EconPapers    
Economics at your fingertips  

EconPapers Home
About EconPapers

Working Papers
Journal Articles
Books and Chapters
Software Components

Authors

JEL codes
New Economics Papers

Advanced Search


EconPapers FAQ
Archive maintainers FAQ
Cookies at EconPapers

Format for printing

The RePEc blog
The RePEc plagiarism page

 

Launch of denial of service attacks on the modbus/TCP protocol and development of its protection mechanisms

Ayesha Rahman, Ghulam Mustafa, Abdul Qayyum Khan, Muhammad Abid and Muhammad Hanif Durad

International Journal of Critical Infrastructure Protection, 2022, vol. 39, issue C

Abstract: Modbus is considered the defacto standard of industrial control systems as obvious from the fact that most vendors in the automation industry support Modbus protocol. Despite its wide popularity, Modbus is not secure because the time period in which it was introduced security was not considered to be a concern for closed isolated Industrial Control Systems (ICS) systems, therefore, in today’s era of internet, Modbus protocol cannot withstand malicious cyber attacks that the normal IT network is exposed to. Among the various attacks launched on ICS, the Denial of Service (DoS) attack is of prime importance as it has a fatal impact on the control systems’ stability and operation specially where hard real-time communication is essential. In this paper, we perform an extensive research on the documented and reported vulnerabilities in the Modbus protocol, and also review various efforts on how to exploit those vulnerabilities. After the thorough and exhaustive research, we have designed a virtual testbed that simulates the real world industrial control systems to conduct research on exploitation of the found vulnerabilities. The testbed is employed to successfully conduct two Denial of service attack scenarios on the software simulation of a programmable logic controller. The results of the launched attacks are evaluated in an attempt to perform attack-impact analysis and their findings are discussed in this paper. Lastly, a few prevention techniques are discussed that enlist how to avoid and protect systems against these attacks.

Keywords: Industrial control systems; Modbus vulnerabilities; Cyber attack; Denial-of-service; Human–machine interface (search for similar items in EconPapers)
Date: 2022
References: View references in EconPapers View complete reference list from CitEc
Citations: View citations in EconPapers (1)

Downloads: (external link)
http://www.sciencedirect.com/science/article/pii/S187454822200052X
Full text for ScienceDirect subscribers only

Related works:
This item may be available elsewhere in EconPapers: Search for items with the same title.

Export reference: BibTeX RIS (EndNote, ProCite, RefMan) HTML/Text

Persistent link: https://EconPapers.repec.org/RePEc:eee:ijocip:v:39:y:2022:i:c:s187454822200052x

DOI: 10.1016/j.ijcip.2022.100568

Access Statistics for this article

International Journal of Critical Infrastructure Protection is currently edited by Leon Strous

More articles in International Journal of Critical Infrastructure Protection from Elsevier
Bibliographic data for series maintained by Catherine Liu ().

 
Share

RePEc
This site is part of RePEc and all the data displayed here is part of the RePEc data set.

Is your work missing from RePEc? Here is how to contribute.

Questions or problems? Check the EconPapers FAQ or send mail to .

Örebro UniversityEconPapers is hosted by the School of Business at Örebro University.

Page updated 2025-03-19
Handle: RePEc:eee:ijocip:v:39:y:2022:i:c:s187454822200052x