Home // SECURWARE 2016, The Tenth International Conference on Emerging Security Information, Systems and Technologies // View article

The Possibilities of the Search Engine Shodan in Relation to SCADA

Authors:
Jan Vávra
Martin Hromada

Keywords: Cyber Security; Industrial Control System; Vulnerability; Supervisory Control and Data Acquisition

Abstract:
Recently isolated Industrial Control System (ICS) became accessible and interconnected with Information and Communication Technology (ICT). Nowadays, the ICS is considered as the target of a considerable number of cyber-attacks. Moreover, the contemporary development of the ICS indicates its growing availability over the Internet. There are a few methodologies how to find Internet-connected devices. However, there is one well-known search engine for Internet-connected devices. The Shodan is a widely used tool that provides an enormous capability for targeting Internet-connected devices. In this article, we examine the current state of the ICS availability via the Internet. Therefore, we evaluate the possibility of exposing the vulnerable ICS systems in order to specify their relations to SCADA cyber security. Finally, we identify 974 vulnerable SCADA devices via the Shodan.

Pages: 130 to 135

Copyright: Copyright (c) IARIA, 2016

Publication date: July 24, 2016

Published in: conference

ISSN: 2162-2116

ISBN: 978-1-61208-493-0

Location: Nice, France

Dates: from July 24, 2016 to July 28, 2016