beautypg.com

1 vulnerabilities – Campbell Scientific CR1000 Measurement and Control System User Manual

Page 71

background image

Section 5. System Overview

71

 

supplied void of active security measures. By default, RS-232, Telnet, FTP and
HTTP services, all of which give high level access to CR1000 data and programs,
are enabled without password protection.

Campbell Scientific encourages CR1000 users who are concerned about security,
especially those with exposure to IP threats, to send the latest operating system to
the CR1000 (available at www.campbellsci.com) and to disable un-used services
and secure those that are used. Actions to take may include the following:

• Set passcode lockouts
• Set PakBus/TCP password
• Set FTP username and password
• Set AES-128 PakBus encryption key
• Set .csipasswd file for securing HTTP and Web API
• Track signatures
• Encrypt program files if they contain sensitive information
• Hide program files for extra protection
• Secure the CR1000 datalogger and power supply under lock and key.

Note All security features can be subverted through physical access to the
CR1000. If absolute security is a requirement, the CR1000 datalogger must be
kept in a secure location.

5.1.10.1 Vulnerabilities

While "security through obscurity" may have provided sufficient protection in the
past, Campbell Scientific dataloggers increasingly are deployed in sensitive
applications. Devising measures to counter malicious attacks, or innocent
tinkering, requires an understanding of where systems can be compromised and
how to counter the potential threat.

Note Older CR1000 operating systems are more vulnerable to attack than recent
updates. Updates can be obtained free of charge at www.campbellsci.com.

The following bullet points outline vulnerabilities:

CR1000KD Keyboard Display

• Pressing and holding the "Del" key while powering up a CR1000 will cause it

to abort loading a program and provide a 120 second window to begin
changing or disabling security codes in the settings editor (not Status table)
with the keyboard display.

• Keyboard display security bypass does not allow telecommunications access

without first correcting the security code.

Note These features are not operable in CR1000KDs with serial numbers

less than 1263. Contact Campbell Scientific for information on upgrading the
CR1000KD operating system.

See also other documents in the category Campbell Scientific Measuring instruments: