Cyber-Defensive Architecture for Networked Industrial Control Systems (original) (raw)
Related papers
A Novel Method for Resilient Networked Industrial Control System Security
Current Industry processing is using the digital data which are coming from different geographical location and different environmental resources with the help of internet. Here no one can be trusted and it is possible more than a few kind threads come from different directions. Multidimensional approach to the network security is the only way able to crash these challenges. Diffusion methods or canned attacks which are recommended by the conventional network security system are outdated and impractical. It is essential to create a new resilient architecture that can survive the different types of attack and then need the speedy recovery if a breach does occur. Resilient Industrial networked control system is very important for every organization which is using a number of decisive infrastructures. Proposed method provide a framework of the control system application to build effective security mechanism that integrate all aspects of cyber security, incorporating desktop and business computing systems with industrial automation and control systems through a novel attack resilient algorithm. This paper to recommend the path to reduce the complexity of the control system and provide the safety mechanism for reliable system which is decreased the threads and increase the data integrity with privacy in all kind of organizational processing.
Attack detection/prevention system against cyber attack in industrial control systems
Computers & Security, 2018
Industrial control systems (ICS) are vital for countries' industrial facilities and critical infrastructures. However, there are not enough security assessments against cyber attacks carried out on ICS for not preventing business continuity. New attacks are being made every day against these systems. Threats and attacks against critical infrastructures must be detected for protecting human life and assets. For this reason, detection has become more important than the prevention of attacks. In this study, vulnerability and attack detection analysis was carried out on programmable logic controllers (PLC), one of the most important components of ICS, in the testbed and a rule set was created to detect active start / stop attacks targeting. In this case, with writing this rule table, similar attacks will be prevented without harming the critical systems. In the analysis, mirroring technique was used to prevent the detection system from imposing additional load to the existing system and affecting the operation of the system negatively. In the test environment, Siemens S-7 1200 (Firmware 2.2) PLC devices were used. Smoothsec system, which is not used in industrial systems, is used for detection and rule table. It is assessed that this novel approach will provide significant contributions to attract attention to vulnerabilities and the security analysis of industrial control systems.
On Preventing and Detecting Cyber Attacks in Industrial Control System Networks
Journal of Telecommunications and Information Technology, 2019
This paper outlines the problem of cybersecurity in OT (operations/operational technology) networks. It provides descriptions of the most common components of these systems, summarizes the threats and compares them with those present in the IT domain. A considerable section of the paper summarizes research conducted over the past decade, focusing on how common the problem is and in which countries it prevails. The article presents techniques most commonly used in the protection of these systems, with many examples from the nuclear industry given.
Cyber-Physical Attack Detection for Networked Control Systems
2020
Until 1960s, control systems consisted mainly of mechanical or analog electronic devices exchanging information among system components, i.e., sensors, controllers, and actuators, via wired communication. However, recent advancement in computer and communication industries have led to the growing use of Internet, embedded systems, wireless and digital communication technologies in many industrial control systems and transformed them into Networked Control Systems (NCSs). A defining feature of an NCS is that it consists of a number of devices implemented distributively so that system information is exchanged through a shared communication network. In light of many distinct advantages of NCSs including flexible architectures and less installation and maintenance costs, the development and application of NCSs have been recently boosted in a wide range of practical areas and critical infrastructures including transportation systems, electrical power systems and smart grids, remote surge...
Integrated protection of industrial control systems from cyber-attacks: the ATENA approach
International Journal of Critical Infrastructure Protection
Industrial and Automation Control systems traditionally achieved security thanks to the use of proprietary protocols and isolation from the telecommunication networks. Nowadays, the advent of the Industrial Internet of Things poses new security challenges. In this paper, we first highlight the main security challenges that advocate for new risk assessment and security strategies. To this end we propose a security framework and advanced tools to properly manage vulnerabilities, and to timely react to the threats. The proposed architecture fills the gap between computer science and control theoretic approaches. The physical layers connected to Industrial Control Systems are prone to disrupt when facing cyber-attacks. Considering the modules of the proposed architecture, we focus on the development of a practical framework to compare information about physical faults and cyber-attacks. This strat
Cyber Security and Resilience of Industrial Control Systems and Critical Infrastructures
SpringerBriefs in Computer Science, 2013
and Alessandro Fasani, it's a natural follow-up of the previous paper and describes what Industrial Control Systems are, provides an analysis on what are the main vulnerabilities affecting ICS and describes the principal methodologies for attacking them. Then, the paper defines what measures could be taken in order to make ICS and Critical Infrastructures resilient. The document ends outlining what international measures are being taken in order to protect critical infrastructure and their systems.
A Survey of Industrial Control Systems Security
2011
Industrial Control Systems (ICS) that monitor and operate critical industrial infrastructure worldwide are subject to an increasing frequency of cyber attacks. Evolution of the ICS environment to include standard operating system (OS) platforms and connectivity to corporate LANs and the world-wide-web occurred in ICS environments that were insulated from the outside world by a closed, trusted network. The result is legacy systems and component devices exposed to modern external threats with weak or non-existent security mechanisms in place. The risk to ICS is gradually being addressed, but not nearly fast enough to protect from easily devised cyber attacks.
IEEE Transactions on Industrial Cyber-Physical Systems
In the new industrial environment, the safe and reliable operation of Industrial Cyber-Physical Systems (ICPSs) is being threatened by new types of attacks: Attackers carefully tamper with the measurement and control data transmitted over the network, causing the controlled systems to behave abnormally. The essence of such threats is operational safety issues induced by information security issues, which need to be studied at the bottom monitoring and control layer of the system. Studying safety and security monitoring, as well as defense strategies against these attacks, is of paramount importance. The primary objective of this article is to offer readers a timely survey that sheds light on the current status of safety and security issues in ICPSs. A comprehensive comparison is conducted with existing approaches and relevant literature, focusing on a systems and control perspective. Specifically, we emphasize the concept of cyber-physical attacks by contrasting them with conventional cyberattacks. A summary of realworld instances of typical cyber-physical attacks is provided to illustrate their significance. In terms of methodology, we conduct a thorough review of attack principles, attack detection, and evaluation approaches, as well as defense schemes. During this process, we carefully compare the pros and cons of different detection methods. It is further elaborated that the information asymmetry between the offensive and defensive parties is the booster of the integrated design of industrial safety and security. Looking
A Methodology to Enhance Industrial Control System Security
Procedia Computer Science, 2018
The frequency and sophistication of cyber-threats towards Industrial Control Systems (ICS) continues to increase. This reality, coupled with the increased interconnectivity of ICS and enterprise networks and the utilisation of standard system platforms and operating systems, has raised the potential risk to both the security and safety of critical infrastructure. There is a growing awareness that the safety and security of ICS cannot be dealt with in isolation, it should be considered jointly. This paper proposes a methodology that harmonises safety and security within ICS environments. The findings also indicate that efforts to harmonise safety and security extends beyond deconflicting and implementing effective technical countermeasures-nontechnical factors and the organisational context play an equally important part.