TY  - CHAP
A1  - Küppers, Malte
A1  - Schuba, Marko
A1  - Neugebauer, Georg
A1  - Höner, Tim
A1  - Hack, Sacha
T1  - Security analysis of the KNX smart building protocol
T2  - ARES '23: Proceedings of the 18th International Conference on Availability, Reliability and Security
N2  - KNX is a protocol for smart building automation, e.g., for automated heating, air conditioning, or lighting. This paper analyses and evaluates state-of-the-art KNX devices from manufacturers Merten, Gira and Siemens with respect to security. On the one hand, it is investigated if publicly known vulnerabilities like insecure storage of passwords in software, unencrypted communication, or denialof-service attacks, can be reproduced in new devices. On the other hand, the security is analyzed in general, leading to the discovery of a previously unknown and high risk vulnerability related to so-called BCU (authentication) keys.
Y1  - 2023
U6  - http://dx.doi.org/10.1145/3600160.3605167
N1  - Article No.: 87

ARES 2023, August 29–September 01, 2023, Benevento, Italy
SP  - 1
EP  - 7
PB  - ACM
ER  -