{"status":"ok","message-type":"work","message-version":"1.0.0","message":{"indexed":{"date-parts":[[2025,9,28]],"date-time":"2025-09-28T15:08:54Z","timestamp":1759072134537,"version":"3.37.3"},"reference-count":24,"publisher":"Springer Science and Business Media LLC","issue":"4","license":[{"start":{"date-parts":[[2018,2,24]],"date-time":"2018-02-24T00:00:00Z","timestamp":1519430400000},"content-version":"tdm","delay-in-days":0,"URL":"http:\/\/www.springer.com\/tdm"}],"content-domain":{"domain":["link.springer.com"],"crossmark-restriction":false},"short-container-title":["J Comput Virol Hack Tech"],"published-print":{"date-parts":[[2018,11]]},"DOI":"10.1007\/s11416-018-0315-0","type":"journal-article","created":{"date-parts":[[2018,2,24]],"date-time":"2018-02-24T02:58:07Z","timestamp":1519441087000},"page":"253-268","update-policy":"https:\/\/doi.org\/10.1007\/springer_crossmark_policy","source":"Crossref","is-referenced-by-count":8,"title":["Detecting and preventing replay attacks in industrial automation networks operated with profinet IO"],"prefix":"10.1007","volume":"14","author":[{"ORCID":"https:\/\/orcid.org\/0000-0001-7768-7259","authenticated-orcid":false,"given":"Steffen","family":"Pfrang","sequence":"first","affiliation":[],"role":[{"role":"author","vocabulary":"crossref"}]},{"ORCID":"https:\/\/orcid.org\/0000-0003-0660-8087","authenticated-orcid":false,"given":"David","family":"Meier","sequence":"additional","affiliation":[],"role":[{"role":"author","vocabulary":"crossref"}]}],"member":"297","published-online":{"date-parts":[[2018,2,24]]},"reference":[{"key":"315_CR1","doi-asserted-by":"crossref","unstructured":"\u00c5kerberg, J., Bj\u00f6rkman, M.: Exploring network security in profisafe. In: International Conference on Computer Safety, Reliability, and Security, pp. 67\u201380. Springer (2009)","DOI":"10.1007\/978-3-642-04468-7_7"},{"key":"315_CR2","doi-asserted-by":"publisher","unstructured":"\u00c5kerberg, J., Bj\u00f6rkman, M.: Exploring security in profinet io. In: Proceedings of the 2009 33rd Annual IEEE International Computer Software and Applications Conference, COMPSAC \u201909, vol. 01, pp. 406\u2013412. IEEE Computer Society, Washington, DC (2009). https:\/\/doi.org\/10.1109\/COMPSAC.2009.61","DOI":"10.1109\/COMPSAC.2009.61"},{"key":"315_CR3","doi-asserted-by":"crossref","unstructured":"\u00c5kerberg, J., Bj\u00f6rkman, M.: Introducing security modules in profinet io. In: 2009 IEEE Conference on Emerging Technologies & Factory Automation, pp. 1\u20138. IEEE (2009)","DOI":"10.1109\/ETFA.2009.5347205"},{"key":"315_CR4","doi-asserted-by":"publisher","unstructured":"Bass, T., Robichaux, R.: Defense-in-depth revisited: qualitative risk analysis methodology for complex network-centric operations. In: 2001 MILCOM Proceedings Communications for Network-Centric Operations: Creating the Information Force (Cat. No. 01CH37277), vol.