|
|
Cyber security tester of elements used in industrial networks and energy industry
Březina, Jiří ; Mlýnek, Petr (referee) ; Lieskovan, Tomáš (advisor)
This thesis deals with the issue of security analysis of DLMS/COSEM protocol and exploitation of these vulnerabilities in real Smart Grid environment. Thesis starts with a description of power grids in the past and present, introducing the environment of modern power grids and the smart grid elements used in it this power grids to reader. This is followed by a detailed discussion of the communication protocols that operate in these networks, beginning from the older and more industrially based Modbus protocol to the DLMS/COSEM protocol which is most used today and his various components and security. The most common current models of link vulnerability attacks are also summarized in the paper. The thesis aims to implement a tester that tests the security of smart grid elements, mainly on the vulnerabilities described in the thesis. The tester primarily focuses on the vulnerability called replay attack and evaluating the execution of this attack in a laboratory environment.
|
|
|
DLMS/COSEM protocol security
Tomko, Tomáš ; Mlýnek, Petr (referee) ; Lieskovan, Tomáš (advisor)
The aim of this thesis is to familiarize the reader with the DLMS/COSEM protocol, which is mainly used in the power industry. The thesis introduces the concept of smart grids along with their development and basic legislation. In the following section, all the protocols used in smart energy networks are discussed with most emphasis on the mentioned DLMS/COSEM protocol and its security features and vulnerabilities. Furthermore, the thesis aims to introduce the reader to the security risks in industrial networks and the Cyber Range KYPO platform. It was important to familiarize with the capabilities that this platform offers. The next task of this thesis is to operationalize the KYPO platform in a laboratory environment with a security scenario focused on DLMS/COSEM security. The security scenario that we have managed to create involves the interception of communication and the exploitation of at least two security vulnerabilities of the DLMS/COSEM protocol. All the programs and tools that we have used to achieve the objectives of this thesis have been summarized in more detail in a separate chapter, which is dedicated to the practical part of the thesis. The thesis describes the procedure and the problems that we encountered while completing the thesis assignment. The actual virtual scenario that we prepared runs on a server at the premises of the BUT. On this server is installed Cyber Range platform KYPO in all-in-one configuration. The created security scenario using the DLMS/COSEM protocol contains two users and one attacker located in the same network, as we have defined it. We used a simple text editor to define the network configuration and defined it for the KYPO platform in YAML format, which is used to automate the data in a form that is easy for humans to read. We also used the same YAML format to define playbooks, which serve as the easiest way in Ansible to automate repetitive tasks. We used them to install packages, update existing packages, and prepare the virtual environment to exploit DLMS/COSEM protocol vulnerabilities.
|
|
|
Load analyser for industrial networks
Trávník, Kryštof ; Mlýnek, Petr (referee) ; Lieskovan, Tomáš (advisor)
The bachelor thesis is focused on developing an application, which is consisted of a web application and a web server. In the theoretical part are described topics such as DLMS protocol, specificationCOSEM, attacks on service denial, tools for generating denial attacks, and key parts of Docker. The app which is created is sending a request to smart meters together with Denial of service attacks. Hping3 is used for generating DoS attacks and several options of attack are available. The app is created in Java. Received results are shown in form CSV and also graphically in the web application.
|
|
|
DLMS security suite implementation
Kohout, David ; Sláčik, Ján (referee) ; Mlýnek, Petr (advisor)
This thesis is focused on smart meters cyber security using DLMS Security Suite standard. Security is more important every day and DLMS specifies multiple methods of authentication and message encryption which is defined in Security Suites. For message creation there are multiple possible formats that can be used. For a better understanding all formats are analysed and compared using a specific example. Main part of this work is about making a testing application called VUT DLMS Tester which is used for testing this standard for real usage in distribution network. Whole development is cooperated with distribution companies and smart meter manufacturers. Application also implements higher levels of security which DLMS specifies. This application is used for testing multiple scenarios regarding security impact on data volume.
|
|
| |
|
|
Information Security in Energetics
Straževský, Martin ; Lieskovan, Tomáš (referee) ; Hajný, Jan (advisor)
This bachelors thesis focuses on analysis of vulnerabilities of DLMS/COSEM protocol, DoS (Denial of Service) attack and load test execution on smart grid components -- smart meters. Thesis implements load tester application that can test given components load resistance based on input parameters, that affect predefined load profile consisting of phases and periodically checks whether the component is responding after each phase.
|
|
|
Network probe module for energy protocols analysis
Nguyen, Minh Hien ; Burda, Karel (referee) ; Blažek, Petr (advisor)
Energy protocols are already increasingly entering our daily lives. With the development of smart grids, meters and appliances, more and more customers are demanding faster and more accurate consumption readings, as well as efficient information about the status of the energy network and control over energy use. The theoretical part of this master's thesis focuses primarily on the description of energy standards and protocols (IEC 60870, IEC 61850, DLMS and DNP3). Before the design of the analyzer, the network probe was first tested for load and stress. Once the criteria were met a DLMS energy protocol analysis module was created. The output is a set of statistics and values and can be used as a basis for machine learning and artificial intelligence. Furthermore, the thesis described the possible attacks on the energy protocol and proposes suitable detection methods based on the Suricata module.
|
|
|
Testing the security of smart meters
Fitere, Ivana ; Mlýnek, Petr (referee) ; Kohout, David (advisor)
This thesis studies the topic of smart meters with closer focus on testing of the devices, examples of tests performed on these devices, life cycle of the meter from security and Key Management System perspective. First part summarizes the technologies used in this kind of communication, test types, standards regulating smart metering and description of the life cycle. The second part includes scheme of the Key Management System and laboratory for students, devoted to examination of communication, messages and verifying the security.
|
|
|
Application for Testing Smart Meters
Kohout, David
This paper presents our developed application for smart metering, which we are using to test the interoperability of different smart meters, compatibility with transmission technologies, to measure data volumes, test data security, and also ensure data security through the whole life-cycle of smart meters. The paper concludes with future development and planned features of our application, which is already being used for testing smart metering technologies at the Smart Grid Lab at BUT.
|
|
|
Cyber security tester of elements used in industrial networks and energy industry
Březina, Jiří ; Mlýnek, Petr (referee) ; Lieskovan, Tomáš (advisor)
The following is a detailed discussion of the communication protocols that work in these networks, from the older and more industrially based Modbus protocol, through the IEC 60870 protocol suite, to the most commonly used protocol today, DLMS/COSEM. The paper also summarizes the most common current attack patterns on DLMS/COSEM protocol vulnerabilities. The thesis aims to implement a tester that tests the security of smart grid elements mainly on the vulnerabilities described in the thesis. The tester primarily focuses on the vulnerabilities of overwhelm and replay attacks and evaluating the execution of these attacks in a laboratory environment.
|
guest ::
