BACnet

BACnet(Building Automation and Control networks)通信协议的发展源起于1987年6年在田纳西州纳什维尔举行的美国冷冻空调协会标准委员会(Standard Project Committee)。委员会中大家同意将通信协议的设计分区为各个不同的主题,利用工作小组的方式进行,各工作小组专注在特定的领域,并提供信息给标准委员会,一开始分为三个工作小组,分别是数据型态及属性(Data Type and Attribute)、原始数据格式(Primitive Data Format)及应用服务(Application Services)等三个。历经约9年研拟与3次的公开意见讨论程序完成订稿。

BACnet在1995年时成为美国国家标准协会及美国冷冻空调协会的建筑自动化控制网络的数据传输协议(ASHRAE/ANSI SSPC 135)标准,在2003年时成为ISO标准 ISO 16484-5。BACnet兼容性测试的方式在2003年成为BSR/ASHRAE 标准Standard 135.1。目前BACnet协议是由ASHRAE的标准委员会(SSPC)135维护。

在BACnet通信协议问世后,美国Alerton公司就在1996年推出了一系列支持BACnet的HVAC产品,从小型的变风量控制器到操作员的工作站。后来也有许多厂商开发支持BACnet的产品。到2010年1月为止,已有超过480家公司申请了支持BACnet需要的设备商识别码(Vender ID)。

协议介绍

BACnet通信协议中定义了几种不同的数据链结层/物理层,包括:
ARCNET(ARCNET)
以太网
BACnet/IP
RS-232上的点对点通信(Point-to-point_(telecommunications))
RS-485上的主站-从站/令牌传递(Master-Slave/Token-Passing,简称MS/TP)通信
LonTalk(LonTalk)
BACnet通信协议中定义了许多服务(service),可供各设备之间的通信,服务可以分为五类:有关设备对象管理的服务包括Who-Is、I-Am、Who-Has及I-Have等服务,有关对象访问的服务包括读取属性、写入属性等服务,有关报警与事件的服务包括确认报警、属性改变(change of state)报告等,此外也有有关文件读写及虚拟终端的服务。
BACnet通信协议也定义了许多种类的对象。金每个对象中都有许多属性,可以通过服务来访问对象中的属性。BACnet通信中的设备就是由许多对象组成,其中包括一个设备对象,是每个设备都必需的,其中记录设备相关的数据,其他对象包括模拟输入、模拟输出、模拟值、数字输入、数字输出及数字值等有关数据的对象。
为了提供不同厂商BACnet设备之间的互操作性,BACnet协议也定义了BACnet互操作基本块(BACnet Interoperability Building Block,简称BIBB),BACnet互操作基本块是由一个或多个服务所组成,说明在特定需求下,服务器(server)端及客户(client)端需要支持的服务及程序。BACnet互操作基本块可分为以下的五种:
1、数据分享
2、警告及事件管理
3、调度
4、趋势
5、设备及网络管理
每个BACnet设备都会有一份名为“协议实现一致性声明”(Protocol Implementation Conformance Statement,PICS)的文件,其中需说明设备所支持的BACnet互操作基本块、对象种类及定义、使用文字集及通信时需要的数据。

Leave a Reply

Your email address will not be published. Required fields are marked *

This site uses Akismet to reduce spam. Learn how your comment data is processed.

最新工业控制系统漏洞

ICS-CERT Advisory Feed
Omron CX-Supervisor

This advisory includes mitigations for improper restriction of operations within the bounds of a memory buffer, out-of-bounds read, use-after-free, an. . . read more Wed, 17 Oct 2018 08:55:45 EDT

LCDS – Leão Consultoria e Desenvolvimento de Sistemas Ltda ME LAquis SCADA

This advisory includes mitigations for untrusted pointer dereference, out-of-bounds read, integer overflow to buffer overflow, path traversal, out-of-. . . read more Tue, 16 Oct 2018 14:44:39 EDT

NUUO NVRmini2 and NVRsolo

This advisory includes mitigations for stack-based buffer overflow and leftover debug code vulnerabilities in NUUO's NVRmini2 and NVRsolo network. . . read more Thu, 11 Oct 2018 10:10:11 EDT

