Read as
Last updated: April 29, 2026
Modbus, DNP3, OPC-UA, S7Comm, EtherNet/IP, BACnet — protocol attack surfaces and defenses.
Industrial Control Systems (ICS) speak protocols designed in the 1970s-90s when the network was assumed isolated. Many of those protocols are now exposed to IP networks — and they were never designed with authentication, encryption, or integrity in mind. This module covers the major ICS protocols, what they expose, and the patterns of attack and defense.
The protocols that matter
- Modbus (TCP / RTU) — most common ICS protocol; simple register-read/write. No auth, no encryption
- DNP3 — used heavily in electric utilities, water; some authenticated extensions exist (Secure Authentication v5) but rarely deployed
- OPC-UA — modern, designed with security; certificates, signed messages, encryption. Widely adopted in new installations
- OPC Classic (DA, HDA, A&E) — older OPC; built on DCOM; no native security
- S7Comm / S7CommPlus — Siemens SIMATIC PLCs; widely used in manufacturing
- EtherNet/IP (CIP) — Allen-Bradley / Rockwell PLCs; widely used in North America
- Profinet — Siemens; deterministic real-time on Ethernet
- BACnet — building automation (HVAC, lighting); often internet-exposed
- IEC 60870-5-104 — power utilities, SCADA telemetry
- IEC 61850 (MMS, GOOSE, SV) — substation automation
Want this for your team?
Custom team training + practitioner advisory
Beyond the free academy — we run private workshops, vCISO advisory, and red-team exercises tailored to your stack. For Indian SMBs scaling past their first hire.
Book team training call
Replies in 4 working hrs · India-only · Senior consultants