skip to main content
OSTI.GOV title logo U.S. Department of Energy
Office of Scientific and Technical Information

Title: Control Systems - Software/Firmware Security

  1. Los Alamos National Laboratory
Publication Date:
Research Org.:
Los Alamos National Lab. (LANL), Los Alamos, NM (United States)
Sponsoring Org.:
OSTI Identifier:
Report Number(s):
DOE Contract Number:
Resource Type:
Resource Relation:
Conference: DOE Control System Security ; 2014-06-12 - 2014-06-12 ; Los Alamos, New Mexico, United States
Country of Publication:
United States
General & Miscellaneous(99)

Citation Formats

Frost, Sandra L. Control Systems - Software/Firmware Security. United States: N. p., 2015. Web.
Frost, Sandra L. Control Systems - Software/Firmware Security. United States.
Frost, Sandra L. 2015. "Control Systems - Software/Firmware Security". United States. doi:.
title = {Control Systems - Software/Firmware Security},
author = {Frost, Sandra L.},
abstractNote = {},
doi = {},
journal = {},
number = ,
volume = ,
place = {United States},
year = 2015,
month = 2

Other availability
Please see Document Availability for additional information on obtaining the full-text document. Library patrons may search WorldCat to identify libraries that hold this conference proceeding.

Save / Share:
  • The Free Electron Laser Project at Jefferson Lab is based on a comparatively small accelerator driver. As it's systems continues to grow and evolve, strict configuration control has not been a programmatic goal. Conversely, as the IR-Demo FEL and the 10kW IR FEL have been built and operated, hardware and software changes have been regular part of the machine development process. With relatively small component counts for sub-systems, changes occur without requiring much formal documentation and in-situ alterations are common-place in the name of supporting operations. This paper presents an overview of the web-based software tool called DevLore which wasmore » first developed to be a library for embedded programming and then became a tremendously effective tool for tracking all changes made to the machine hardware and software.« less
  • The Los Alamos Neutron Science Center facility presently has 110 slow wire scanning profile measurement instruments located along its various beam lines. These wire scanners were developed and have been operating for at least 30 years. While the wire scanners solved many problems to operate and have served the facility well they have increasingly suffered from several problems or limitations, such as maintenance and reliability problems, antiquated components, slow data acquisition, and etc. In order to refurbish these devices, these wire scanners will be replaced with newer versions. The replacement will consist of a completely new beam line actuator, newmore » cables, new electronics and brand new software and firmware. This note describes the functions and modes of operation that LabVIEW VI software on the real time controller and FPGA LabVIEW firmware will be required. It will be especially interesting to understand the overall architecture of these LabVIEW VIs. While this note will endeavor to describe all of the requirements and issues for the wire scanners, undoubtedly, there will be missing details that will be added as time progresses.« less
  • We propose integrated engineering of embedded controllers where process control engineering (PCE) and software engineering (SWE) are fully integrated into one process of development. This paper elaborates upon a particular phase of integrated development: the transformation of closed world models into open world models.
  • Sandia National Laboratories (SNL) performs software security analyses of many systems having strong security requirements. This paper gives an overview of a software security analysis methodology that has evolved at SNL. This methodology is based on experience gained in the analysis of critical software-controlled systems. The paper describes analysis activities and how they relate to the traditional software life cycle. Topics discussed include: planning for the analysis; supporting the development and documentation of security requirements; identifying and analyzing the threat; acquiring and utilizing software design and implementation materials; identifying positive design features; scaling the analysis effort to the threat; analyzingmore » the high-level design; analyzing the source-code and target implementations; reporting results; interacting with system and component development groups; and supporting the authentication of the software product before it is fielded. The paper also stresses the importance of independence of analysis and development groups.« less
  • The power of Ethernet for control and automation technology is being largely understood by the automation industry in recent times. Ethernet with HTTP (Hypertext Transfer Protocol) is one of the most widely accepted communication standards today. Ethernet is best known for being able to control through internet from anywhere in the globe. The Ethernet interface with built-in on-chip embedded servers ensures global connections for crate-less model of control and data acquisition systems which have several advantages over traditional crate-based control architectures for slow applications. This architecture will completely eliminate the use of any extra PLC (Programmable Logic Controller) or similarmore » control hardware in any automation network as the control functions are firmware coded inside intelligent meters itself. Here, we describe the indigenously built project of a cryogenic control system built for linear accelerator at Inter University Accelerator Centre, known as “CADS,” which stands for “Complete Automation of Distribution System.” CADS deals with complete hardware, firmware, and software implementation of the automated linac cryogenic distribution system using many Ethernet based embedded cryogenic instruments developed in-house. Each instrument works as an intelligent meter called device-server which has the control functions and control loops built inside the firmware itself. Dedicated meters with built-in servers were designed out of ARM (Acorn RISC (Reduced Instruction Set Computer) Machine) and ATMEL processors and COTS (Commercially Off-the-Shelf) SMD (Surface Mount Devices) components, with analog sensor front-end and a digital back-end web server implementing remote procedure call over HTTP for digital control and readout functions. At present, 24 instruments which run 58 embedded servers inside, each specific to a particular type of sensor-actuator combination for closed loop operations, are now deployed and distributed across control LAN (Local Area Network). A group of six categories of such instruments have been identified for all cryogenic applications required for linac operation which were designed to build this medium-scale cryogenic automation setup. These devices have special features like remote rebooters, daughter boards for PIDs (Proportional Integral Derivative), etc., to operate them remotely in radiation areas and also have emergency switches by which each device can be taken to emergency mode temporarily. Finally, all the data are monitored, logged, controlled, and analyzed online at a central control room which has a user-friendly control interface developed using LabVIEW{sup ®}. This paper discusses the overall hardware, firmware, software design, and implementation for the cryogenics setup.« less