Time sensitive networking security: issues of precision time protocol and its implementation
Tóm tắt
Time Sensitive Networking (TSN) will be an integral component of industrial networking. Time synchronization in TSN is provided by the IEEE-1588, Precision Time Protocol (PTP) protocol. The standard, dating back to 2008, marginally addresses security aspects, notably not encompassing the frames designed for management purposes (Type Length Values or TLVs). In this work we show that the TLVs can be abused by an attacker to reconfigure, manipulate, or shut down time synchronization. The effects of such an attack can be serious, ranging from interruption of operations to actual unintended behavior of industrial devices, possibly resulting in physical damages or even harm to operators. The paper analyzes the root causes of this vulnerability, and provides concrete examples of attacks leveraging it to de-synchronize the clocks, showing that they can succeed with limited resources, realistically available to a malicious actor.
Tài liệu tham khảo
Annessi R, Fabini J, Iglesias F, Zseby T (2018) “Encryption is futile: Delay attacks on high-precision clock synchronization,” arXiv preprint arXiv:1811.08569,
Arnold D (2019) TLVs in PTP Messages. Accessed 22 June 2022 [Online]. Available: https://blog.meinbergglobal.com/2019/12/06/tlvs-in-ptp-messages/
Callegati F, Campi A, Contoli C, Di Santi S, Ghiselli N, Giannelli C, Pernafini A, Zamagna R (2021) Sdn-based differentiated traffic flow management for industrial internet of things environments in. IEEE Symposium on Computers and Communications (ISCC) 2021:1–6
Cochran R et al (2015) The linux ptp project. Accessed 7 July 2022 [Online]. Available https://sourceforge.net/projects/linuxptp/
Electrics S (2017) What is TSN? The backbone of future industrial ethernet networks. Accessed 13 July 2022 [Online]. Available https://blog.se.com/energy-management-energy-efficiency/2017/06/02/tsn-backbone-future-industrial-ethernet-networks/
Fedullo T, Morato A, Tramarin F, Rovati L, Vitturi S (2022) A comprehensive review on time sensitive networks with a special focus on its applicability to industrial smart and distributed measurement systems. Sensors 22(4):1638
Han M, Crossley P (2019) Vulnerability of ieee 1588 under time synchronization attacks. In: 2019 IEEE Power & Energy Society General Meeting (PESGM).IEEE, pp 1–5
Hemsley KE, Fisher E, et al (2018) History of industrial control system cyber incidents
Ieee standard for a precision clock synchronization protocol for networked measurement and control systems - redline. IEEE Std 1588-2008 (2008) (Revision of IEEE Std 1588-2002) - Redline, pp 1–300
“Ieee standard for a precision clock synchronization protocol for networked measurement and control systems,” IEEE Std 1588-2019 (2020) (Revision of IEEE Std 1588-2008), pp. 1–499
Ieee 1588 precise time protocol: The new standard in time synchronization (2017). Accessed: 7 July 2022 [Online]. Available: https://www.microsemi.com/document-portal/doc_download/133186-ieee-1588-precise-time-protocol-the-new-standard-in-time-synchronization
Lo Bello L, Steiner W (2019) A perspective on ieee time-sensitive networking for industrial communication and automation systems. Proc IEEE 107(6):1094–1120
Miller T, Staves A, Maesschalck S, Sturdee M, Green B (2021) Looking back to look forward: Lessons learnt from cyber-attacks on industrial control systems. Int J Crit Infrastruct Prot 35:100464
Mizrahi T (2011) Time synchronization security using ipsec and macsec. In: 2011 IEEE international symposium on precision clock synchronization for measurement, control and communication. IEEE, pp 38–43
Moussa B, Debbabi M, Assi C (2016) A detection and mitigation model for ptp delay attack in an iec 61850 substation. IEEE Trans Smart Grid 9(5):3954–3965
Moussa B, Kassouf M, Hadjidj R, Debbabi M, Assi C (2019) An extension to the precision time protocol (ptp) to enable the detection of cyber attacks. IEEE Trans Ind Inform
Nasrallah A, Thyagaturu AS, Alharbi Z, Wang C, Shao X, Reisslein M, ElBakoury H (2018) Ultra-low latency (ull) networks: The ieee tsn and ietf detnet standards and related 5g ull research. IEEE Commun Surv Tutor 21(1):88–145
Neyer J, Gassner L, Marinescu C (2019) Redundant schemes or how to counter the delay attack on time synchronization protocols. In: 2019 IEEE international symposium on precision clock synchronization for measurement, control, and communication (ISPCS). IEEE, pp 1–6
Owczarek W et al (2015) The ptpd project. Accessed 7 July 2022 [Online]. Available https://github.com/ptpd/ptpd
Prandini M, Ramilli M, Cerroni W, Callegati F (2010) Splitting the https stream to attack secure web connections. IEEE Secur Privacy 8(6):80–84
Raveling A (2022) Time Sensitive Networking for industrial applications. Accessed 13 July 2022 [Online]. Available: https://www.controleng.com/articles/time-sensitive-networking-for-industrial-applications/
Shereen E, Bitard F, Dán G, Sel T, Fries S (2019) Next steps in security for time synchronization: Experiences from implementing ieee 1588 v2. 1. In: 2019 IEEE international symposium on precision clock synchronization for measurement, control, and communication (ISPCS). IEEE, pp 1–6
Siemens (2022) TSN—Time Sensitive Networking. Accessed 13 July 2022 [Online]. Available https://new.siemens.com/global/en/products/automation/industrial-communication/industrial-ethernet/tsn.html
Ullmann M, Vögeler M (2009) Delay attacks-implication on ntp and ptp time synchronization. In: International symposium on precision clock synchronization for measurement, control and communication. IEEE 2009, pp 1–6