A Blind Spot in ICS Security: The Protocol Gateway [Part 3] What ICS Security Administrators can Do


A protocol gateway is a small network device, also called a “protocol converter” or “IoT gateway.” It is similar to an “interpreter” in the digital word, and acts as a communications intermediary between different protocols. As the integration of networks accelerates with IoT, protocol conversion grows increasingly important. However, the security of protocol gateways has not been fully verified so far.

Focusing on potential protocol gateway security risks, Trend Micro released a white paper summarizing these risks on August 6, 2020. In this blog series, based on the results of this research, we will analyze the impacts of the serious vulnerabilities detected in the protocol gateways essential when shifting to smart factories, and we will propose the security countermeasures that security administrators in those factories must take. In the final of this series, Part 3 describes a stealth attack method that abuses a vulnerability as well as inform you of a vital point of security measures required for the future ICS environment.

Read more…
Source: Trend Micro