skip to main content

DOE PAGESDOE PAGES

Title: Emerging Techniques for Field Device Security

Critical infrastructure, such as electrical power plants and oil refineries, rely on embedded devices to control essential processes. State of the art security is unable to detect attacks on these devices at the hardware or firmware level. We provide an overview of the hardware used in industrial control system field devices, look at how these devices have been attacked, and discuss techniques and new technologies that may be used to secure them. We follow three themes: (1) Inspectability, the capability for an external arbiter to monitor the internal state of a device. (2) Trustworthiness, the degree to which a system will continue to function correctly despite disruption, error, or attack. (3) Diversity, the use of adaptive systems and complexity to make attacks more difficult by reducing the feasible attack surface.
Authors:
 [1] ;  [2] ;  [1] ;  [1] ;  [1]
  1. Sandia National Lab. (SNL-NM), Albuquerque, NM (United States)
  2. (United States)
Publication Date:
OSTI Identifier:
1183104
Report Number(s):
SAND--2014-17095J
Journal ID: ISSN 1540-7993; 537058
Grant/Contract Number:
AC04-94AL85000
Type:
Accepted Manuscript
Journal Name:
IEEE Security & Privacy
Additional Journal Information:
Journal Volume: 12; Journal Issue: 6; Journal ID: ISSN 1540-7993
Publisher:
IEEE
Research Org:
Sandia National Laboratories (SNL-NM), Albuquerque, NM (United States); Sandia National Laboratories, Livermore, CA
Sponsoring Org:
USDOE Office of Electricity Delivery and Energy Reliability (OE), Infrastructure Security and Energy Restoration (ISER) (OE-30)
Country of Publication:
United States
Language:
English
Subject:
97 MATHEMATICS AND COMPUTING