127649 20241125101143.0 doi 10.1016/j.cose.2023.103373 sideral 134739 ART-2023-134739 eng Rodríguez, Ricardo J. Universidad de Zaragoza (orcid)0000-0001-7982-0359 MOSTO: A toolkit to facilitate security auditing of ICS devices using Modbus/TCP 2023 Access copy available to the general public Unrestricted The integration of the Internet into industrial plants has connected Industrial Control Systems (ICS) worldwide, resulting in an increase in the number of attack surfaces and the exposure of software and devices not originally intended for networking. In addition, the heterogeneity and technical obsolescence of ICS architectures, legacy hardware, and outdated software pose significant challenges. Since these systems control essential infrastructure such as power grids, water treatment plants, and transportation networks, security is of the utmost importance. Unfortunately, current methods for evaluating the security of ICS are often ad-hoc and difficult to formalize into a systematic evaluation methodology with predictable results. In this paper, we propose a practical method supported by a concrete toolkit for performing penetration testing in an industrial setting. The primary focus is on the Modbus/TCP protocol as the field control protocol. Our approach relies on a toolkit, named MOSTO, which is licensed under GNU GPL and enables auditors to assess the security of existing industrial control settings without interfering with ICS workflows. Furthermore, we present a model-driven framework that combines formal methods, testing techniques, and simulation to (formally) test security properties in ICS networks. info:eu-repo/grantAgreement/ES/DGA/T21-23R info:eu-repo/grantAgreement/EUR/MICINN/TED2021-131115A-I00 info:eu-repo/semantics/openAccess by-nc-nd http://creativecommons.org/licenses/by-nc-nd/3.0/es/ 4.8 2023 COMPUTER SCIENCE, INFORMATION SYSTEMS 46 / 250 = 0.184 2023 Q1 T1 1.566 2023 Law 2023 Q1 Computer Science (miscellaneous) 2023 Q1 12.4 2023 info:eu-repo/semantics/article info:eu-repo/semantics/publishedVersion Marrone, Stefano Marcos, Ibai Porzio, Giuseppe 5007 570 Universidad de Zaragoza Dpto. Informát.Ingenie.Sistms. Área Lenguajes y Sistemas Inf. 132 (2023), 103373 [12 pp.] Comput. secur. COMPUTERS & SECURITY 0167-4048 3548094 http://zaguan.unizar.es/record/127649/files/texto_completo.pdf Versión publicada 2655081 http://zaguan.unizar.es/record/127649/files/texto_completo.jpg?subformat=icon icon Versión publicada oai:zaguan.unizar.es:127649 articulos driver 2024-11-22-12:03:17 ARTICLE