@article{ART002998450},
author={Minsu Park and Seokhyun Ahn and Seyeon Park and SEONG JE CHO and Hong Kun Kim},
title={A Study of Passive Scanning-based Device Identification in Operational Technology Environments},
journal={Journal of Software Assessment and Valuation},
issn={2092-8114},
year={2023},
volume={19},
number={3},
pages={105-118},
doi={10.29056/jsav.2023.09.12}
TY - JOUR
AU - Minsu Park
AU - Seokhyun Ahn
AU - Seyeon Park
AU - SEONG JE CHO
AU - Hong Kun Kim
TI - A Study of Passive Scanning-based Device Identification in Operational Technology Environments
JO - Journal of Software Assessment and Valuation
PY - 2023
VL - 19
IS - 3
PB - Korea Software Assessment and Valuation Society
SP - 105
EP - 118
SN - 2092-8114
AB - To mitigate security risks, organizational assets must be identified and security vulnerabilities eliminated. active scanning and passive scanning techniques have been applied in existing IT environments to identify assets.. In this paper, we first examine the problems of applying the existing network scanning methods to OT systems. Then, to select network traffic features required when identifying OT devices by applying a passive scanning, we analyze network traffic features (TTL, TCP Window Size, IAT, etc.) used in prior studies on identifying IoT devices which have similar properties to OT devices. In addition, we recognize the types of network traffic features, and present research issues to be addressed for effective identification of OT devices.
KW - Operational Technology;Internet of Things;Device Identification;Network Scanning;Network Traffic Features
DO - 10.29056/jsav.2023.09.12
ER -
Minsu Park, Seokhyun Ahn, Seyeon Park, SEONG JE CHO and Hong Kun Kim. (2023). A Study of Passive Scanning-based Device Identification in Operational Technology Environments. Journal of Software Assessment and Valuation, 19(3), 105-118.
Minsu Park, Seokhyun Ahn, Seyeon Park, SEONG JE CHO and Hong Kun Kim. 2023, "A Study of Passive Scanning-based Device Identification in Operational Technology Environments", Journal of Software Assessment and Valuation, vol.19, no.3 pp.105-118. Available from: doi:10.29056/jsav.2023.09.12
Minsu Park, Seokhyun Ahn, Seyeon Park, SEONG JE CHO, Hong Kun Kim "A Study of Passive Scanning-based Device Identification in Operational Technology Environments" Journal of Software Assessment and Valuation 19.3 pp.105-118 (2023) : 105.
Minsu Park, Seokhyun Ahn, Seyeon Park, SEONG JE CHO, Hong Kun Kim. A Study of Passive Scanning-based Device Identification in Operational Technology Environments. 2023; 19(3), 105-118. Available from: doi:10.29056/jsav.2023.09.12
Minsu Park, Seokhyun Ahn, Seyeon Park, SEONG JE CHO and Hong Kun Kim. "A Study of Passive Scanning-based Device Identification in Operational Technology Environments" Journal of Software Assessment and Valuation 19, no.3 (2023) : 105-118.doi: 10.29056/jsav.2023.09.12
Minsu Park; Seokhyun Ahn; Seyeon Park; SEONG JE CHO; Hong Kun Kim. A Study of Passive Scanning-based Device Identification in Operational Technology Environments. Journal of Software Assessment and Valuation, 19(3), 105-118. doi: 10.29056/jsav.2023.09.12
Minsu Park; Seokhyun Ahn; Seyeon Park; SEONG JE CHO; Hong Kun Kim. A Study of Passive Scanning-based Device Identification in Operational Technology Environments. Journal of Software Assessment and Valuation. 2023; 19(3) 105-118. doi: 10.29056/jsav.2023.09.12
Minsu Park, Seokhyun Ahn, Seyeon Park, SEONG JE CHO, Hong Kun Kim. A Study of Passive Scanning-based Device Identification in Operational Technology Environments. 2023; 19(3), 105-118. Available from: doi:10.29056/jsav.2023.09.12
Minsu Park, Seokhyun Ahn, Seyeon Park, SEONG JE CHO and Hong Kun Kim. "A Study of Passive Scanning-based Device Identification in Operational Technology Environments" Journal of Software Assessment and Valuation 19, no.3 (2023) : 105-118.doi: 10.29056/jsav.2023.09.12