Dianzi Jishu Yingyong (Mar 2018)

Reverse analysis of industrial control protocol based on static binary analysis

  • Wei Xiao,
  • Liu Renhui,
  • Xu Fengkai

DOI
https://doi.org/10.16157/j.issn.0258-7998.171175
Journal volume & issue
Vol. 44, no. 3
pp. 126 – 130

Abstract

Read online

In view of the limitation of traditional protocol analysis method in industrial control system, this paper proposes a new protocol reverse analysis method suitable for industrial control system communication protocol. The idea of this algorithm is derived from the dynamic taint algorithm, the algorithm is based on the static binary analysis platform IDA Pro and its software development interface. The algorithm includes preprocessing, cross reference analysis, protocol frame reconstruction and semantic extraction and so on. When the algorithm is applied to a configuration software, the correct analysis results can be obtained, and this proved the correctness and the effectiveness of the method.

Keywords