Scribd Logo
Upload

Welcome to Scribd!

  • DEFCON 24 Demay Auditing 6LoWPAN Networks Using Standard Penetration Testing Tools

    Uploaded by

    Leandro Verea
    20 views11 pages
    This document summarizes a presentation on auditing 6LoWPAN networks using standard penetration testing tools. It describes the 6LoWPAN protocol for IPv6 over low-power wireless networks, including header compression. It then introduces the ARSEN project which uses the Scapy tool to detect different IEEE 802.15.4 network configurations in order to route between 6LoWPAN and Ethernet networks. The presentation demonstrates this network auditing platform.

    Original Description:

    Copyright

    © © All Rights Reserved

    Available Formats

    PDF, TXT or read online from Scribd

    Did you find this document useful?

    Is this content inappropriate?

    Report this Document
    This document summarizes a presentation on auditing 6LoWPAN networks using standard penetration testing tools. It describes the 6LoWPAN protocol for IPv6 over low-power wireless networks, including header compression. It then introduces the ARSEN project which uses the Scapy tool to detect different IEEE 802.15.4 network configurations in order to route between 6LoWPAN and Ethernet networks. The presentation demonstrates this network auditing platform.

    Copyright:

    © All Rights Reserved
    Download as PDF, TXT or read online from Scribd
    Flag for inappropriate content
    Download as pdf or txt
    20 views11 pages

    DEFCON 24 Demay Auditing 6LoWPAN Networks Using Standard Penetration Testing Tools

    Uploaded by

    Leandro Verea
    This document summarizes a presentation on auditing 6LoWPAN networks using standard penetration testing tools. It describes the 6LoWPAN protocol for IPv6 over low-power wireless networks, including header compression. It then introduces the ARSEN project which uses the Scapy tool to detect different IEEE 802.15.4 network configurations in order to route between 6LoWPAN and Ethernet networks. The presentation demonstrates this network auditing platform.

    Copyright:

    © All Rights Reserved
    Download as PDF, TXT or read online from Scribd
    Flag for inappropriate content
    Download as pdf or txt
    of 11

    This document and its content is the property of Airbus Defence and Space.

    It shall not be communicated to any third party without the owner’s written consent | [Airbus Defence and Space Company name]. All rights reserved.

    Adam Reziouk
    Arnaud Lebrun
    Jonathan-Christofer Demay
    Auditing 6LoWPAN networks
    Using Standard Penetration Testing Tools
    The 6LoWPAN protocol

    • IPv6 over Low power Wireless Personal Area Networks


    • Header compression flags
    • Addresses factoring (IID or predefined)
    • Predefined values (e.g., TTL)
    • Fields omission (when unused)
    • Use of contexts (index-based)
    • UDP header compression (ports and checksum)

    • Packet fragmentation
    • MTU 127 bytes Vs 1500 bytes
    • 80 bytes of effective payload

    Arnaud Lebrun 2
    CANSPY
    Jonathan-Christofer Demay A Platform for Auditing CAN Devices
    What’s the big deal ?

    Arnaud Lebrun 3
    CANSPY
    Jonathan-Christofer Demay A Platform for Auditing CAN Devices
    The IEEE 802.15.4 standard
    • PHY layer and MAC sublayer
    • Multiple possible configurations
    • Network topology
    • Data transfer model

    • Multiple security suites


    • Integrity, Confidentiality or both
    • Encryption key size (32, 64 or 128)

    • Multiple standard revision


    • 2003
    • 2006 and 2011

    Arnaud Lebrun 4
    CANSPY
    Jonathan-Christofer Demay A Platform for Auditing CAN Devices
    Deviations for the standard

    Arnaud Lebrun 5
    CANSPY
    Jonathan-Christofer Demay A Platform for Auditing CAN Devices
    The ARSEN project
    • Advanced Routing between 6LoWPAN and Ethernet Networks
    • Detect the configuration of existing 802.15.4 infrastructure
    • Network topology
    • Data transfer model
    • Security suite
    • Standard revision
    • Standard deviations

    • Handle packet translation


    • Compression/decompression
    • Fragmentation/defragmentation
    • Support all possible IEEE 802.15.4 configurations

    Arnaud Lebrun 6
    CANSPY
    Jonathan-Christofer Demay A Platform for Auditing CAN Devices
    Based on Scapy-radio

    Arnaud Lebrun 7
    CANSPY
    Jonathan-Christofer Demay A Platform for Auditing CAN Devices
    Two main components

    • The IEEE 802.15.4 scanner


    • Build a database of devices and captured frames
    • The devices that are running on a given channel
    • The devices that are communicating with each other
    • The types of frames that are exchanged between devices
    • The parameters that are used to transmit these frames

    • The 6LoWPAN border router


    • TUN interface
    • Ethernet omitted
    • Scapy automaton

    Arnaud Lebrun 8
    CANSPY
    Jonathan-Christofer Demay A Platform for Auditing CAN Devices
    New Scapy layers

    • Dot15d4.py
    • Several bug fixes
    • Complete 2003 and 2006 support

    • Sixlowpan.py
    • Uncompressed IPv6 support
    • Complete IP header compression support
    • UDP header compression support
    • Fragmentation and defragmentation support

    Arnaud Lebrun 9
    CANSPY
    Jonathan-Christofer Demay A Platform for Auditing CAN Devices
    Demonstration

    Arnaud Lebrun 10
    CANSPY
    Jonathan-Christofer Demay A Platform for Auditing CAN Devices
    Thank you for
    your attention

    Arnaud Lebrun 11
    CANSPY
    Jonathan-Christofer Demay A Platform for Auditing CAN Devices

    You might also like