\u00a01, pp. 64\u201370 (2001). https:\/\/doi.org\/10.1109\/MILCOM.2001.985765","DOI":"10.1109\/MILCOM.2001.985765"},{"key":"315_CR5","doi-asserted-by":"publisher","unstructured":"Baud, M., Felser, M.: Profinet io-device emulator based on the man-in-the-middle attack. In: 2006 IEEE Conference on Emerging Technologies and Factory Automation, pp. 437\u2013440 (2006). https:\/\/doi.org\/10.1109\/ETFA.2006.355228","DOI":"10.1109\/ETFA.2006.355228"},{"key":"315_CR6","unstructured":"Biondi, P.: Scapy documentation. http:\/\/www.secdev.org\/projects\/scapy\/doc\/ (2010). Accessed 08 Dec 2016"},{"key":"315_CR7","unstructured":"BSI: Opc ua security analysis (2016)"},{"key":"315_CR8","doi-asserted-by":"publisher","unstructured":"Claise, B.: Specification of the IP flow information export (IPFIX) protocol for the exchange of IP traffic flow information. RFC 5101 (2015). https:\/\/doi.org\/10.17487\/rfc5101 . https:\/\/rfc-editor.org\/rfc\/rfc5101.txt","DOI":"10.17487\/rfc5101"},{"issue":"4","key":"315_CR9","doi-asserted-by":"publisher","first-page":"369","DOI":"10.1016\/j.csi.2005.03.008","volume":"28","author":"P Ferrari","year":"2006","unstructured":"Ferrari, P., Flammini, A., Vitturi, S.: Performance analysis of profinet networks. Comput. Stand. Interfaces 28(4), 369\u2013385 (2006)","journal-title":"Comput. Stand. Interfaces"},{"key":"315_CR10","unstructured":"Fullmer, M., Romig, S.: The osu flowtools package and cisco netflow logs. In: Proceedings of the 2000 USENIX LISA Conference (2000)"},{"key":"315_CR11","unstructured":"Haag, P.: Watch your flows with nfsen and nfdump. In: 50th RIPE Meeting (2005)"},{"key":"315_CR12","unstructured":"HMS Industrial Networks: Feldbusse heute. http:\/\/www.feldbusse.de\/trends\/status-feldbusse.shtml (2016). Accessed 08 Dec 2016"},{"key":"315_CR13","unstructured":"HMS Industrial Networks: Variantenvielfalt bei Kommunikationssystemen. http:\/\/www.feldbusse.de\/Trends\/trends.shtml (2016). Accessed 08 Dec 2016"},{"key":"315_CR14","unstructured":"IEC: 61158-6-10 Industrial Communication Networks\u2014Fieldbus Specifications\u2014Part 6\u201310: Application Layer Protocol Specification\u2014Type 10 Elements. Standard, International Electrotechnical Commission, Geneva (2007)"},{"key":"315_CR15","unstructured":"IEC: 62443-1-1 Industrial Communication Networks\u2014Network and System Security\u2014Part 1\u20131: Terminology, Concepts and Models. International Electrotechnical Commission (IEC), Geneva (2009)"},{"key":"315_CR16","doi-asserted-by":"crossref","unstructured":"McHugh, J.: Sets, bags, and rock and roll. In: European Symposium on Research in Computer Security, pp. 407\u2013422. Springer (2004)","DOI":"10.1007\/978-3-540-30108-0_25"},{"issue":"5","key":"315_CR17","doi-asserted-by":"publisher","first-page":"1039","DOI":"10.1109\/JPROC.2015.2512235","volume":"104","author":"S McLaughlin","year":"2016","unstructured":"McLaughlin, S., Konstantinou, C., Wang, X., Davi, L., Sadeghi, A.R., Maniatakos, M., Karri, R.: The cybersecurity landscape in industrial control systems. Proc. IEEE 104(5), 1039\u20131057 (2016)","journal-title":"Proc. IEEE"},{"key":"315_CR18","doi-asserted-by":"crossref","unstructured":"Mo, Y., Sinopoli, B.: Secure control against replay attacks. In: 47th Annual Allerton Conference on Communication, Control, and Computing, 2009. Allerton 2009, pp. 911\u2013918. IEEE (2009)","DOI":"10.1109\/ALLERTON.2009.5394956"},{"key":"315_CR19","doi-asserted-by":"publisher","first-page":"160","DOI":"10.1007\/978-3-642-39235-1_10","volume-title":"Detection of Intrusions and Malware, and Vulnerability Assessment","author":"Andreas Paul","year":"2013","unstructured":"Paul, A., Schuster, F., Knig, H.: Towards the protection of industrial control systems: conclusions of a vulnerability analysis of profinet IO. In: