Security test of 101 protocol of FTU
The IEC60870-5-101 protocol is mainly used for transmitting messages between the primary station and the substation of the power SCADA data monitoring and acquisition system.Since the message mainly adopts “frame check and sum” to ensure communication security,there is a common security risk among t...
Saved in:
| Main Authors: | , , , , |
|---|---|
| Format: | Article |
| Language: | English |
| Published: |
POSTS&TELECOM PRESS Co., LTD
2018-10-01
|
| Series: | 网络与信息安全学报 |
| Subjects: | |
| Online Access: | http://www.cjnis.com.cn/thesisDetails#10.11959/j.issn.2096-109x.2018080 |
| Tags: |
Add Tag
No Tags, Be the first to tag this record!
|
| _version_ | 1841530163587710976 |
|---|---|
| author | Yong WANG Xiang WANG Wenting HE Yuhao ZHOU Yufan CAI |
| author_facet | Yong WANG Xiang WANG Wenting HE Yuhao ZHOU Yufan CAI |
| author_sort | Yong WANG |
| collection | DOAJ |
| description | The IEC60870-5-101 protocol is mainly used for transmitting messages between the primary station and the substation of the power SCADA data monitoring and acquisition system.Since the message mainly adopts “frame check and sum” to ensure communication security,there is a common security risk among the intermediate personnel.In order to verify the communication problems of the 101 protocol,the communication system between the FTU and the main station of the feeder terminal was constructed,which collected the telemetry signal of the FTU mobile IoT card on the cloud server,and used the man-in-the-middle attack mode to use the ARP to intercept the communication data packet.To analyze the telemetry information in the data packet,try data tampering and successfully make the monitoring data not updated in time.Finally,an enhancement mechanism against external attacks was proposed. |
| format | Article |
| id | doaj-art-b84791dea1734b54839f64a3eb2ac25b |
| institution | Kabale University |
| issn | 2096-109X |
| language | English |
| publishDate | 2018-10-01 |
| publisher | POSTS&TELECOM PRESS Co., LTD |
| record_format | Article |
| series | 网络与信息安全学报 |
| spelling | doaj-art-b84791dea1734b54839f64a3eb2ac25b2025-01-15T03:13:05ZengPOSTS&TELECOM PRESS Co., LTD网络与信息安全学报2096-109X2018-10-014223059554396Security test of 101 protocol of FTUYong WANGXiang WANGWenting HEYuhao ZHOUYufan CAIThe IEC60870-5-101 protocol is mainly used for transmitting messages between the primary station and the substation of the power SCADA data monitoring and acquisition system.Since the message mainly adopts “frame check and sum” to ensure communication security,there is a common security risk among the intermediate personnel.In order to verify the communication problems of the 101 protocol,the communication system between the FTU and the main station of the feeder terminal was constructed,which collected the telemetry signal of the FTU mobile IoT card on the cloud server,and used the man-in-the-middle attack mode to use the ARP to intercept the communication data packet.To analyze the telemetry information in the data packet,try data tampering and successfully make the monitoring data not updated in time.Finally,an enhancement mechanism against external attacks was proposed.http://www.cjnis.com.cn/thesisDetails#10.11959/j.issn.2096-109x.2018080FTU101 protocolman-in-the-middle attackARP spoofing |
| spellingShingle | Yong WANG Xiang WANG Wenting HE Yuhao ZHOU Yufan CAI Security test of 101 protocol of FTU 网络与信息安全学报 FTU 101 protocol man-in-the-middle attack ARP spoofing |
| title | Security test of 101 protocol of FTU |
| title_full | Security test of 101 protocol of FTU |
| title_fullStr | Security test of 101 protocol of FTU |
| title_full_unstemmed | Security test of 101 protocol of FTU |
| title_short | Security test of 101 protocol of FTU |
| title_sort | security test of 101 protocol of ftu |
| topic | FTU 101 protocol man-in-the-middle attack ARP spoofing |
| url | http://www.cjnis.com.cn/thesisDetails#10.11959/j.issn.2096-109x.2018080 |
| work_keys_str_mv | AT yongwang securitytestof101protocolofftu AT xiangwang securitytestof101protocolofftu AT wentinghe securitytestof101protocolofftu AT yuhaozhou securitytestof101protocolofftu AT yufancai securitytestof101protocolofftu |