Firmware security analysis of an Industrial Control System

Abstract: Internet of Things (IoT) devices are becoming more and more popular. However, because the focus during this rise has not been on security they have become a huge attack surface. The purpose of IoT is that devices are interconnected and communicate with each other over the internet. This is especially problematic if these devices control important aspects of our lives such as: air conditioning, heating, water and other machinery. This report is meant to investigate one of these systems, called OPTOEMU-SNR-DR2 (abbreviated as Opto22 in this report), and document potential security flaws. We have analyzed the system from multiple perspectives regarding firmware: hardware (PCB, electronics), software (programs running on the device), and supporting software that is used with the Opto22. Our investigation resulted in multiple security flaws being found, in the context of an attacker having access to the network the device is located on.