Vulnerabilities in SCADA and Critical Infrastructure Systems



Similar documents
Assessment of the Vulnerabilities of SCADA, Control Systems and Critical Infrastructure Systems

A Proposed Integration of Hierarchical Mobile IP based Networks in SCADA Systems

Web SCADA Employing Application Program Interface as Data Source

Scheme to Secure Communication of SCADA Master Station and Remote HMI s through Smart Phones

Wireless Communications for SCADA Systems Utilizing Mobile Nodes

Common Threats and Vulnerabilities of Critical Infrastructures

SCADA Systems. Make the most of your energy. March 2012 / White paper. by Schneider Electric Telemetry & Remote SCADA Solutions

SCADA and Security Are they Mutually Exclusive? Terry M. Draper, PE, PMP

for Critical Infrastructure Protection Supervisory Control and Data Acquisition SCADA SECURITY ADVICE FOR CEOs

Monitoring Remote Chemical Tanks

Intelligent Device Management with DCS, PLC, and RTU

Critical IT-Infrastructure (like Pipeline SCADA systems) require cyber-attack protection

Security Testing in Critical Systems

The data can be transmitted through a variety of different communications platforms such as:

Introduction To SCADA and Telemetry

How To Protect Power System From Attack From A Power System (Power System) From A Fault Control System (Generator) From An Attack From An External Power System

Improving SCADA Control Systems Security with Software Vulnerability Analysis

Integrating Electronic Security into the Control Systems Environment: differences IT vs. Control Systems. Enzo M. Tieghi

CYBER SECURITY: SYSTEM SERVICES FOR THE SAFEGUARD OF DIGITAL SUBSTATION AUTOMATION SYSTEMS. Massimo Petrini (*), Emiliano Casale TERNA S.p.A.

Design and Implementation of SCADA System Based Power Distribution for Primary Substation ( Monitoring System)

CLOUD BASED SCADA. Removing Implementation and Deployment Barriers. Liam Kearns Open Systems International, Inc.

Innovative Defense Strategies for Securing SCADA & Control Systems

Semaphore T BOX Applications in Data Center Facilities

AutoLog ControlMan. Remote Monitoring & Controlling Service

PLCs and SCADA Systems

High rate and Switched WiFi. WiFi QoS, Security 2G. WiFi a/b/g. PAN LAN Cellular MAN

SCADA Cyber Attacks and Security Vulnerabilities: Review

The President s Critical Infrastructure Protection Board. Office of Energy Assurance U.S. Department of Energy 202/

Intrusion Detection and Cyber Security Monitoring of SCADA and DCS Networks

HMS Industrial Networks. Putting industrial applications on the cloud

SCADA System Security. ECE 478 Network Security Oregon State University March 7, 2005

Network Security Infrastructure Testing

How Secure is Your SCADA System?

AUDITOR GENERAL S REPORT. Protection of Critical Infrastructure Control Systems. Report 5 August 2005

Security in SCADA solutions

A Concise Model to Evaluate Security of SCADA Systems based on Security Standards

An Introduction to SCADA-ICS System Security. Document Number IG-101 Document Issue 0.1 Issue date 03 February 2015

IQware's Approach to Software and IT security Issues

Holistic View of Industrial Control Cyber Security

HMS Industrial Networks

NEW GENERATION PROGRAMMABLE AUTOMATION CONTROLLER

GE Intelligent Platforms. Understanding and Minimizing Your HMI/SCADA System Security Gaps

SCADA Security: Challenges and Solutions

SCADA. The Heart of an Energy Management System. Presented by: Doug Van Slyke SCADA Specialist

CHAPTER 12 MONITORING AND CONTROL SYSTEMS

Process Control and Automation using Modbus Protocol

Secure access to a water treatment plant s SCADA network

WIRELESS REMOTE MONITORING OF CATHODIC PROTECTION SYSTEMS. John Hawkyard MICorr Deputy General Manager Rawabi Corrosion Technology Co Ltd Al-Khobar

TNC is an open architecture for network access control. If you re not sure what NAC is, we ll cover that in a second. For now, the main point here is

Considerations for Hybrid Communications Network Technology for Pipeline Monitoring

Boston University Security Awareness. What you need to know to keep information safe and secure

Cyber Risk Mitigation via Security Monitoring. Enhanced by Managed Services

Making the most out of substation IEDs in a secure, NERC compliant manner

OPERATIONS CAPITAL. The Operations Capital program for the test years is divided into two categories:

