Reverse analysis of industrial control protocol based on static binary analysis

Wei Xiao; Liu Renhui; Xu Fengkai

doi:10.16157/j.issn.0258-7998.171175

Dianzi Jishu Yingyong (Mar 2018)

Reverse analysis of industrial control protocol based on static binary analysis

Wei Xiao,
Liu Renhui,
Xu Fengkai

Affiliations

Wei Xiao: National Computer System Engineering Research Institute of China，Beijing 100083，China
Liu Renhui: National Computer System Engineering Research Institute of China，Beijing 100083，China
Xu Fengkai: National Computer System Engineering Research Institute of China，Beijing 100083，China

DOI: https://doi.org/10.16157/j.issn.0258-7998.171175
Journal volume & issue: Vol. 44, no. 3
pp. 126 – 130

Abstract

Read online

In view of the limitation of traditional protocol analysis method in industrial control system, this paper proposes a new protocol reverse analysis method suitable for industrial control system communication protocol. The idea of this algorithm is derived from the dynamic taint algorithm, the algorithm is based on the static binary analysis platform IDA Pro and its software development interface. The algorithm includes preprocessing, cross reference analysis, protocol frame reconstruction and semantic extraction and so on. When the algorithm is applied to a configuration software, the correct analysis results can be obtained, and this proved the correctness and the effectiveness of the method.

Published in Dianzi Jishu Yingyong

ISSN: 0258-7998 (Print)
Publisher: National Computer System Engineering Research Institute of China
Country of publisher: China
LCC subjects: Technology: Electrical engineering. Electronics. Nuclear engineering: Electronics
Website: http://journal.chinaaet.com/en

About the journal

Abstract

Keywords