Overview
Explore the concept of DYODE (Do Your Own Diode), a low-cost, DIY data diode designed for securing Industrial Control Systems (ICS), in this 41-minute conference talk from BruCON 0x09. Discover how this innovative project aims to make data diodes more accessible and affordable for industrial applications, with a focus on situations where time and availability constraints are not critical, but security risks are high. Learn about the development process using standard components and open-source libraries, and see how DYODE can be implemented for file transfer, Modbus data transfer, and screen sharing for remote debugging. Witness a demonstration of DYODE v2, a serial connection and optocoupler-based diode that allows for low-speed exchanges suitable for Modbus at an even lower cost. Gain insights into the project's history, cost considerations, open-source nature, and potential applications in ICS environments. Examine the threat modeling, limitations, and future roadmap of this DIY data diode solution, and understand its practical implications for enhancing security in industrial control systems.
Syllabus
Intro
DYODE
About the project
What is an ICS
Oneway Gateway
Data diodes
Why this project
Previous work
History
First model
How we did it
Demo
Transfer workflow
Configuration file
Cost
Cost reduction
Price
Final Prototype
Open Source
Demonstration
Is it magical
Threat modeling
Limitations
Roadmap
Where is it used
Conclusion
Taught by
BruCON Security Conference