Abstract
This paper proposes a framework for a flow-based network traffic monitoring of building automation and control networks. Current approaches to monitor special environment networks are limited to checking accessibility and a state of monitored devices. On the other hand, current generation of flow-based network monitoring tools focuses only on the IP traffic. These tools do not allow to observe special protocols used, for example, in an intelligent building network. We present a novel approach based on processing of flow information from such special environment. To demonstrate capabilities of such approach and to provide characteristics of a large building automation network, we present measurement results from Masaryk University Campus.
Chapter PDF
Similar content being viewed by others
References
Security Predictions 2012&2013 – The Emerging Security Threat, http://www.sans.edu/research/security-laboratory/article/security-predict2011
Cisco IOS NetFlow, http://www.cisco.com/go/netflow
Claise, B.: Specification of the IP Flow Information Export (IPFIX) Protocol for the Exchange of IP Traffic Flow Information. RFC 5101 (Proposed Standard), IETF (2008), http://tools.ietf.org/html/rfc5101
American Society of Heating, Refrigerating and Air-Conditioning Engineers: Standard 135-2010 – BACnet A Data Communication Protocol for Building Automation and Control Networks. ASHRAE (2010)
BACnet Website – ASHRAE SSPC 135, http://www.bacnet.org
The new Masaryk University Campus, http://www.muni.cz/kampus?lang=en
Nagios – The Industry Standard In IT Infrastructure Monitoring, http://www.nagios.org/
Barbosa, R.R.R., Sadre, R., Pras, A.: Difficulties in Modeling SCADA Traffic: A Comparative Analysis. In: Taft, N., Ricciato, F. (eds.) PAM 2012. LNCS, vol. 7192, pp. 126–135. Springer, Heidelberg (2012)
Novak, T., Treytl, A., Palensky, P.: Common approach to functional safety and system security in building automation and control systems. In: IEEE Conference on Emerging Technologies and Factory Automation, pp. 1141–1148 (2007)
Granzer, W., Kastner, W., Neugschwandtner, G., Praus, F.: Security in networked building automation systems. In: IEEE International Workshop on Factory Communication Systems, pp. 283–292 (2006)
Perrig, A., Szewczyk, R., Tygar, J.D., Wen, V., Culler, D.E.: SPINS: security protocols for sensor networks. Wireless Networks, 189–199 (2001)
Honeywell selects Tofino Modbus Read-only Firewall to Secure Critical Safety Systems, http://www.tofinosecurity.com/article/honeywell-selects-tofino%E2%84%A2-modbus-read-only-firewall-secure-critical-safety-systems
INVEA FlowMon Exporter – Community Program, http://www.invea-tech.com
BACnet Monitoring Plugins, http://dior.ics.muni.cz/~celeda/bacnet/
How many Packets per Second per port are needed to achieve Wire-Speed?, http://kb.juniper.net/InfoCenter/index?page=content&id=KB14737
BACnet over IP, http://www.bacnet.org/Tutorial/BACnetIP/default.html
IP Flow Information Export (IPFIX) Entities, http://www.iana.org/assignments/ipfix/ipfix.xml
Author information
Authors and Affiliations
Editor information
Editors and Affiliations
Rights and permissions
Copyright information
© 2012 IFIP International Federation for Information Processing
About this paper
Cite this paper
Krejčí, R., Čeleda, P., Dobrovolný, J. (2012). Traffic Measurement and Analysis of Building Automation and Control Networks. In: Sadre, R., Novotný, J., Čeleda, P., Waldburger, M., Stiller, B. (eds) Dependable Networks and Services. AIMS 2012. Lecture Notes in Computer Science, vol 7279. Springer, Berlin, Heidelberg. https://doi.org/10.1007/978-3-642-30633-4_9
Download citation
DOI: https://doi.org/10.1007/978-3-642-30633-4_9
Publisher Name: Springer, Berlin, Heidelberg
Print ISBN: 978-3-642-30632-7
Online ISBN: 978-3-642-30633-4
eBook Packages: Computer ScienceComputer Science (R0)