Hier finden Sie wissenschaftliche Publikationen aus den Fraunhofer-Instituten.

Securing BACnet's pitfalls

: Kaur, Jaspreet; Tonejc, Jernej; Wendzel, Steffen; Meier, Michael


Federrath, H. ; International Federation for Information Processing -IFIP-; International Federation for Information Processing -IFIP-, Technical Committee 11, Security and Protection in Information Processing Systems:
ICT Systems Security and Privacy Protection. 30th IFIP TC 11 International Conference, SEC 2015 : Hamburg, Germany, May 26-28, 2015, Proceedings
Cham: Springer International Publishing, 2015 (IFIP International Federation for Information Processing 455)
ISBN: 978-3-319-18466-1 (Print)
ISBN: 978-3-319-18467-8 (Online)
ISBN: 3-319-18466-0
International Conference on ICT Systems Security and Privacy Protection (SEC) <30, 2015, Hamburg>
Conference Paper
Fraunhofer FKIE ()

Building Automation Systems (BAS) are crucial for monitoring and controlling buildings, ranging from small homes to critical infrastructure, such as airports or military facilities. A major concern in this context is the security of BAS communication protocols and devices. The building automation and control networking protocol (BACnet) is integrated into products of more than 800 vendors worldwide. However, BACnet devices are vulnerable to attacks. We present a novel solution for the two most important BACnet layers, i.e. those independent of the data link layer technology, namely the network and the application layer. We provide the first implementation and evaluation of traffic normalization for BAS traffic. Our proof of concept code is based on the open source software Snort.