Security Issues with Integrated Smart Buildings

Keeping the Lights On

Computer Security Maintenance Information and Self-Check Activities

OPC & Security Agenda

The SCADA Security Challenge: The Race Is On

TECHNICAL SPECIFICATION

This is a preview - click here to buy the full publication

SCADA Protocols and Security

Vendor System Vulnerability Testing Test Plan

Endless possibilities

GE Measurement & Control. Top 10 Cyber Vulnerabilities for Control Systems

INDUSTRIAL CONTROL SYSTEMS CYBER SECURITY DEMONSTRATION

ABB s approach concerning IS Security for Automation Systems

Overcoming IP Address Issues with GPRS Remote Monitoring and Alarm Systems

Functionality Considerations in Custom SCADA Development Tools

INTEGRATING SUBSTATION IT AND OT DEVICE ACCESS AND MANAGEMENT

Understanding Programmable Automation Controllers (PACs) in Industrial Automation

Effective OPC Security for Control Systems - Solutions you can bank on

Computer System Security Updates

Industrial Control Systems Vulnerabilities and Security Issues and Future Enhancements

DATA SECURITY 1/12. Copyright Nokia Corporation All rights reserved. Ver. 1.0

Security Solutions to Meet NERC-CIP Requirements. Kevin Staggs, Honeywell Process Solutions

Security Aspects of SCADA and Corporate Network Interconnection: An Overview

Control of Boiler Operation using PLC SCADA

Remote Services. Managing Open Systems with Remote Services

Student Halls Network. Connection Guide

Protecting productivity with Plant Security Services

A Systems Approach to HVAC Contractor Security

SECURE AND FUTURE-READY SCADA CONTROL SYSTEMS PREPARE YOUR CRITICAL INFRASTRUCTURE FOR WHAT HAPPENS NEXT

Designing secure networks for substation automation and control systems

Understanding SCADA System Security Vulnerabilities

a Post-Stuxnet World The Future of Critical Infrastructure Security Eric Byres, P.Eng.

Fundamentals of Information Systems Security Unit 1 Information Systems Security Fundamentals

ABB North America. Substation Automation Systems Innovative solutions for reliable and optimized power delivery

Testing Intelligent Device Communications in a Distributed System

SCADA System Fundamentals

AN ANALYSIS OF TECHNICAL SECURITY CONTROL REQUIREMENTS FOR DIGITAL I&C SYSTEMS IN NUCLEAR POWER PLANTS

Security Threats on National Defense ICT based on IoT

Security for. Industrial. Automation. Considering the PROFINET Security Guideline

Preventing Cyber Security Attacks Against the Water Industry

SCADA SYSTEMS AND SECURITY WHITEPAPER

Transcription:

International Journal of Future Generation Communication and Networking 99 Vulnerabilities in SCADA and Critical Infrastructure Systems Rosslin John Robles 1, Min-kyu Choi 1, Eun-suk Cho 1, Seok-soo Kim 1, Gil-cheol Park 1, Sang-Soo Yeo 1 1 Department of Multimedia Engineering, Hannam University, Daejeon, Korea rosslin_john@yahoo.com, freeant7@naver.com, eunsukk@empal.com, {sskim,gcpark,ssyeo}@hnu.kr Abstract. Critical Infrastructures are so vital that a damage or breakage of it will greatly affect the society and economy. SCADA systems play a big role on Critical Infrastructure since most of these infrastructures are controlled systems. Presented in this paper are the vulnerabilities of a SCADA system, its effect to the society and the ways to prevent such vulnerabilities. Also, the background of the SCADA system and its difference to the common computer system is discussed. Keywords: SCADA, Control Systems, Vulnerability, Critical Infrastructure 1 Introduction We are at least confident of the application or operating systems that are running in our desktop, servers and even cell phones. Whenever there are new vulnerabilities that will emerge, software companies release a fix or patch for it. Installing patches, fixes or updates is a good way of maintaining the security of the system. [1] It could take some time but it is manageable. Sad to say, this way of handling vulnerabilities is not applicable to most Critical Infrastructure Systems. Most Critical Infrastructure Systems are control systems running the World's critical national infrastructures like power, water and transportation. SCADA Systems or Supervisory Control and Data Acquisition Systems play a big part to this Critical Infrastructure Systems. Unlike application or operating systems, These systems usually sold as bundled packages by the vendors, so the end-user really doesn't know what is inside and what needs patching to keep it safe from emerging threats and vulnerabilities.[2]. 2 Supervisory Control and Data Acquisition Before we point out the vulnerabilities in the SCADA systems, we must know what a SCADA system really is. SCADA (supervisory control and data acquisition) existed

