EtherNet/IP

EtherNet/IP是由罗克韦尔自动化公司开发的工业以太网通讯协定,由开放DeviceNet厂商协会(ODVA)管理,可应用在程序控制及其他自动化的应用中,是通用工业协定(CIP)中的一部份

EtherNet/IP名称中的IP是“Industrial Protocol”(工业协议)的简称,和网际协议没有关系。

EtherNet/IP是应用层的协定,将网络上的设备视为许多的“物件”。EtherNet/IP为通用工业协定为基础而架构,可以存取来自ControlNet及DeviceNet网络上的物件。

EtherNet/IP使用以太网的物理层网络,也架构在TCP/IP的通讯协定上,用微处理器上的软件即可实现,不需特别的ASIC或FPGA。EtherNet/IP可以用在一些可容许偶尔出现少量非决定性的自动化网络。

EtherNet/IP很容易误解为Ethernet(以太网)及Internet Protocol(网际协议)的组合。不过EtherNet/IP是一个工业使用的应用层通讯协定,可以使控制系统及其元件之间建立通讯,例如可编程逻辑控制器、I/O模组等,EtherNet/IP中的IP是指工业协定。

历史

EtherNet/IP是在1990年后期由洛克威尔自动化公司开发.是洛克威尔工业以太网络方案的一部份。后来洛克威尔就和EtherNet/IP交给ODVA管理,ODVA管理EtherNet/IP通讯协定,并确认不同厂商开发的EtherNet/IP设备都符合EtherNet/IP通讯协定,确保多供应商的EtherNet/IP网络仍有互操作性。

技术细节

EtherNet/IP将以太网的设备以预定义的设备种类加以分类,每种设备有其特别的行为,此外,EtherNet/IP设备可以:

用用户数据报协议(UDP)的隐式报文传送基本I/O资料。
用传输控制协议(TCP)的显式报文上传或下载参数、设定值、程式或配方。
用主站轮询、从站周期性更新或是状态改变(COS)时更新的方式,方便主站监控从站的状态,讯息会用UDP的报文送出。
用一对一、一对多或是广播的方式,透过用TCP的报文送出资料。
EtherNet/IP使用TCP端口44818作为显式报文的处理,UDP端口2222作为隐式报文的处理。
EtherNet/IP的应用层协定是以使用在DeviceNet、CompoNet及ControlNet的通用工业协定(CIP)为基础。

Leave a Reply

Your email address will not be published. Required fields are marked *

最新工业控制系统漏洞

ICS-CERT Advisory Feed
Delta Electronics Delta Industrial Automation COMMGR

This advisory includes mitigations for a stack-based buffer overflow vulnerability in the Delta Electronics Delta Industrial Automation COMMGR softwar. . . read more Thu, 21 Jun 2018 10:00:42 EDT

Rockwell Automation Allen-Bradley CompactLogix and Compact GuardLogix

This advisory includes mitigation recommendations for an improper input validation vulnerability reported in Rockwell Automation Allen-Bradley Compact. . . read more Thu, 21 Jun 2018 09:55:36 EDT

Natus Xltek NeuroWorks

This medical device advisory includes mitigations for stack-based buffer overflow and out-of-bounds read vulnerabilities in the Natus Xltek NeuroWorks. . . read more Thu, 14 Jun 2018 12:05:47 EDT

Siemens SCALANCE X Switches, RUGGEDCOM WiMAX, RFID 181-EIP, and SIMATIC RF182C

This advisory includes mitigation recommendations for a permissions, privileges, and access controls vulnerability reported in Siemens SCALANCE X swit. . . read more Thu, 14 Jun 2018 10:10:00 EDT

Schneider Electric U.motion Builder

This advisory includes mitigations for a command injection, cross-site scripting, and improper input validation vulnerabilities in the Schneider Elect. . . read more Tue, 12 Jun 2018 14:31:11 EDT

Siemens SCALANCE X Switches

This advisory includes mitigation recommendations for a cross-site scripting vulnerability reported in Siemens SCALANCE X switches.. . . read more Tue, 12 Jun 2018 11:28:10 EDT

Rockwell Automation RSLinx Classic and FactoryTalk Linx Gateway

This advisory contains mitigation recommendations for an unquoted search path or element vulnerability in the Rockwell Automation RSLinix Classic soft. . . read more Thu, 07 Jun 2018 11:55:09 EDT

Philips' IntelliVue Patient and Avalon Fetal Monitors

This medical device advisory includes mitigations for improper authentication, information exposure, and stack-based buffer overflow vulnerabilities i. . . read more Tue, 05 Jun 2018 10:05:11 EDT

ABB IP Gateway

This advisory contains mitigation recommendations for improper authentication, cross-site request forgery, and unprotected storage of credentials vuln. . . read more Tue, 05 Jun 2018 10:00:07 EDT

Delta Industrial Automation DOPSoft

This advisory contains mitigation recommendations for out-of-bounds read, heap-based buffer overflow, and stack-based buffer overflow vulnerabilities. . . read more Thu, 31 May 2018 10:10:11 EDT

GE MDS PulseNET and MDS PulseNET Enterprise

This advisory includes mitigations for improper authentication, improper restriction of XML external entity reference ('XXE'), and relative. . . read more Thu, 31 May 2018 10:05:11 EDT

Yokogawa STARDOM Controllers

This advisory includes mitigations for a hard-coded credentials vulnerability in the Yokogawa STARDOM Controller products.. . . read more Thu, 31 May 2018 10:00:11 EDT

BeaconMedaes TotalAlert Scroll Medical Air Systems

This medical device advisory includes mitigations for improper access controls, insufficiently protected credentials, and unprotected storage of crede. . . read more Thu, 24 May 2018 10:05:11 EDT

Schneider Electric Floating License Manager

This advisory includes mitigations for heap-based buffer overflow, improper restriction of operations within the bounds of a memory buffer, and open r. . . read more Thu, 24 May 2018 10:00:05 EDT

BD Kiestra and InoquIA Systems

This medical device advisory includes mitigations for vulnerabilities in which the product user interface does not warn the user of unsafe actions in. . . read more Tue, 22 May 2018 10:05:00 EDT

Martem TELEM-GW6/GWM (Update A)

This updated advisory is a follow-up to the original advisory titled ICSA-18-142-01 Martem TELEM-GW6/GWM that was published May 22, 2018, on the NCCIC. . . read more Tue, 22 May 2018 10:00:00 EDT

Medtronic N'Vision Clinician Programmer

This medical advisory includes mitigations for a missing encryption of sensitive data vulnerability in Medtronic's N'Vision Clinician Progra. . . read more Thu, 17 May 2018 10:25:01 EDT

GE PACSystems CPE305/310, CPE330, CPE400, RSTi-EP CPE 100, CPU320/CRU320, RXi

This advisory includes mitigations for an improper input validation vulnerability in the GE PACSystems CPE305/310, CPE330, CPE400, RSTi-EP CPE 100, CP. . . read more Thu, 17 May 2018 10:15:17 EDT

PHOENIX CONTACT FL SWITCH 3xxx/4xxx/48xx Series

This advisory includes mitigations for command injection, information exposure, and stack-based buffer overflow vulnerabilities in the PHOENIX CONTACT. . . read more Thu, 17 May 2018 10:10:01 EDT

Siemens SIMATIC S7-400 CPU

This advisory includes mitigations for an improper input validation vulnerability in the Siemens SINAMIC S7-400 CPU.. . . read more Thu, 17 May 2018 10:05:14 EDT