Practical Implementation of APTs on PTP Time Synchronisation Networks

Waleed Alghamdi; Michael Schukat

doi:10.1109/ISSC49989.2020.9180157

Practical Implementation of APTs on PTP Time Synchronisation Networks

Waleed Alghamdi, Michael Schukat

Computer Science

University of Galway

Research output: Chapter in Book or Conference Publication/Proceeding › Conference Publication › peer-review

6 Citations (Scopus)

Abstract

The Precision Time Protocol is essential for many time-sensitive and time-aware applications. However, it was never designed for security, and despite various approaches to harden this protocol against manipulation, it is still prone to cyber-attacks. Here Advanced Persistent Threats (APT) are of particular concern, as they may stealthily and over extended periods of time manipulate computer clocks that rely on the accurate functioning of this protocol. Simulating such attacks is difficult, as it requires firmware manipulation of network and PTP infrastructure components. Therefore, this paper proposes and demonstrates a programmable Man-in-the-Middle (pMitM) and a programmable injector (pInj) device that allow the implementation of a variety of attacks, enabling security researchers to quantify the impact of APTs on time synchronisation.

Original language	English
Title of host publication	2020 31st Irish Signals and Systems Conference, ISSC 2020
Publisher	Institute of Electrical and Electronics Engineers Inc.
ISBN (Electronic)	9781728194189
DOIs	https://doi.org/10.1109/ISSC49989.2020.9180157
Publication status	Published - Jun 2020
Event	31st Irish Signals and Systems Conference, ISSC 2020 - Letterkenny, Ireland Duration: 11 Jun 2020 → 12 Jun 2020

Publication series

Name	2020 31st Irish Signals and Systems Conference, ISSC 2020

Conference

Conference	31st Irish Signals and Systems Conference, ISSC 2020
Country/Territory	Ireland
City	Letterkenny
Period	11/06/20 → 12/06/20

Keywords

APT
IEEE 1588
PTP
cyber-security

Access to Document

10.1109/ISSC49989.2020.9180157

Cite this

@inproceedings{93db116563aa4fa9bbc87b95006dee40,

title = "Practical Implementation of APTs on PTP Time Synchronisation Networks",

abstract = "The Precision Time Protocol is essential for many time-sensitive and time-aware applications. However, it was never designed for security, and despite various approaches to harden this protocol against manipulation, it is still prone to cyber-attacks. Here Advanced Persistent Threats (APT) are of particular concern, as they may stealthily and over extended periods of time manipulate computer clocks that rely on the accurate functioning of this protocol. Simulating such attacks is difficult, as it requires firmware manipulation of network and PTP infrastructure components. Therefore, this paper proposes and demonstrates a programmable Man-in-the-Middle (pMitM) and a programmable injector (pInj) device that allow the implementation of a variety of attacks, enabling security researchers to quantify the impact of APTs on time synchronisation.",

keywords = "APT, IEEE 1588, PTP, cyber-security",

author = "Waleed Alghamdi and Michael Schukat",

note = "Publisher Copyright: {\textcopyright} 2020 IEEE.; 31st Irish Signals and Systems Conference, ISSC 2020 ; Conference date: 11-06-2020 Through 12-06-2020",

year = "2020",

month = jun,

doi = "10.1109/ISSC49989.2020.9180157",

language = "English",

series = "2020 31st Irish Signals and Systems Conference, ISSC 2020",

publisher = "Institute of Electrical and Electronics Engineers Inc.",

booktitle = "2020 31st Irish Signals and Systems Conference, ISSC 2020",

}

Alghamdi, W & Schukat, M 2020, Practical Implementation of APTs on PTP Time Synchronisation Networks. in 2020 31st Irish Signals and Systems Conference, ISSC 2020., 9180157, 2020 31st Irish Signals and Systems Conference, ISSC 2020, Institute of Electrical and Electronics Engineers Inc., 31st Irish Signals and Systems Conference, ISSC 2020, Letterkenny, Ireland, 11/06/20. https://doi.org/10.1109/ISSC49989.2020.9180157

Practical Implementation of APTs on PTP Time Synchronisation Networks. / Alghamdi, Waleed; Schukat, Michael.
2020 31st Irish Signals and Systems Conference, ISSC 2020. Institute of Electrical and Electronics Engineers Inc., 2020. 9180157 (2020 31st Irish Signals and Systems Conference, ISSC 2020).

Research output: Chapter in Book or Conference Publication/Proceeding › Conference Publication › peer-review

TY - GEN

T1 - Practical Implementation of APTs on PTP Time Synchronisation Networks

AU - Alghamdi, Waleed

AU - Schukat, Michael

PY - 2020/6

Y1 - 2020/6

N2 - The Precision Time Protocol is essential for many time-sensitive and time-aware applications. However, it was never designed for security, and despite various approaches to harden this protocol against manipulation, it is still prone to cyber-attacks. Here Advanced Persistent Threats (APT) are of particular concern, as they may stealthily and over extended periods of time manipulate computer clocks that rely on the accurate functioning of this protocol. Simulating such attacks is difficult, as it requires firmware manipulation of network and PTP infrastructure components. Therefore, this paper proposes and demonstrates a programmable Man-in-the-Middle (pMitM) and a programmable injector (pInj) device that allow the implementation of a variety of attacks, enabling security researchers to quantify the impact of APTs on time synchronisation.

AB - The Precision Time Protocol is essential for many time-sensitive and time-aware applications. However, it was never designed for security, and despite various approaches to harden this protocol against manipulation, it is still prone to cyber-attacks. Here Advanced Persistent Threats (APT) are of particular concern, as they may stealthily and over extended periods of time manipulate computer clocks that rely on the accurate functioning of this protocol. Simulating such attacks is difficult, as it requires firmware manipulation of network and PTP infrastructure components. Therefore, this paper proposes and demonstrates a programmable Man-in-the-Middle (pMitM) and a programmable injector (pInj) device that allow the implementation of a variety of attacks, enabling security researchers to quantify the impact of APTs on time synchronisation.

KW - APT

KW - IEEE 1588

KW - PTP

KW - cyber-security

UR - http://www.scopus.com/inward/record.url?scp=85092713535&partnerID=8YFLogxK

U2 - 10.1109/ISSC49989.2020.9180157

DO - 10.1109/ISSC49989.2020.9180157

M3 - Conference Publication

T3 - 2020 31st Irish Signals and Systems Conference, ISSC 2020

BT - 2020 31st Irish Signals and Systems Conference, ISSC 2020

PB - Institute of Electrical and Electronics Engineers Inc.

T2 - 31st Irish Signals and Systems Conference, ISSC 2020

Y2 - 11 June 2020 through 12 June 2020

ER -

Practical Implementation of APTs on PTP Time Synchronisation Networks

Abstract

Publication series

Conference

Keywords

Access to Document

Other files and links

Fingerprint

Cite this