Nuclear Security Requires Cyber Security

Transcription

1 Nuclear Security Requires Cyber Security A. DAVID MCKINNON, PH.D., MARY SUE HOXIE Cyber Physical Security Team, National Security Directorate Project on Nuclear Issues (PONI) Fall 2015 Conference PNNL-SA October 20,

2 Cyber Security It s not new Passing notes in class Secrets Confidentiality From Billy to Suzy Integrity During class, not afterwards Availability Consequences varied Security impact levels October 20,

3 Confidentiality Preserving authorized restrictions on information access and disclosure, including means for protecting personal privacy and proprietary information [44 U.S.C., Sec. 3542] A loss of confidentiality is the unauthorized disclosure of information. Nuclear security relevance Protecting restricted data from unauthorized access Protecting facility design information Protecting the PII of nuclear workers October 20,

4 Integrity Guarding against improper information modification or destruction, and includes ensuring information non-repudiation and authenticity [44 U.S.C., Sec. 3542] A loss of integrity is the unauthorized modification or destruction of information. Nuclear security relevance Corrupted radiation sensor data will impact worker safety Missing/destroyed historical data will impact after-action reviews of incidents Modified plant configuration parameters may lead to inefficient operation or even unsafe operation Integrity is critical for real-time control applications October 20,

5 Availability Ensuring timely and reliable access to and use of information [44 U.S.C., SEC. 3542] A loss of availability is the disruption of access to or use of information or an information system. Nuclear security relevance Continuity of operations, surviving a natural disasters, etc. Delayed data delivery will impact real-time control operations Availability has historically been provided via fault tolerance and redundancy October 20,

6 Real World Nuclear Examples Davis Besse Nuclear Power Plant* Slammer worm infected plant, Aug. 20, 2003 Shut down the digital portion of Safety Parameter Display System (SPDS) and Plant Process Computer (PPC) for several hours Worm started at contractor s site and spread to the corporate plant network Korea Hydro & Nuclear Power (KHNP)** Phishing s to retirees & 3 rd party contractors Malware received, Dec. 09, 2014 Information released, Dec , 2014 & March 2015 Received threat to shutdown nuclear power plant Davis Besse Nuclear Power Plant Nuclear security is impacted by cyber security * US DHS, Accessed: 4 Feb 2015 ** Gahm-Yong Kim, End to End: In the case of Cyber Security Threats to KHNP, IAEA Computer Security in a Nuclear World Conferenc, October Vienna, 20, 2015 June ** Min Baek, ROK s Regulatory Perspective for Cyber Security of Nuclear Facilities, IAEA Computer Security in a Nuclear World Conference, Vienna, June

7 Cyber Security Target was breached late 2013 Customer credit card data was stolen Attack vector: HVAC vendor s remote access Heartbleed Exploit extracted encryption keys from OpenSLL servers Timeline March 2012, OpenSLL released April 2014, vulnerability publicly disclosed Required: massive server patching and password changing Adversaries may attack indirectly, you may never see an early indicator Critical software flaws may be discovered years after deployments October 20,

8 Cyber Security in 2015 Anthem Discovered January 29, 2015, attack began in Dec Breach of 80 million SS# and other personal information* Phishers set up false information sites* Premera Blue Cross Disclosed March 17, 2015 Discovered January 29, 2015, initial attack occurred on May 5, 2014** Breach of financial and medical records of 11 million customers Office of Personnel Management (OPM) Disclosed May 2015 Data breach impacted 21 million people The nuclear workforce is at risk from non-nuclear cyber attacks * Krebs on Security, Acc.: 6 July 2015 ** Premera Update, Acc.: 6 July 2015 Krebs on Security, Acc.: 6 July 2015 Information about OPM Cybersecurity Incidents, Acc. 13 September 2015 October 20,

9 Cyber-Physical Security Enigma (World War II) Stolen machines enabled cryptanalysis Decrypted messages sunk ships German Steel Mill (2014) used to steal credentials Attackers moved from the business network to control network Blast furnace suffered massive damage IAEA Cyber Security in a Nuclear World Demonstration (2015) Art of the possible live demonstration Cyber attack on cameras enabled physical (information) theft at 3 rd party Stolen information enabled design of a custom cyber attack Cyber attack disabled a key pump October 20,

10 Source: SEL, Inc., Assess Your Risks What are your Crown Jewels? What are they worth to you? (Ransom / Blackmail) What are they worth to someone else? Are you a pawn in somebody else s chess game? Are you prepared for natural disasters? Fire, flood, storms, Who is your most likely attacker? Clueless/Careless insider Malicious insider Script kiddie Organized crime Advanced (enough) Persistent (enough) Threat Could you survive and/or recover from an cyber security incident? October 20,