Honeynet Project Researchers Build Publicly Available ICS Honeynet

msm1267 writes "Conpot, short for Control Honeypot, is one of the first publicly available honeypots for industrial control systems (ICS) and SCADA gear. Built by two researchers from the Honeynet Project, the hope is that others will take what they started, deploy it on their own critical infrastructure networks and share the findings. 'The main goal is to make this kind of technology available for a general audience,' said Lukas Rist, one of the developers. 'Not just for security researchers, but also for people who are sysadmins setting up ICS systems who have no clue what could happen and want to see malware attacks against their systems and not put them in any danger.'" Unlike previous ICS Honeypots, this one simulates the control systems rather than requiring that you happen to own an actual industrial control system.

catch22

[Pedestrianwolf]

Seems like a bit of a catch 22... on one hand the people that own these systems need a reliable and safe way to understand and hopefully mitigate threats... on the other hand, it wasn't too long ago people were bemoaning flight simulators as "terrorism trainers".

Re:catch22

[TheCarp]

> on the other hand, it wasn't too long ago people were bemoaning flight simulators as "terrorism trainers".

Really? People were were they? Anyone doing that has less of a grip on reality than the people who think they are personally Napoleon. I don't see why their opinion needs much consideration. May as well just say "on the other hand, some people are crazy and stupid".

Re:catch22

[L4t3r4lu5]

I don't see why their opinion needs much consideration.

It's good for those who take our security seriously^W^W^W^Whave a vested financial interest to drum up some good ol' Fear, Uncertainty, and Doubt. Nothing fills the coffers like a scared populace.

Re:catch22

[Dishevel]

Your liberal roots are showing.
Politicians are for the most part "FOR" what will get them elected.
Being an idiot about wanting to restrict stuff is not a conservative only area of expertise.

Gun control ????

or ... Even better.

Anyone here remember Tipper Gore?
 

Re:catch22

[interval1066]

...conservatives anywhere say some really dumb shit sometimes.

Yeah really, they should take a queue from the golden wisdom that liberals say all the time.

ICS ? Ice Cream Sandwich ?

[lfourrier]

It's so old school.

Re:ICS ? Ice Cream Sandwich ?

[fufufang]

It's so old school.

I think Industrial Control System came before Ice Cream Sandwich...

Re:ICS ? Ice Cream Sandwich ?

[lfourrier]

agreed. Just a reaction to the title of the post, in those days of Google I/O

Re:ICS ? Ice Cream Sandwich ?

[rossdee]

You'd think a Honeypot would be for Honeycomb (which was the previous version.

Re:Only in AMERICA

[Dishevel]

To be fair.

As a sysadmin for a mid sized company looking to get a proprietary ICS from a major powerhouse ...
Are they going to give you access to the source? If not, How exactly are you supposed to know the weaknesses of the system without some real hardcore testing?
Read the literature and take their word for it?

Oh. You just want to be cool and say something anti American. Go on then.

Time to invest in virtualization players

[atom1c]

With a software-based ICS simulation, plus the software-based infrastructure within which such simulations must reside, this becomes a GREAT time to invest into virtualization players across the board: hardware, software, security, etc.

For infrastructure security, this is absolutely great news! The tallest barrier to entry for non-professional security researchers is access to both facilities and simulated energy consumption devices... I wonder if these guys will make this available as a VM appliance...