100 International Journal of Future Generation Communication and Networking long when control systems were introduced. A SCADA system that time uses data acquisition by using panels of meters, strip chart recorders and lights. Unlike modern SCADA systems, there is an operator which manually operates various control knobs exercised supervisory control. These devices are still used to do supervisory control and data acquisition on factories, plants and power generating facilities. Modern SCADA systems are now used in modern manufacturing and industrial processes, mining industries, public and private utilities, leisure and security industries. In these situations, telemetry is needed to connect systems and equipment separated by long distances. Some of this ranges to up to thousands of kilometers. Telemetry is automatic transmission and measurement of data from remote sources by wire or radio or other means. It is also used to send commands, programs and receives monitoring information from these remote locations. SCADA is the combination of telemetry and data acquisition. SCADA is compose of collecting of the information, transferring it to the central site, carrying out any necessary analysis and control and then displaying that information on the operator screens. The required control actions are then passed back to the process. [3].Typically SCADA systems include the following components: [4] 1. Instruments in the field or in a facility that sense conditions such as ph, temperature, pressure, power level and flow rate. 2. Operating equipment such as pumps, valves, conveyors and substation breakers that can be controlled by energizing actuators or relays. 3. Local processors that communicate with the site s instruments and operating equipment.this includes the Programmable Logic Controller (PLC), Remote Terminal Unit (RTU), Intelligent Electronic Device (IED) and Process Automation Controller (PAC). A single local processor may be responsible for dozens of inputs from instruments and outputs to operating equipment. 4. Short range communications between the local processors and the instruments and operating equipment. These relatively short cables or wireless connections carry analog and discrete signals using electrical characteristics such as voltage and current, or using other established industrial communications protocols. 5. Host computers that act as the central point of monitoring and control. The host computer is where a human operator can supervise the process; receive alarms, review data and exercise control. 6. Long range communications between the local processors and host computers. This communication typically covers miles using methods such as leased phone lines, satellite, microwave, frame relay and cellular packet data.

International Journal of Future Generation Communication and Networking 101 2.1 SCADA Hardware SCADA Systems usually have Distributed Control System components. RTUs or PLCs are also commonly used; they are capable of autonomously executing simple logic processes without a master computer controlling it. A functional block programming language, IEC 61131-3, is frequently used to create programs which run on these RTUs and PLCs. This allows SCADA system engineers to perform both the design and implementation of a program to be executed on an RTU or PLC. From 1998, major PLC manufacturers have offered integrated HMI/SCADA systems, many use open and non-proprietary communications protocols. Many third-party HMI/SCADA packages, offering built-in compatibility with most major PLCs, have also entered the market, allowing mechanical engineers, electrical engineers and technicians to configure HMIs themselves. [5] 2.2 SCADA Software SCADA software can be divided into proprietary type or open type. Proprietary software are developed and designed for the specific hardware and are usually sold together. The main problem with these systems is the overwhelming reliance on the supplier of the system. Open software systems are designed to communicate and control different types of hardware. It is popular because of the interoperability they bring to the system. [3] 3. SCADA and its role to Critical Infrastructure Systems The term infrastructure was defined by The American Heritage Dictionary [6] as: The basic facilities, services, and installations needed for the functioning of a community or society, such as transportation and communications systems, water and power lines, and public institutions including schools, post offices, and prisons. The US President issued an Executive Order 13010 which states that certain national infrastructures are so vital that their incapacity or destruction would have a debilitating impact on the defense or economic security of the United States". [7] It is where the term "critical infrastructure" was highlighted. According to E.O. 13010, these critical infrastructures were: telecommunications; electrical power systems; gas and oil storage and transportation; banking and finance; transportation; water supply systems; emergency services (including medical, police, fire, and rescue) and continuity of government. Figure 1 shows the infrastructures that were commonly pointed out as critical.

102 International Journal of Future Generation Communication and Networking Fig 1. Critical Infrastructures Most of these so-called critical infrastructures nowadays are controlled by controlled systems, SCADA in particular. So if the SCADA will malfunction, it will cause debilitating impact to the community and society. 4. Computer System Security Computer Systems are usually not as broad as the SCADA systems. This system can be your Personal Computer (PC), PDA, Server, Cell phone, etc. It is much easier to debug and fix the errors in this kind of systems. Security threats to this system can be prevented or minimized by using the following: Setting a password on the system so only people who have access to it can access the information on it; Use of antivirus software to prevent viruses from damaging the system; Use of anti-spyware software to protect your system from spyware that may attempt to monitor what the user is doing online; Have a firewall permanently turned on as the first line of defense against viruses, spyware and hackers; [8] and patching you system when new vulnerabilities emerge. This ways of protecting a computer system may take some but it is manageable. Since SCADA systems are different from usual computer systems, some of these techniques are not applicable to SCADA systems. 5. SCADA Vulnerabilities The SCADA was developed, the goal was to create a control system that will provide good performance and have features that will make it easy to control and could do the tasks easily. Security was not a concern then. Common misconception regarding

