@inproceedings{KueppersSchubaNeugebaueretal.2023,
  author    = {K{\"u}ppers, Malte and Schuba, Marko and Neugebauer, Georg and H{\"o}ner, Tim and Hack, Sacha},
  title     = {Security analysis of the KNX smart building protocol},
  series = {ARES '23: Proceedings of the 18th International Conference on Availability, Reliability and Security},
  booktitle = {ARES '23: Proceedings of the 18th International Conference on Availability, Reliability and Security},
  publisher = {ACM},
  doi       = {10.1145/3600160.3605167},
  pages     = {1 -- 7},
  year      = {2023},
  abstract  = {KNX is a protocol for smart building automation, e.g., for automated heating, air conditioning, or lighting. This paper analyses and evaluates state-of-the-art KNX devices from manufacturers Merten, Gira and Siemens with respect to security. On the one hand, it is investigated if publicly known vulnerabilities like insecure storage of passwords in software, unencrypted communication, or denialof-service attacks, can be reproduced in new devices. On the other hand, the security is analyzed in general, leading to the discovery of a previously unknown and high risk vulnerability related to so-called BCU (authentication) keys.},
  language  = {en}
}