploitability of the vulnerabilities that we discovered. The Industrial Control Systems Cyber Emergency Response Team (ICS-CERT) of the US Cybersecurity and Infrastructure Security Agency (CISA) also released an alert confirming the severity of our findings and acknowledging the suggested mitigation strategy. Our recommendations can be summarized thus:

• Network segmentation: Use proper network protection devices to isolate industrial robots that need to process data coming from other networks.

• Secure programming: Promote secure programming guidelines among control process engineers and programmers.

• Automation code management: Know and keep track of the automation code that is produced by a system integrator and runs in the factory.

Industrial automation enables enterprises across sectors in the manufacturing industry — including automotive, avionics, military, food and beverage, and pharmaceuticals — to produce goods on a large scale. In our research paper “Rogue Automation: Vulnerable and Malicious Code in Industrial Programming,” we reveal previously unknown design flaws that threat actors could exploit to hide malicious functionalities in robots and other programmable industrial machines.

The technology that drives programmable industrial machines was designed decades ago, but it remains to be the backbone of modern manufacturing. This is why the flaws we found are hard to fix at their root and can be mitigated only with specific secure network architectures.

Player’s Options: Flaws - DriveThruRPG.comwatermark.drivethrurpg.com/pdf_previews/90063-sample.pdf · Player’s Options: Flaws introduces flaws to the Pathfinder Roleplaying Game

Player’s Options: Flaws - DriveThruRPG.comwatermark.drivethrurpg.com/pdf_previews/90063-sample.pdf · Player’s Options: Flaws introduces flaws to the Pathfinder Roleplaying Game

Documents
Basic Functionalities

Basic Functionalities

Documents
VPN Flaws Whitepapr

VPN Flaws Whitepapr

Documents
02230: Program Security - Technical University of Denmark · 2005-08-26 · Buffer overflow Incomplete mediation Time-of-check to Time-of-use (TOCTTU) errors 2. Malicious flaws. Introduced

02230: Program Security - Technical University of Denmark · 2005-08-26 · Buffer overflow Incomplete mediation Time-of-check to Time-of-use (TOCTTU) errors 2. Malicious flaws. Introduced

Documents
R R R Program Security. R R R Programming Issues of Security Types and effects of flaws and malicious code Techniques to help control program threats

R R R Program Security. R R R Programming Issues of Security Types and effects of flaws and malicious code Techniques to help control program threats

Documents
Flaws A cappella

Flaws A cappella

Documents
Malicious Software - Computer Sciencehnw/courses/cs454/notes/lecture19_malware.pdf · ! one of oldest types of malicious software ... ! exploits known flaws in network systems . 4

Malicious Software - Computer Sciencehnw/courses/cs454/notes/lecture19_malware.pdf · ! one of oldest types of malicious software ... ! exploits known flaws in network systems . 4

Documents
Software Flaws

Software Flaws

Documents
Malicious Software Malicious Software Han Zhang & Ruochen Sun

Malicious Software Malicious Software Han Zhang & Ruochen Sun

Documents
3-1 Last time Program security Flaws, faults, and failures Types of security flaws Unintentional flaws Buffer overflows Incomplete mediation TOCTTOU

3-1 Last time Program security Flaws, faults, and failures Types of security flaws Unintentional flaws Buffer overflows Incomplete mediation TOCTTOU

Documents
IoT White Worms: Design and Applicationessay.utwente.nl/83003/1/Ferronato_MA_EEMCS.pdf · functionalities and behavior of white worms are very similar to the one of malicious botnets

IoT White Worms: Design and Applicationessay.utwente.nl/83003/1/Ferronato_MA_EEMCS.pdf · functionalities and behavior of white worms are very similar to the one of malicious botnets

Documents
TCSM3i Functionalities

TCSM3i Functionalities

Documents
Injection Flaws

Injection Flaws

Documents
Andromeda: XSScousot/publications.www/... · Cross-site scripting (XSS) 2. Injection flaws 3. Malicious file executions 4. ... Web application manage files in the file system

Andromeda: XSScousot/publications.www/... · Cross-site scripting (XSS) 2. Injection flaws 3. Malicious file executions 4. ... Web application manage files in the file system

Documents
Flaws Theme

Flaws Theme

Documents
EBOOK A Practical Guide to Risk-Based Cybersecurity Reporting · 2021. 3. 9. · And now, cyber attacks are on the rise as malicious actors are taking advantage of the potential flaws

EBOOK A Practical Guide to Risk-Based Cybersecurity Reporting · 2021. 3. 9. · And now, cyber attacks are on the rise as malicious actors are taking advantage of the potential flaws

Documents
The Art of Exploiting Logical Flaws in Web Apps · The Art of Exploiting Logical Flaws in Web Apps ... Why Logic Flaws? ... The Art of Exploiting Logical Flaws in Web Apps

The Art of Exploiting Logical Flaws in Web Apps · The Art of Exploiting Logical Flaws in Web Apps ... Why Logic Flaws? ... The Art of Exploiting Logical Flaws in Web Apps

Documents
: CCNC Flaws:

: CCNC Flaws:

Documents
Common Flaws

Common Flaws

Documents
Bastille flaws analysis

Bastille flaws analysis

Art & Photos
Hacking Exposed: Live 2009 - McAfee€¦ · wireless Social Engineering POOR COMMON SENSE MALICIOUS INTENT MISUSED FUNCTIONALITY DESIGN FLAWS. Threats The land of opportunity

Hacking Exposed: Live 2009 - McAfee€¦ · wireless Social Engineering POOR COMMON SENSE MALICIOUS INTENT MISUSED FUNCTIONALITY DESIGN FLAWS. Threats The land of opportunity

Documents
Design Flaws

Design Flaws

Education
Compliance Management Flaws

Compliance Management Flaws

Documents
Fixes and flaws 2000 uneven lies for common flaws

Fixes and flaws 2000 uneven lies for common flaws

Documents
A Systematic Approach to Uncover Security Flaws in … Systematic Approach to Uncover Security Flaws in GUI Logic ... ‡ Department of Computer Science ... malicious executables without

A Systematic Approach to Uncover Security Flaws in … Systematic Approach to Uncover Security Flaws in GUI Logic ... ‡ Department of Computer Science ... malicious executables without

Documents
CS 458 / 658 Computer Security and Privacy · 2019-02-25 · 2-3 Module outline 1 Flaws, faults, and failures 2 Unintentional security aws 3 Malicious code: Malware 4 Other malicious

CS 458 / 658 Computer Security and Privacy · 2019-02-25 · 2-3 Module outline 1 Flaws, faults, and failures 2 Unintentional security aws 3 Malicious code: Malware 4 Other malicious

Documents
Merits Flaws

Merits Flaws

Documents
Merits and Flaws

Merits and Flaws

Documents
SysTaint: Assisting Reversing of Malicious Network ... · Command and Control (C&C) server [27]. The reversing of these communication functionalities is itself a major challenge,

SysTaint: Assisting Reversing of Malicious Network ... · Command and Control (C&C) server [27]. The reversing of these communication functionalities is itself a major challenge,

Documents
Flaws in Practice Flaws in Practice

Flaws in Practice Flaws in Practice

Documents