|
|
Fuzzer Based on Genetic Programming
Závada, Tomáš ; Gerlich, Tomáš (referee) ; Ilgner, Petr (advisor)
The thesis is focused on testing, discusses its various approaches and more specifically focuses on the automated testing technique called fuzzing. Theoretical part is focused on the process, used in fuzzing, advantages and disadvantages and also some of possible improvements. Furthermore, the work is focused specifically on improving the process of fuzzing using genetic algorithms. Genetic algorithms help create more appropriate test inputs, saving time during testing process while achieving appropriate results. A server using the DLMS/COSEM standard was chosen as the testing target. The thesis also introduces the DLMS protocol, which provides communication between clients and servers, and other essentials falling under the COSEM specification. Then the assembly of a test network, containing a server and a client, which use the mentioned standard for communication, is described. The thesis also elaborates a solution proposal for how the connection of the testing tool in the network could look like in a generic case. Finally, the implementation of a fuzzer using genetic algorithms to generate test data is also included.
|
|
|
Smart meter simulation on KYPO platform
Morawiec, Daniel ; Gerlich, Tomáš (referee) ; Lieskovan, Tomáš (advisor)
This bachelor thesis is focused on problematics of smart grids, smart meters and protocols which are used in the energy industry. The part of thesis is dedicated to DLMS protocol and COSEM specification. Cloud platform OpenStack and cyber range platforms, more specifically KYPO CRP, are subsequently described in this work. In the last part of the bachelor thesis deployment of platforms OpenStack and KYPO CRP is executed and testing scenario with common elements of energy networks is commissioned on the platform KYPO.
|
|
|
Secure reading of smart meters
Chaloupková, Denisa ; Mlýnek, Petr (referee) ; Kohout, David (advisor)
The work deals with the implementation of the secure push mode of the DLMS standard. It introduces the DLMS/COSEM standard, contains a theory for message security and describes how push works and its attributes. The Gurux library in Java is used and the example gurux.dlms.push.listener is modified. The Raspberry Pi platform is used as the server. Wireshark and the Gurux DLMS Translator available in Gurux GXDLMSDirector were used to verify security of a push message. Subsequently, push messages are compared in terms of their size according to the type of security used. The larger the content of the data sent in the message, the smaller the additional data needed to secure the messages in proportion to the total volume.
|
|
|
Fuzzer Based on Genetic Programming
Závada, Tomáš ; Gerlich, Tomáš (referee) ; Ilgner, Petr (advisor)
The thesis is focused on testing, discusses its various approaches and more specifically focuses on the automated testing technique called fuzzing. It discusses its process, advantages, disadvantages and then also some of its possible improvements. Furthermore, the work is focused specifically on improving the process of fuzzing techniques using genetic algorithms. Genetic algorithms help create more appropriate test inputs, saving time during testing process while achieving appropriate results. A server using the DLMS/COSEM standard was chosen as the testing target. The thesis also introduces the DLMS protocol, which provides communication between clients and servers, and other essentials falling under the COSEM specification. Then the assembly of a test network, containing a server and a client, which use the mentioned standard for communication, is described. The thesis also elaborates a solution proposal for how the connection of the testing tool to the network could look like. Finally, the implementation of a fuzzer using the process of genetic algorithms to generate test data is also included.
|
|
|
DLMS/COSEM protocol security
Tomko, Tomáš ; Mlýnek, Petr (referee) ; Lieskovan, Tomáš (advisor)
The aim of this thesis is to familiarize the reader with the DLMS/COSEM protocol, which is mainly used in the power industry. The thesis introduces the concept of smart grids along with their development and basic legislation. In the following section, all the protocols used in smart energy networks are discussed with most emphasis on the mentioned DLMS/COSEM protocol and its security features and vulnerabilities. Furthermore, the thesis aims to introduce the reader to the security risks in industrial networks and the Cyber Range KYPO platform. It was important to familiarize with the capabilities that this platform offers. The next task of this thesis is to operationalize the KYPO platform in a laboratory environment with a security scenario focused on DLMS/COSEM security. The security scenario that we have managed to create involves the interception of communication and the exploitation of at least two security vulnerabilities of the DLMS/COSEM protocol. All the programs and tools that we have used to achieve the objectives of this thesis have been summarized in more detail in a separate chapter, which is dedicated to the practical part of the thesis. The thesis describes the procedure and the problems that we encountered while completing the thesis assignment. The actual virtual scenario that we prepared runs on a server at the premises of the BUT. On this server is installed Cyber Range platform KYPO in all-in-one configuration. The created security scenario using the DLMS/COSEM protocol contains two users and one attacker located in the same network, as we have defined it. We used a simple text editor to define the network configuration and defined it for the KYPO platform in YAML format, which is used to automate the data in a form that is easy for humans to read. We also used the same YAML format to define playbooks, which serve as the easiest way in Ansible to automate repetitive tasks. We used them to install packages, update existing packages, and prepare the virtual environment to exploit DLMS/COSEM protocol vulnerabilities.
