|
|
Dispatching control of a public transport substation
Madzia, Adam ; Arm, Jakub (referee) ; Bradáč, Zdeněk (advisor)
This thesis deals with the dispatching control of public transport substations. It contains a research about companies that are creating dispatching control of substations for public transport and a description of the technology they use. Following chapters contain the designed structure of the whole control system, a description of the individual components which were used in this thesis and the design of the structure of communication interfaces with the definition of individual communication protocols which were used. In the next section there is a simulation of public transport substation created on the PLC and a visualization for HMI panel which represents its local control system. In the following part, the design and implementation of the data storage system was created by using the Firebird database tool and Promotic SCADA software. The last chapter of the thesis contains creation of the SCADA application for the dispatching control.
|
|
|
IoT Traffic Generation and Detection of Security Incidents
Pristaš, Ján ; Ryšavý, Ondřej (referee) ; Matoušek, Petr (advisor)
The main purpose of my bachelor thesis is to design and create operation generating system of IoT networks, creating security incidents and their detection. First part describes basic principles of IoT networks, SCADA systems and communication protocols IEC 60870-5-104 and DLMS/COSEM. Subsequently there are described industrial tools emulating operation of SCADA systems using investigated protocols. The next section describes the security of these systems, along with the risks they face. Based on this information, a tool was designed and implemented to simulate various types of attacks on SCADA systems and track their reactions. The last part of the work is devoted to the possibilities of detecting di erent types of attacks and how to protect the networks from them.
|
|
| |
|
|
Emulation of Attacks on SCADA/ICS Communication
Grofčík, Peter ; Grégr, Matěj (referee) ; Matoušek, Petr (advisor)
The goal of this master's thesis is to emulate suitable network attacks on the control communication of ICS/SCADA systems with a subsequent design and implementation that can detect them. The first part of the work consists of categorization and acquaintance with individual types of attacks on industrial networks. Using classified datasets combined with a research of available datasets, in the next chapter I describe the selection of suitable attacks, which are at least indirectly related to control communication and are also feasible on virtual devices that are communicating using the IEC104 protocol, which I chose for my work. I then perform the selected attacks and record their progress in a set of PCAP files. Those files form the input for the next part that concerns anomaly detection using statistical methods.
|
|
|
Energy protocol recognition using artificial intelligence
Racka, Jan ; Holasová, Eva (referee) ; Bohačík, Antonín (advisor)
The master's thesis focuses on classification of secure network traffic of energy protocols using convolutional neural network. The theoretical part discusses the issues of neural networks and their use in network traffic classification. In addition, the energy protocols Modbus, IEC 104, TASE.2, DNP3, GOOSE, SMV, MMS, and the standard DLMS/COSEM are analyzed, including their security. In the subsequent practical part, a convolutional neural network is implemented to recognize the mentioned protocols in their secured versions. Unsecured traffic records from publicly available repositories and from traffic simulators of the mentioned protocols, and captured data in an energy polygon were used to train the neural network. TLS and GOOSE convertotrs were developed to obtain secured traffic, which ensured that the protocols using same security mechanisms were secured uniformly. The resulting secured traffic was preprocessed into a two-dimensional format and was presented as input to the neural network for learning. The input image was created from the application parts of packets of the energy protocol session and formatted to the 28 × 28 byte image. The resulting network accuracy on the test data was 95,75 %. Furthermore, the network was tested on real traffic in an energy polygon, where it correctly recognized several protocols. A classifier for the operational state of a station that communicates using IEC 104 secured with TLS was developed as part of a partial objective of the thesis. The task of the classifier was to recognize, using encrypted messages, the state of the tested station. The classifier consisted of a convolutional neural network, which were usinga two-dimensional image consisting of information from a sequence of five consecutive packets as input. The information consisted of the interarrival time between packets, the length of the TLS encrypted application data, and the encrypted application data up to size 64 B. To obtain enough data to train the convolutional network, a simulator of characteristic messages for each state was developed. The classifier showed an accuracy of 43,05 % on the test data after the learning phase. Next, the classifier underwent testing on the test stations, where it was able to distinguish normal state of the state from events, but could not distinguish certain events of similar nature from each other.
|
|
|
Cyber security tester of elements used in industrial networks and energy industry
Březina, Jiří ; Mlýnek, Petr (referee) ; Lieskovan, Tomáš (advisor)
The following is a detailed discussion of the communication protocols that work in these networks, from the older and more industrially based Modbus protocol, through the IEC 60870 protocol suite, to the most commonly used protocol today, DLMS/COSEM. The paper also summarizes the most common current attack patterns on DLMS/COSEM protocol vulnerabilities. The thesis aims to implement a tester that tests the security of smart grid elements mainly on the vulnerabilities described in the thesis. The tester primarily focuses on the vulnerabilities of overwhelm and replay attacks and evaluating the execution of these attacks in a laboratory environment.
|
|
|
Emulation of Attacks on SCADA/ICS Communication
Grofčík, Peter ; Grégr, Matěj (referee) ; Matoušek, Petr (advisor)
The goal of this master's thesis is to emulate suitable network attacks on the control communication of ICS/SCADA systems with a subsequent design and implementation that can detect them. The first part of the work consists of categorization and acquaintance with individual types of attacks on industrial networks. Using classified datasets combined with a research of available datasets, in the next chapter I describe the selection of suitable attacks, which are at least indirectly related to control communication and are also feasible on virtual devices that are communicating using the IEC104 protocol, which I chose for my work. I then perform the selected attacks and record their progress in a set of PCAP files. Those files form the input for the next part that concerns anomaly detection using statistical methods.
|
|
|
Dispatching control of a public transport substation
Madzia, Adam ; Arm, Jakub (referee) ; Bradáč, Zdeněk (advisor)
This thesis deals with the dispatching control of public transport substations. It contains a research about companies that are creating dispatching control of substations for public transport and a description of the technology they use. Following chapters contain the designed structure of the whole control system, a description of the individual components which were used in this thesis and the design of the structure of communication interfaces with the definition of individual communication protocols which were used. In the next section there is a simulation of public transport substation created on the PLC and a visualization for HMI panel which represents its local control system. In the following part, the design and implementation of the data storage system was created by using the Firebird database tool and Promotic SCADA software. The last chapter of the thesis contains creation of the SCADA application for the dispatching control.
|
|
|
IoT Traffic Generation and Detection of Security Incidents
Pristaš, Ján ; Ryšavý, Ondřej (referee) ; Matoušek, Petr (advisor)
The main purpose of my bachelor thesis is to design and create operation generating system of IoT networks, creating security incidents and their detection. First part describes basic principles of IoT networks, SCADA systems and communication protocols IEC 60870-5-104 and DLMS/COSEM. Subsequently there are described industrial tools emulating operation of SCADA systems using investigated protocols. The next section describes the security of these systems, along with the risks they face. Based on this information, a tool was designed and implemented to simulate various types of attacks on SCADA systems and track their reactions. The last part of the work is devoted to the possibilities of detecting di erent types of attacks and how to protect the networks from them.
|
|
| |
guest ::
