Automatic Configuration of Programmable Logic Controller Emulators

Author

Phillip C. Warner

Date of Award

3-26-2015

Document Type

Thesis

Degree Name

Master of Science in Computer Engineering

Department

Department of Electrical and Computer Engineering

First Advisor

Barry E. Mullins, PhD.

Abstract

Programmable logic controllers (PLCs), which are used to control much of the world's critical infrastructures, are highly vulnerable and exposed to the Internet. Many efforts have been undertaken to develop decoys, or honeypots, of these devices in order to characterize, attribute, or prevent attacks against Industrial Control Systems (ICS) networks. Unfortunately, since ICS devices typically are proprietary and unique, one emulation solution for a particular vendor's model will not likely work on other devices. Many previous efforts have manually developed ICS honeypots, but it is a very time intensive process. Thus, a scalable solution is needed in order to automatically configure PLC emulators. The ScriptGenE Framework presented in this thesis leverages several techniques used in reverse engineering protocols in order to automatically configure PLC emulators using network traces. The accuracy, flexibility, and efficiency of the ScriptGenE Framework is tested in three fully automated experiments.

AFIT Designator

AFIT-ENG-MS-15-M-024

DTIC Accession Number

ADA620212

Recommended Citation

Warner, Phillip C., "Automatic Configuration of Programmable Logic Controller Emulators" (2015). Theses and Dissertations. 67.
https://scholar.afit.edu/etd/67