This paper looks at the protocol gateway (also known as the protocol translator), a small, simple device that mainly translates various protocols and physical layers (i.e., Ethernet and serial lines). This translation allows different sensors, actuators, machinery, and computers that operate factories, dams, power plants, and water processing facilities to communicate with one another. We found various security issues and vulnerabilities in these devices, including:
- Authentication vulnerabilities that allow unauthorized access.
- Weak encryption implementations that allow decryption of configuration databases.
- Weak implementation of the confidentiality mechanisms that could expose sensitive information.
- Conditions for denial of service (DoS).
- And most importantly, specific scenarios wherein an attacker could exploit vulnerabilities in the translation function to issue stealth commands that can sabotage the operational process.
Please complete the form below to download…