International Journal of Future Generation Communication and Networking 103 SCADA security was SCADA networks were isoloated from all other networks and so attackers could not access the system. [9] As the industry grows, the demand for more connectivity also increased. From a small range network, SCADA systems are sometimes connected to other networks to increase the scope. This situation give rise to new security concerns to these SCADA networks. Once the SCADA network is connected to other networks, it is also open to threats that connected is open to attackers. This makes the SCADA system also vulnerable. The use of open standards for SCADA communication protocols are also increasing. Main reason is because its not as costly as proprietary standards. This reason makes it also easier for attackers to gain access to information in SCADA systems. The open standards make it very easy for attackers to gain in-depth knowledge about the working of these SCADA networks. The use of COTS hardware and software to develop devices for operating in the SCADA network also contribute to its lack of security. COTS-based design can be cheaper and reduce design time, but it also raises concerns about the overall security of the end product. COTS software is not always secure. COTS software are not mainly designed to the system. It is usually used because of some of its features that are usable to the system. This is usually the target of the attack. When new vulnerabilities emerge it is difficult or sometimes impossible to patch these softwares. Devices that are designed to operate in safety-critical environments are usually designed to failsafe, but security vulnerabilities could be exploited by an attacker to disable the fail-safe mechanisms. This makes these devices must not only be designed for safety but also for security. 6. Incidents caused by SCADA Insecurity To understand the importance of knowing the vulnerabilities of SCADA systems, here are just few of the incidents caused by insecure SCADA systems. As confirmed by the Nuclear Regulatory in August 2003, On January 2003, the Microsoft SQL Server worm known as Slammer infected a private computer network at the Davis- Besse nuclear power plant in Oak Harbor, Ohio. It disabled the safety monitoring system for nearly 5 hours. Also, the plant s process computer failed, and it took about 6 hours for it to become available again. Slammer reportedly also affected communications on the control networks of other electricity sector organizations by propagating so quickly that control system traffic was blocked. [10] On April 26, 1999, Gazprom, Russia's huge gas monopoly was one of a growing number of targets hit last year by computer hackers, hackers who controlled the company's gas flows for a short time. Hackers were able to get past the company's security and break into the system controlling gas flows in pipelines. The central switchboard of gas flows was "for some time under the control of external users. [11]

104 International Journal of Future Generation Communication and Networking 7. Recommended Strategy These vulnerabilities can be overcome by developing new security technology and techniques to protect SCADA systems and Critical Infrastructure. Policies and Standards should be develop and design to fit the need of a specific system. Implement effective security management programs which are applicable to SCADA and Critical Infrastructure systems. Also, increase the security awareness and sharing of information on how to implement more secure architectures and existing security technologies. Network vulnerabilities on SCADA systems may be dealt with the use of a honeypots. It is a technique used to trap, detect, deflect, or in some manner counteract attempts at unauthorized access to the network. [12] There s one SCADA honeypot project which may be utilized for this purpose. [13] 8. Conclusion Critical Infrastructures are vital and very important to the society. Most Critical Infrastructures are controlled by Control Systems like SCADA. As presented in this paper, SCADA has some vulnerability that needs attention. If these vulnerabilities will not be attended, it will cause great effect to the society. As we know, SCADA was designed not focusing on security so ways to keep it from emerging vulnerabilities should be performed. Acknowledgement This work was supported by a grant from Security Engineering Research Center of Ministry of Knowledge Economy, Korea References 1. Foley, J. and G. V. Hulme (2004). Get ready to patch. InformationWeek, August 30. 2. Eric Byres (2008). Hidden Vulnerabilities in SCADA and Critical Infrastructure Systems, February 19. 3. D. Bailey and E. Wright (2003) Practical SCADA for Industry 4. Andrew Hildick-Smith (2005) Security for Critical Infrastructure SCADA Systems 5. Wikipedia SCADA http://en.wikipedia.org/wiki/scada Accessed: October 2008 6. Houghton Mifflin Company. Boston, MA. 2000 The American Heritage Dictionary of the English Language, Fourth Edition. 7. Executive Order 13010 Critical Infrastructure Protection. Federal Register, July 17, 1996. Vol. 61, No. 138. 8. Securing your computer http://www.staysmartonline.gov.au/securing_your_computer accessed: October 2008 9. Carlson Rolf (2002) Sandia SCADA program high-security SCADA LDRD final report 10. R. Dacey (2003) CRITICAL INFRASTRUCTURE PROTECTION Challenges in Securing Control Systems 11. T.C. Greene (2000) Russia welcomes hack attacks: Script Kiddies cut teeth hijacking critical infrastructure 12. Wikipedia - Honeypot (computing) http://en.wikipedia.org/wiki/honeypot_(computing) Accessed: October 2008 13. V. Pothamsetty and M. Franz. SCADA HoneyNet Project: Building Honeypots for Industrial Networks. http://scadahoneynet.sourceforge.net/ Accessed: October 2008.

2026 © DocPlayer.net Privacy Policy | Terms of Service | Feedback  | Do Not Sell My Personal Information