NUUO CMS

This advisory includes mitigations for use of insufficiently random values, use of obsolete function, incorrect permission assignment for critical res. . . read more Thu, 11 Oct 2018 10:05:11 EDT

Delta Industrial Automation TPEditor

This advisory includes mitigations for out-of-bounds write and stack-based buffer overflow vulnerabilities in the Delta Industrial Automation TPEditor. . . read more Thu, 11 Oct 2018 10:00:20 EDT

GE iFix

This advisory includes mitigations for an unsafe ActiveX control marked safe for scripting vulnerability in a Gigasoft component affecting GE’s iFix. . . read more Tue, 09 Oct 2018 10:30:34 EDT

Siemens SCALANCE W1750D

This advisory includes mitigations for a cryptographic issues vulnerability in Siemens' SCALANCE W1750D direct access point hardware.. . . read more Tue, 09 Oct 2018 10:25:37 EDT

Siemens ROX II

This advisory includes mitigations for improper privilege management vulnerabilities in the Siemens ROX II products.. . . read more Tue, 09 Oct 2018 10:20:19 EDT

Siemens SIMATIC S7-1200 CPU Family Version 4

This advisory includes mitigations for a cross-site request forgery vulnerability in the Siemens SIMATIC S7-1200 CPU products.. . . read more Tue, 09 Oct 2018 10:15:18 EDT

Siemens SIMATIC S7-1500, SIMATIC S7-1500 Software Controller and SIMATIC ET 200SP Open Controller

This advisory includes mitigations for a denial of service from improper input validation vulnerability in the Siemens SIMATIC S7-1500, SIMATIC S7-150. . . read more Tue, 09 Oct 2018 10:10:22 EDT

Hangzhou Xiongmai Technology Co., Ltd XMeye P2P Cloud Server

This advisory includes information on the predictable from observable state, hidden functionality, and missing encryption of sensitive data vulnerabil. . . read more Tue, 09 Oct 2018 10:05:48 EDT

Fuji Electric Energy Savings Estimator

This advisory includes mitigations for an uncontrolled search path element (DLL Hijacking) vulnerability in the Fuji Electric Energy Savings Estimator. . . read more Tue, 09 Oct 2018 10:00:12 EDT

Carestream Vue RIS

This advisory includes mitigations for an information exposure through an error message vulnerability in the Carestream Vue RIS, a web-based radiology. . . read more Thu, 04 Oct 2018 10:10:11 EDT

Change Healthcare PeerVue Web Server

This advisory includes mitigations for an information exposure through an error message vulnerability in the Change Healthcare PeerVue Web Server.. . . read more Thu, 04 Oct 2018 10:05:49 EDT

WECON PI Studio

This advisory includes information on stack-based buffer overflow, out-of-bounds write, and out-of-bounds read vulnerabilities in WECON’s PI Studio. . . read more Thu, 04 Oct 2018 10:00:35 EDT

Delta Electronics ISPSoft

This advisory includes mitigations for a stack-based buffer overflow vulnerability in the Delta Electronics ISPSoft software.. . . read more Tue, 02 Oct 2018 10:10:16 EDT

GE Communicator

This advisory includes mitigations for a heap-based buffer overflow vulnerability in GE's Communicator, an application for programming and monito. . . read more Tue, 02 Oct 2018 10:05:06 EDT

Entes EMG 12

This advisory includes mitigations for improper authentication and information exposure through query strings in GET request vulnerabilities in the En. . . read more Tue, 02 Oct 2018 10:00:15 EDT

Emerson AMS Device Manager

This advisory includes mitigations for improper access control and improper privilege management vulnerabilities in the Emerson AMS Device Manager sof. . . read more Thu, 27 Sep 2018 10:15:51 EDT

Fuji Electric Alpha5 Smart Loader

This advisory includes information on classic buffer overflow and heap-based buffer overflow vulnerabilities in Fuji Electric's Alpha5 Smart Load. . . read more Thu, 27 Sep 2018 10:10:45 EDT