TY - GEN
T1 - Security Implications of a Satellite Communication Device on Wireless Networks Using Pentesting
AU - Gurren, Jordan
AU - Harish, Avanthika Vineetha
AU - Tam, Kimberly
AU - Jones, Kevin
N1 - Publisher Copyright:
© 2023 IEEE.
PY - 2023
Y1 - 2023
N2 - The notion that ships, marine vessels and off-shore structures are digitally isolated is quickly disappearing. Affordable and accessible wireless communication technologies (e.g., short-range radio, long-range satellite) are quickly removing any air-gaps these entities have. Commercial, defence, and personal ships have a wide range of communication systems to choose from, yet some can weaken the overall ship security. One of the most significant information technologies (IT) being used today is satellite-based communications. While the backbone of this technology is often secure, third-party devices may introduce vulnerabilities. Within maritime industries, the market for satellite communication devices has also grown significantly, with a wide range of products available. With these devices and services, marine cyber-physical systems are now more interconnected than ever. However, some of these off-the-shelf products can be more insecure than others and, as shown here, can decrease the security of the overall maritime network and other connected devices. This paper examines the vulnerability of an existing, off-the-shelf product, how a novel attack-chain can compromise the device, how that introduces vulnerabilities to the wider network, and then proposes solutions to the found vulnerabilities.
AB - The notion that ships, marine vessels and off-shore structures are digitally isolated is quickly disappearing. Affordable and accessible wireless communication technologies (e.g., short-range radio, long-range satellite) are quickly removing any air-gaps these entities have. Commercial, defence, and personal ships have a wide range of communication systems to choose from, yet some can weaken the overall ship security. One of the most significant information technologies (IT) being used today is satellite-based communications. While the backbone of this technology is often secure, third-party devices may introduce vulnerabilities. Within maritime industries, the market for satellite communication devices has also grown significantly, with a wide range of products available. With these devices and services, marine cyber-physical systems are now more interconnected than ever. However, some of these off-the-shelf products can be more insecure than others and, as shown here, can decrease the security of the overall maritime network and other connected devices. This paper examines the vulnerability of an existing, off-the-shelf product, how a novel attack-chain can compromise the device, how that introduces vulnerabilities to the wider network, and then proposes solutions to the found vulnerabilities.
KW - cyber-security
KW - maritime
KW - pentest
KW - satellite
UR - http://www.scopus.com/inward/record.url?scp=85167619581&partnerID=8YFLogxK
U2 - 10.1109/WiMob58348.2023.10187791
DO - 10.1109/WiMob58348.2023.10187791
M3 - Conference proceedings published in a book
AN - SCOPUS:85167619581
T3 - International Conference on Wireless and Mobile Computing, Networking and Communications
SP - 292
EP - 298
BT - 2023 19th International Conference on Wireless and Mobile Computing, Networking and Communications, WiMob 2023
PB - IEEE Computer Society
T2 - 19th IEEE International Conference on Wireless and Mobile Computing, Networking and Communications, WiMob 2023
Y2 - 21 June 2023 through 23 June 2023
ER -