Proceedings of the 10th International Conference on Detection of Intrusions and Malware, and Vulnerability Assessment, DIMVA\u201913, pp. 160\u2013176. Springer, Berlin (2013). https:\/\/doi.org\/10.1007\/978-3-642-39235-1_10"},{"key":"315_CR20","doi-asserted-by":"crossref","unstructured":"Pfrang, S., Kippe, J., Meier, D., Haas, C.: Design and architecture of an industrial IT security lab. In: Testbeds and Research Infrastructures for the Development of Networks and Communities, pp. 114\u2013123. Springer (2016)","DOI":"10.1007\/978-3-319-49580-4_11"},{"key":"315_CR21","doi-asserted-by":"publisher","unstructured":"Pfrang, S., Meier, D.: On the detection of replay attacks in industrial automation networks operated with profinet IO. In: Proceedings of the 3rd International Conference on Information Systems Security and Privacy, pp. 683\u2013693 (2017). https:\/\/doi.org\/10.5220\/0006288106830693","DOI":"10.5220\/0006288106830693"},{"key":"315_CR22","doi-asserted-by":"crossref","unstructured":"Pfrang, S., Meier, D., Kautz, V.: Towards a modular security testing framework for industrial automation and control systems: Isutest. In: Proceedings of the 22nd IEEE International Conference on Emerging Technologies and Factory Automation, ETFA 2017 (2017)","DOI":"10.1109\/ETFA.2017.8247727"},{"key":"315_CR23","volume-title":"Industrial Communication with PROFINET","author":"M Popp","year":"2014","unstructured":"Popp, M.: Industrial Communication with PROFINET. PROFIBUS Nutzerorganisation e.V., Karlsruhe (2014)"},{"key":"315_CR24","unstructured":"Roesch, M., et al.: Snort: lightweight intrusion detection for networks. In: LISA, vol. 99, pp. 229\u2013238 (1999)"}],"container-title":["Journal of Computer Virology and Hacking Techniques"],"original-title":[],"language":"en","link":[{"URL":"http:\/\/link.springer.com\/article\/10.1007\/s11416-018-0315-0\/fulltext.html","content-type":"text\/html","content-version":"vor","intended-application":"text-mining"},{"URL":"http:\/\/link.springer.com\/content\/pdf\/10.1007\/s11416-018-0315-0.pdf","content-type":"application\/pdf","content-version":"vor","intended-application":"text-mining"},{"URL":"http:\/\/link.springer.com\/content\/pdf\/10.1007\/s11416-018-0315-0.pdf","content-type":"application\/pdf","content-version":"vor","intended-application":"similarity-checking"}],"deposited":{"date-parts":[[2019,10,11]],"date-time":"2019-10-11T15:58:35Z","timestamp":1570809515000},"score":1,"resource":{"primary":{"URL":"http:\/\/link.springer.com\/10.1007\/s11416-018-0315-0"}},"subtitle":[],"short-title":[],"issued":{"date-parts":[[2018,2,24]]},"references-count":24,"journal-issue":{"issue":"4","published-print":{"date-parts":[[2018,11]]}},"alternative-id":["315"],"URL":"https:\/\/doi.org\/10.1007\/s11416-018-0315-0","relation":{},"ISSN":["2263-8733"],"issn-type":[{"type":"electronic","value":"2263-8733"}],"subject":[],"published":{"date-parts":[[2018,2,24]]},"assertion":[{"value":"14 July 2017","order":1,"name":"received","label":"Received","group":{"name":"ArticleHistory","label":"Article History"}},{"value":"24 January 2018","order":2,"name":"accepted","label":"Accepted","group":{"name":"ArticleHistory","label":"Article History"}},{"value":"24 February 2018","order":3,"name":"first_online","label":"First Online","group":{"name":"ArticleHistory","label":"Article History"}}]}}