Security and SCADA protocols

Igure, V M; Williams, R D

Title: Security and SCADA protocols

Conference · Sat Jul 01 00:00:00 EDT 2006

OSTI ID:22030056

Igure, V M; Williams, R D ^[1]

Dept. of Electrical and Computer Engineering, Univ. of Virginia, Box 400743, 351 McCormick Rd., Charlottesville, VA 22904-4743 (United States)

Supervisory control and data acquisition (SCADA) networks have replaced discrete wiring for many industrial processes, and the efficiency of the network alternative suggests a trend toward more SCADA networks in the future. This paper broadly considers SCADA to include distributed control systems (DCS) and digital control systems. These networks offer many advantages, but they also introduce potential vulnerabilities that can be exploited by adversaries. Inter-connectivity exposes SCADA networks to many of the same threats that face the public internet and many of the established defenses therefore show promise if adapted to the SCADA differences. This paper provides an overview of security issues in SCADA networks and ongoing efforts to improve the security of these networks. Initially, a few samples from the range of threats to SCADA network security are offered. Next, attention is focused on security assessment of SCADA communication protocols. Three challenges must be addressed to strengthen SCADA networks. Access control mechanisms need to be introduced or strengthened, improvements are needed inside of the network to enhance security and network monitoring, and SCADA security management improvements and policies are needed. This paper discusses each of these challenges. This paper uses the Profibus protocol as an example to illustrate some of the vulnerabilities that arise within SCADA networks. The example Profibus security assessment establishes a network model and an attacker model before proceeding to a list of example attacks. (authors)

OSTI does not have a digital full text copy available. For more information, please see document availability, search WorldCat, or search Google Scholar.

Cite

Export

Save

Research Organization:: American Nuclear Society, 555 North Kensington Avenue, La Grange Park, IL 60526 (United States)

OSTI ID:: 22030056

Resource Relation:: Conference: NPIC and HMIT 2006: 5. International Topical Meeting on Nuclear Plant Instrumentation Controls, and Human Machine Interface Technology, Albuquerque, NM (United States), 12-16 Nov 2006; Other Information: Country of input: France; 37 refs.; Related Information: In: Proceedings of the 5. International Topical Meeting on Nuclear Plant Instrumentation Controls, and Human Machine Interface Technology| 1430 p.

Country of Publication:: United States

Language:: English

Similar Records

Architecture and Methods for Substation SCADA Cybersecurity: Best Practices

Conference · Thu Sep 01 00:00:00 EDT 2016 · OSTI ID:22030056

Albunashee, Hamdi; Al Sarray, Muthanna; McCann, Roy

Cyber Incidents Involving Control Systems

Technical Report · Sat Oct 01 00:00:00 EDT 2005 · OSTI ID:22030056

Turk, Robert J

Supporting Cyber Security of Power Distribution Systems by Detecting Differences Between Real-time Micro-Synchrophasor Measurements and Cyber-Reported SCADA (Final Report)

Technical Report · Tue Dec 29 00:00:00 EST 2020 · OSTI ID:22030056

Peisert, Sean; Roberts, Ciaran; Scaglione, Anna; +6 more

Related Subjects

97 MATHEMATICAL METHODS AND COMPUTING
42 ENGINEERING
COMPUTER NETWORKS
CONTROL SYSTEMS
DATA ACQUISITION
DIGITAL SYSTEMS
DISTRIBUTED DATA PROCESSING
EFFICIENCY
INTERNET
MANAGEMENT
MONITORING
SECURITY
VULNERABILITY

Title: Security and SCADA protocols

Citation Formats

Similar Records

Related Subjects