Abstract
Building Management Systems (BMSs), which centralise the management of building services, are commonly accessed remotely for operational management and emergency purposes. The protocols used in BMSs were not originally designed with security as a requirement, thus the majority of systems operate with sub-standard or non-existent security implementations. Existing signature-based approaches to threat detection typically deal only with known threats or suffer from a high false positive rate (in the case of anomaly-based approaches). In this paper we present an overview of the problem space with respect to BMS, discuss a common protocol in detail (BACnet) and show how a threat that cannot be detected with conventional intrusion detection methods could be mitigated.
Original language | English |
---|---|
Title of host publication | Proceedings of 9th IEEE GCC conference |
Publication status | Published - 9 May 2017 |
Keywords
- BACnet
- HVAC