Hacking PLCs and Causing Havoc on Critical Infrastructures - TIB AV-Portal

Hacking PLCs and Causing Havoc on Critical Infrastructures

00:00

123

Formal Metadata

Title

Hacking PLCs and Causing Havoc on Critical Infrastructures

Title of Series

Number of Parts

322

Author

License

CC Attribution 3.0 Unported:
You are free to use, adapt and copy, distribute and transmit the work or content in adapted or unchanged form for any legal purpose as long as the work is attributed to the author in the manner specified by the author or licensor.

Identifiers

10.5446/39750 (DOI)

Publisher

Release Date

Language

Content Metadata

Subject Area

Computer Science

Genre

Conference/Talk

Abstract

Programmable Logic Controllers (PLCs) are devices used on a variety of industrial plants, from small factories to critical infrastructures like nuclear power plants, dams and wastewater systems. Although PLCs were made robust to sustain tough environments, little care was taken to raise defenses against potential cyber threats. As a consequence, threats started pouring in and causing havoc. During this presentation I will talk about the architecture of a PLC and how it can be p0wned. There will be some live demonstration attacks against 3 different brands of PLCs (if the demo demons allow it, if not I will just show a video). Additionally, I will demonstrate two vulnerabilities I recently discovered, affecting the Rockwell MicroLogix 1400 series and the Schneider Modicon M221 controllers.

Speech

Text

Image

00:00

CausalityComputer fontDigital signalComputer programLogarithmControl flowVideo gameInformationLogicFunction (mathematics)Computer programmingComputerVector spaceBefehlsprozessorBitPhysical systemProjective planeReal numberComputer fontWater vaporProcess (computing)Information securityoutputOpen setModule (mathematics)Student's t-testFlash memoryMultiplication signCybersexRight angleDemo (music)Game controllerExpected valueUniverse (mathematics)DemonDisk read-and-write head

04:17

LogicComputer programGame controllerVideo gamePhysicalismDifferent (Kate Ryan album)Physical systemInsertion lossComputer animation

04:51

Line (geometry)Electric currentSource codeGame controllerText editorGraphical user interfaceRun time (program lifecycle phase)Component-based software engineeringFormal languageWaveFreewarePacket Loss ConcealmentComputing platformCodeComputer programmingVirtual machineQuicksortText editorInternetworkingConnectivity (graph theory)Graphical user interfaceExistenceOpen setCommunications protocolInstallation artSource codeWorkstation <Musikinstrument>Internet forumRun time (program lifecycle phase)Patch (Unix)Computing platformTouchscreenMultiplication signStandard deviationSoftwareComputerWindowPhysical systemPiProjective planeGraphics tabletRight angleComputer animation

08:13

Text editorSimulationGraph (mathematics)Communications protocolPacket Loss ConcealmentElectric currentSide channel attackFormal languageProgramming languageText editorWater vaporTouchscreenStandard deviationRight angleGame controllerBitCommunications protocolSoftwareINTEGRALFehlererkennungSerial portField (computer science)HookingMessage passingBus (computing)AuthenticationFigurate numberMechanism designComputer animation

09:48

Communications protocolSoftwareCodeFunctional (mathematics)Serial portCommunications protocolDifferent (Kate Ryan album)Standard deviationCodecRight angleComputer animation

10:44

Function (mathematics)CodeFrame problemCodeMathematicsSoftwareINTEGRALFehlererkennungFormal verificationFunctional (mathematics)AreaError messageFrame problemMessage passingSemiconductor memoryData transmissionAddress spaceRight angle

11:42

Function (mathematics)Codierung <Programmierung>Digital signalFrame problemCodeSemiconductor memoryFunctional (mathematics)AuthenticationFunction (mathematics)outputRight angleSoftwareArithmetic meanDatabase transactionRandom number generationQuery languageDependent and independent variablesSerial portField (computer science)Communications protocolFrame problemTrailDifferent (Kate Ryan album)LengthSubsetMessage passingComputer animation

13:43

Content (media)InjektivitätQuicksortSpherical capFrame problemDifferent (Kate Ryan album)Sinc functionMessage passingDemo (music)Denial-of-service attackTelecommunicationCausalityEncryptionComputer animation

14:36

InjektivitätDemo (music)CausalityMultiplication signProjective planeTable (information)Open setSource codeComputing platformSeries (mathematics)Goodness of fitComputer animation

15:50

Asynchronous Transfer ModeWater vaporControl flowElectric currentMenu (computing)Wechselseitige InformationTouchscreenDiagramLogicComputer architectureBinary codePhysical systemVirtual machineLogic programmingConfiguration spaceWater vaporCASE <Informatik>Asynchronous Transfer ModeElement (mathematics)Sinc functionCodecIdentity managementControl flowOpen setProgram flowchartComputer animation

