|
|
DLMS/COSEM protocol security
Tomko, Tomáš ; Mlýnek, Petr (oponent) ; Lieskovan, Tomáš (vedoucí práce)
The aim of this thesis is to familiarize the reader with the DLMS/COSEM protocol, which is mainly used in the power industry. The thesis introduces the concept of smart grids along with their development and basic legislation. In the following section, all the protocols used in smart energy networks are discussed with most emphasis on the mentioned DLMS/COSEM protocol and its security features and vulnerabilities. Furthermore, the thesis aims to introduce the reader to the security risks in industrial networks and the Cyber Range KYPO platform. It was important to familiarize with the capabilities that this platform offers. The next task of this thesis is to operationalize the KYPO platform in a laboratory environment with a security scenario focused on DLMS/COSEM security. The security scenario that we have managed to create involves the interception of communication and the exploitation of at least two security vulnerabilities of the DLMS/COSEM protocol. All the programs and tools that we have used to achieve the objectives of this thesis have been summarized in more detail in a separate chapter, which is dedicated to the practical part of the thesis. The thesis describes the procedure and the problems that we encountered while completing the thesis assignment. The actual virtual scenario that we prepared runs on a server at the premises of the BUT. On this server is installed Cyber Range platform KYPO in all-in-one configuration. The created security scenario using the DLMS/COSEM protocol contains two users and one attacker located in the same network, as we have defined it. We used a simple text editor to define the network configuration and defined it for the KYPO platform in YAML format, which is used to automate the data in a form that is easy for humans to read. We also used the same YAML format to define playbooks, which serve as the easiest way in Ansible to automate repetitive tasks. We used them to install packages, update existing packages, and prepare the virtual environment to exploit DLMS/COSEM protocol vulnerabilities.
|
|
|
Start Building Your Own Cyber Range – Cyber Arena
Stodulka, Tomas
The research deals with the importance of education against cyber crimes in today’s world.One of the solutions is through so-called cyber ranges. First two chapters briefly explain the currentproblematic and present some representatives of cyber ranges. The work continues by stress testingof the selected cloud computing platform that is the most suitable for cyber range purposes. Based onthe results, servers/devices are purchased, which form the basis of the future Cyber Arena in BUT
|
|
|
Bezpečnostní cvičení na platformě OpenStack
Fišarová, Veronika ; Hajný, Jan (oponent) ; Lieskovan, Tomáš (vedoucí práce)
Cílem bakalářské práce je seznámení s platformami, které se používají pro tvorbu cyber rangů. Hlavní část práce je zaměřena na cloudovou platformu OpenStack a její využití při tvorbě cyber range. Rozebrány jsou možnosti instalace OpenStacku a je vybrána instalace, která je vhodná pro nasazení projektu KYPO. Poslední část práce se věnuje analýze projektu KYPO a instalaci OpenStacku na virtuální stanici. Následuje nasazení platformy KYPO na vhodně upravený OpenStack a zprovoznění trénovacího scénáře.
|
|
|
Virtualizační platforma pro bezpečnostní cvičení
Horváthová, Estera ; MU, Pavel Šeda, KPSK FI (oponent) ; Lieskovan, Tomáš (vedoucí práce)
Bakalářská práce se zabývá vytvořením a zprovozněním sandboxů pro vybrané scénáře pomocí nástroje sandbox-creator, který je kompatibilní s KYPO projektem a využívá platformu OpenStack. Teoretická část popisuje technologie a nástroje využívané pro vytváření tréningových platforem. V rámci technologií jsou popsány virtualizace, kontejnerizace a cloud computing a v rámci nástrojů jsou popsány VirtualBox, Docker nebo OpenStack. Práce dále popisuje vybrané cyber range platformy, které tyto technologie využívají. Praktická část popisuje kompatibilitu vybrané platformy s KYPO projektem, využívané konfigurační nástroje, přípravu experimentálního prostředí, vytváření a zprovoznění sandboxů pro laboratorní cvičení, která jsou uvedena v příloze.
|
|
|
Cyber Ranges
Židovský, Patrik ; Lieskovan, Tomáš (oponent) ; Hajný, Jan (vedoucí práce)
The goal of this bachelor thesis is to get acquainted with software tools used for creating cyber ranks. These tools are used to simulate real cyber attacks of an offensive and defensive nature in a secure and legal environment. In the theoretical part, the tools are divided according to possible users, available training models and participatory roles. Several specific implementations are described, focused on different purposes and individual solutions of the structure of building elements. The practical part is to compare the available software tools using criteria and select the most suitable. Create two fully functional scenarios for five users for the selected tool.
|
host ::
RSS.