|
|
|
Cyber security tester of elements used in industrial networks and energy industry
Březina, Jiří ; Mlýnek, Petr (referee) ; Lieskovan, Tomáš (advisor)
This thesis deals with the issue of security analysis of DLMS/COSEM protocol and exploitation of these vulnerabilities in real Smart Grid environment. Thesis starts with a description of power grids in the past and present, introducing the environment of modern power grids and the smart grid elements used in it this power grids to reader. This is followed by a detailed discussion of the communication protocols that operate in these networks, beginning from the older and more industrially based Modbus protocol to the DLMS/COSEM protocol which is most used today and his various components and security. The most common current models of link vulnerability attacks are also summarized in the paper. The thesis aims to implement a tester that tests the security of smart grid elements, mainly on the vulnerabilities described in the thesis. The tester primarily focuses on the vulnerability called replay attack and evaluating the execution of this attack in a laboratory environment.
|
|
|
Impact Of Cyber Security On Data Volume In Smart Metering
Kohout, David
Smart metering is a new way of monitoring power grid and it can make billing of electricityconsumption much easier. These systems can be marked as elements of critical infrastructure,so it needs to be protected. For cost-effective communication with smart meters, we need to findcompromise between frequency of reading, data volume and cyber security.
|
|
|
Electric meter simulator with DLMS protocol
Tsymbal, Kateryna ; Gerlich, Tomáš (referee) ; Lieskovan, Tomáš (advisor)
This bachelor thesis is focused on getting acquainted with the DLMS/COSEM protocol and its functions. Furthermore, the Java programming language and the Raspberry Pi minicomputer are briefly introduced. The DLMS/COSEM protocol is used to simulate measurements using a smart meter, which ensures communication between the meter simulator and the concentrator. Communication provided by the DLMS/COSEM protocol is widely used in smart grids. The first part of the thesis discusses important information about energy networks and their relationship with smart meters, the importance of smart meters in modern networks and the role of smart networks, which are used for effective energy measurement in a particular area (e.g. for measuring electricity). Data measured in smart grids can be easily analyzed and used to make consumption more effective. The first part also mentions important information about the DLMS/COSEM protocol, the Java programming language and the Raspberry Pi minicomputer. In the second part of the thesis, a test environment is created for testing the smart meter simulator, which communicates using the DLMS/COSEM protocol with the concentrator and transmits the measured values to it. Measured values are manually defined for testing purposes using code changes in the Eclipse IDE. The aim of the work was to create a smart meter simulator that lists predefined values and passes them to the concentrator, which was achieved using the Gurux.DLMS library. Finally, an analysis of this communication was performed using Wireshark. This bachelor thesis is useful for a simple understanding of the DLMS/COSEM protocol and its use in smart grids.
|
|
|
DLMS security suite implementation
Kohout, David ; Sláčik, Ján (referee) ; Mlýnek, Petr (advisor)
This thesis is focused on smart meters cyber security using DLMS Security Suite standard. Security is more important every day and DLMS specifies multiple methods of authentication and message encryption which is defined in Security Suites. For message creation there are multiple possible formats that can be used. For a better understanding all formats are analysed and compared using a specific example. Main part of this work is about making a testing application called VUT DLMS Tester which is used for testing this standard for real usage in distribution network. Whole development is cooperated with distribution companies and smart meter manufacturers. Application also implements higher levels of security which DLMS specifies. This application is used for testing multiple scenarios regarding security impact on data volume.
|
|
|
Smart Metering demonstration demo
Gregor, Filip ; Musil, Petr (referee) ; Mlýnek, Petr (advisor)
The thesis deals with PLC technology and issues with Smart Metering. In the theoretical part, a principle of technology's functionality and its advantages and disadvantages were described. In the experimental part methodology of data concentrator and electric meters was designed. In addition, extensive testing set according to capturing of DLMS communication, link quality influencing, reading registers of meters were realized. In the second experimental part limits of communications between broadband BPL modems were detected by the power line communication hardware channel emulator. Measurement of throughput, latency, frame loss passed off according to RCF 2544, RFC 6349 recommendation and according to the methodology of TCP Throughput In the last part, two laboratory exercises were created, first one deals with Smart Metering system and communication between the data concentrator and electric meters and the second one deals with communication among broadband BPL modems not only for Smart Metering purposes.
|
guest ::