17:10

Menu (computing)Water vaporControl flowControl flowAsynchronous Transfer ModeDegree (graph theory)Process (computing)CodecXMLComputer animation

17:42

Menu (computing)Water vaporControl flowProcess (computing)Frame problemSoftwareVirtual machineComputer animation

18:16

Continuum hypothesisFrequencyInjektivitätOperator (mathematics)Parameter (computer programming)Asynchronous Transfer ModeOpen setMessage passing2 (number)Game controllerDefault (computer science)SoftwareRadical (chemistry)NumberRight angleComputer animation

19:23

Menu (computing)Asynchronous Transfer ModeWater vaporControl flowOperator (mathematics)Asynchronous Transfer ModeFrame problemSemiconductor memoryAreaRight angleComputer animation

20:19

Water vaporControl flowInclusion mapMenu (computing)Asynchronous Transfer ModeCase moddingWater vaporBoom (sailing)NumberAsynchronous Transfer ModeCommunications protocolDifferent (Kate Ryan album)Multiplication signRight angleComputer animation

21:03

Menu (computing)Control flowWater vaporAsynchronous Transfer ModeAsynchronous Transfer ModeMusical ensembleComputer animation

21:34

InjektivitätDemo (music)Series (mathematics)Inclusion mapLogicReal-time operating systemInjektivitätMereologyProcess (computing)Hand fanVulnerability (computing)Right angleComputer animationUML

22:57

Execution unitPointer (computer programming)Address spaceLengthAlgorithmLogicSemiconductor memoryPhysical systemExecution unitMemory managementDatabase transactionAreaField (computer science)Communications protocolLengthBuffer overflowMessage passingRight angleDiagram

24:05

Demo (music)Menu (computing)Convex hullWater vaporControl flowCase moddingRight angleAsynchronous Transfer ModeType theoryComputer animation

24:37

Menu (computing)Water vaporControl flowAsynchronous Transfer ModeCase moddingCone penetration testLogicType theoryPower (physics)Parameter (computer programming)Asynchronous Transfer ModePoint (geometry)IP addressCartesian coordinate systemBootingExploit (computer security)Default (computer science)KreisprozessPresentation of a groupRight angleComputer animation

26:33

Demo (music)Inclusion mapSeries (mathematics)SoftwareExpert systemQuicksortFactory (trading post)Field (computer science)Information securityCommunications protocolFirewall (computing)Patch (Unix)Vulnerability (computing)Maxima and minimaFirmwareComputer animationUML

28:19

Communications protocol1 (number)Codierung <Programmierung>Convex hullRight angleOperating systemMedical imagingCodeInformationTelecommunicationCodeSemiconductor memoryLevel (video gaming)Total S.A.BitFunctional (mathematics)MereologyProjective planeCore dumpDatabase transactionSystem callFamilyNormal (geometry)Field (computer science)Open setCommunications protocolReverse engineeringFrame problemDecimalBlock (periodic table)Multiplication signMessage passing1 (number)Bookmark (World Wide Web)Constraint (mathematics)Asynchronous Transfer ModeMusical ensembleLatent heatFerry CorstenBlogComputer animation

32:01

Insertion lossCodeData managementSoftwareTelecommunicationFunction (mathematics)Software testingFunctional (mathematics)NumberComputer virusIP addressCommunications protocolReverse engineeringFrame problemWorkstation <Musikinstrument>Message passing1 (number)CASE <Informatik>Right angle

34:38

Water vaporControl flowDegree (graph theory)Virtual machineAsynchronous Transfer ModeCommunications protocolMessage passingGame controller2 (number)Computer animation

35:40

Type theoryCartesian coordinate systemPasswordSoftware testing1 (number)Computer animation

36:20

CodeInformationType theorySoftware testingFunctional (mathematics)Projective planeEmailProcess (computing)PasswordMessage passingRight angle1 (number)Source code

37:21

Boom (sailing)Computer programmingType theoryInheritance (object-oriented programming)PasswordDifferent (Kate Ryan album)Game controllerSoftwareComputer animation

37:54

Coma BerenicesCodeFunction (mathematics)Codierung <Programmierung>Maxima and minimaComputer programmingPhysical systemWater vaporBitProjective planeDependent and independent variablesInformation securitySet (mathematics)EncryptionComputer filePasswordVulnerability (computing)Communications protocolRight angle1 (number)XMLProgram flowchartSource codeComputer animation

39:21

Water vaporControl flowMaxima and minimaRun time (program lifecycle phase)BlogIRIS-TComputer programComputer hardwareExecution unitSimulationCodeComputer hardwareComputer programmingUser interfaceInterface (computing)Run time (program lifecycle phase)Type theoryHypothesisRevision controlInformation securityOpen setComputer animationSource codeXML

40:04

Physical lawUMLComputer animation

Transcript: English(auto-generated)