Security of remote management of embedded systems running MikroTik RouterOS operating system using proprietary protocols

https://doi.org/10.3182/20120523-3-CZ-3015.00034Get rights and content

This paper deals with proprietary communication protocols that are implemented in the MikroTik RouterOS operating system. These communication protocols are specially designed for remote management of embedded systems that run with this operating system. These protocols are closed and thus they have not a publicly accessible documentation. In this paper the principles of their functions that are identified on the basis of realized communication analyses are described. Security risks that are associated with the use of these communication protocols are also analyzed in the paper. Attack that uses conceptual bug in the design one of these communication protocols is demonstrated on a real example. Full and unlimited access to embedded system that runs with this operating system can be obtained with this attack.

security analysis
communication protocols
communication networks
remote management
operating systems
embedded systems

Cited by (0)

View Abstract