Sneak into buildings with KNXnet/IP
Résumé
Building Management Systems (BMS) centralize and automate essential assets in a building. They are often linked to the LAN and sometimes reachable on the Internet, exposing building automation devices and network protocols that are usually not designed to handle cybersecurity issues. The paper focuses on the BMS protocol KNX, which has been left aside by the cybersecurity community so far. We discuss its technical details and the cybersecurity concerns raised by implementations. We provide a Python library to perform basic KNX discovery, communication operations and to write advanced testing scripts. We explain how to use it through fuzzing script examples. We hope that this library will be used to find and fix vulnerabilities in building management systems and as a handy tool for other research material on BMS protocols.
Domaines
Cryptographie et sécurité [cs.CR]
Fichier principal
Sneak_into_buildings_with_KNXnetIP_Vacherot_2020.pdf (447.52 Ko)
Télécharger le fichier
Origine : Fichiers produits par l'(les) auteur(s)