A Technique for Bytecode Decompilation of PLC Program
Program logical controllers(PLCs)are the kernel equipment of industrial control system(ICS)as they directly monitor and control industrial processes.Recently,ICS is suffering from various cyber threats,which may lead to significant consequences due to its inherent characteristics.In IT system,decompilation is a useful method to detect intrusion or to discovery vulnerabilities,however,it has yet not been developed in ICS.In this work,we present a technique to decompile the bytecode of PLC program.By introducing the instruction template and operand template,we propose a decompiling framework,which is validated by 11 PLC programs.In disassembling experiments,the present framework can cover all instructions with disassembling accuracy reaching 100%,this fully shows that our framework is able to effectively decompile the bytecode of PLC programs.
programmable logical controller bytecode decompilation mapping rules
Xuefeng LV Yaobin Xie Xiaodong Zhu Lun Ren
State Key Laboratory of Mathematical Engineering and Advanced Computing Zhengzhou,China
国际会议
重庆
英文
252-257
2017-03-25(万方平台首次上网日期,不代表论文的发表时间)