Åttonde Nordiska Dricksvattenkonferensen - Svenskt Vatten

More documents

Recommendations

Info

Introduction This section considers the general background and issues of SCADA security. Background Industrial information and control systems are widely used for control automation to enable services, quality and efficiency of water supply to the society. These industrial information and control systems are often denoted as SCADA systems (which is the abbreviation for Supervisory Control And Data Acquisition). SCADA systems still often use legacy technologies but have gradually, during the last decades, evolved and now use more modern computer-based systems (Cegrell 1994; Johansson 1996). Previously, SCADA systems have been relatively isolated. That is, stand-alone systems without connections to other systems or networks. However, with the advancements in microprocessor technologies, data could be multiplexed and collected from field stations and transmitted to a central location for supervisory control. Radio and leased phone lines were incorporated for communication between a central control room and field stations, resulting in the adoption of unattended monitoring and control capabilities for pump stations and water pipelines. Cost tends to be the primary motivational factor in modernizations of water utility plants. As a result, spending on IT systems and security tends to be relegated to the margins. As these plants began to automate from analog systems to digital control, they embraced "plug-n-play" systems to quickly interconnect remote and distributed sites over Internet Protocol (IP) because it was cheap and interoperable. In so doing, secure architecture wasn't a primary design consideration. In fact, the design of these SCADA systems did not really consider security at all (Johansson 1996; Johansson 2009; Krutz 2006; Shephard 2002; Stamp 2003). The increasing use of computer-based components, and the integration with other IT systems has also affected the organisations staffing requirements. In several places, there are today fewer individuals that maintain the water supply to society than just a decade ago. One single operator can easily monitor and remotely control the waterworks pumps, valves and the entire water supply from a central workstation in a control room. And further development have now made it possible to move this workplace, it is not necessarily bound to a specific central control room, since applications exist to manage SCADA systems from mobile devices. Moreover, the computerization enabled the digitalization of other critical data, such as information about the location of pipelines and descriptions of systems and their configurations. This simplification of communicating data increases its availability to users and systems. However, this critical information is increasingly being sent across other networks, making it possible to reach data far beyond the local water companies' premises (Johansson 2007; Johansson 2009). Increased security concern Since many critical infrastructure services, such as water supply, depend on these SCADA systems, any vulnerability in them may result in undesirable consequences for citizens and society. In the light of the security breach that occurred more than ten years ago at Maroochy Water Services in Queensland, Australia, concern has thus been expressed regarding the security of SCADA systems (NIST 2008). Despite this concern, recent practical assessments implied that, information security is still weak when it comes to SCADA systems. One could approximate from these assessments that SCADA security is lagging roughly ten years behind traditional (office) IT-security. However, those findings might be anomalies and therefore not relevant to most of the water utilities in Sweden. In order to attain better understanding of the situation regarding information security at the drinking water sector in Sweden a more comprehensive survey of the SCADA environments and their security was initiated. This paper briefly illustrates and discusses the structure and general findings of this national survey. However, the paper will not go into any details of specific critical findings. 48 Session 2: Säker dricksvattenförsörjning
The SCADA survey This section gives a short summary of purpose and method behind a survey that focused on SCADA security at Swedish drinking water suppliers. The Swedish Water and Wastewater Association (SWWA) together with the Swedish Civil Contingencies Agency (MSB) supported the survey. Purpose of the survey The main purpose of the survey was to highlight the current situation of information security related to the use of industrial information and control systems in production and distribution of drinking water. Therefore the survey focused on SCADA systems and typical activities relevant for security. The other more elusive yet important purpose was to increase the overall security awareness by getting organisations to discuss potential weaknesses while responding to the survey. The survey could introduce questions that the responding organisation never had been discussed or otherwise wouldn’t have brought up to attention. Structure of the survey The survey was conducted through a questionnaire that was distributed to all Swedish drinking water producers. The foundation for the questionnaire was based on experiences from previous practical assessments of SCADA security as well as existing national and international guidelines, standards and regulations (DOE 2003; DOE 2006; Fink 2006; ISO/IEC 2005; Johansson 2007; NISCC 2005;NIST 2007; NFA 2003; NFA 2007; SEMA 2008; Stamp 2003). The work was also inspired by a similar study conducted in Holland on behalf of the Dutch National Cybercrime Infrastructure (NICC 2008). A large number of relevant issues emerged. Thus, the questionnaire became extensive and eventually included roughly 60 questions. The survey itself was structured into the following eight sections: 1) Instructions to respondents – to inform about confidentiality. 2) Reference model and terminology – to get common terminology. 3) Background information – to get information about the respondent and their organization. 4) Technical aspects of SCADA security. 5) Organisational aspects of SCADA security. 6) Threat and risk aspects of SCADA security. 7) Other aspects – to get information about their dependence on external actors. 8) Contact information – to be able to get further comments from respondents. In the introduction respondents were informed about the purpose and that the survey would be handled in a strictly confidential manner. Reference model of SCADA In order to explain the terminology used in the survey respondents were provided with a simple reference model, see figure 1 below. In the reference model four main areas were specified: the Operation centre’s computer network, the Process linked computer networks, the Administrative office computer network, and External computer network. Figure 1. The reference model to explain the overall environment of typical SCADA-systems. Session 2: Säker dricksvattenförsörjning 49
Page 1 and 2: Åttonde Nordiska Dricksvattenkonfe
Page 3 and 4: Förord Denna dokumentation innehå
Page 5 and 6: Innehåll Sida CD-numrering Session
Page 7 and 8: Program • Tisdag 19 juni Kan klor
Page 9 and 10: Program • Onsdag 20 juni Lunch 13
Page 11 and 12: Posterutställning Påverkar lättf
Page 13 and 14: Session 1: Management Drick kranvat
Page 15 and 16: För att ytterligare öka intresset
Page 17 and 18: Implementation of Management System
Page 19 and 20: Virksomheder er afhængige af deres
Page 21 and 22: Figur 4: Proces til udarbejdelse af
Page 23 and 24: drikkevandskvalitet handler om kemi
Page 25 and 26: Regional risk- och sårbarhetsanaly
Page 27 and 28: Exempel på händelse av regional b
Page 29 and 30: Fallstudieexempel I projektet Regio
Page 31 and 32: Resultaten i Figur 6a visar riskniv
Page 33 and 34: Exempel på och erfarenheter av sve
Page 35 and 36: Genomförande av HACCP och exempel
Page 37 and 38: Erfarenheter Vad är erfarenheterna
Page 39 and 40: gränsvärdena kan de tre övergrip
Page 41 and 42: Modellutvärdering Modellen har i e
Page 43 and 44: Session 2: Säker dricksvattenhante
Page 45 and 46: Projektets formål Fra kontrol til
Page 47 and 48: Tabel 1 Eksempler på vurdering af
Page 49: Increased SCADA Security at Water F
Page 53 and 54: Absent security policies and proced
Page 55 and 56: Summary This paper has given a brie
Page 57 and 58: Hantering av skyddsvärd informatio
Page 59 and 60: Lagstöd I Råd och riktlinjer för
Page 61 and 62: source is assumed (either Rånåfos
Page 63 and 64: Figure 2 Modelled norovirus concent
Page 65 and 66: least at pH 8), as well as it does
Page 67 and 68: The retention time of water in an i
Page 69 and 70: Samband mellan nederbörd uppström
Page 71 and 72: Figur 2. Antal samtal per dygn till
Page 73 and 74: Reduced risk for waterborne virus i
Page 75 and 76: authorities, to provide a complete
Page 77 and 78: Experience from workshops on Good d
Page 79 and 80: It was found that the GDP approach
Page 81 and 82: Acknowledgements: In addition to th
Page 83 and 84: Sjukdomsbilden karaktäriseras av r
Page 85 and 86: Figur 1. Provtagningspunkter. Råva
Page 87 and 88: Adenovirus detection in the river G
Page 89 and 90: A brief description of the UF plant
Page 91 and 92: Invitrogen). After mounting on slid
Page 93 and 94: in a chemically enhanced backwash s
Page 95 and 96: Chemical precipitation in combinati
Page 97 and 98: To mitigate faecal contamination of
Page 99 and 100: Results and Discussion The monitori
Page 101 and 102:
Session 3: Dricksvattenkvalitet Öv
Page 103 and 104:
sampling covers only a small fracti
Page 105 and 106:
Table 1a. Average values of water q
Page 107 and 108:
New methods for on-line detection o
Page 109 and 110:
In the sampling unit the sample is
Page 111 and 112:
The full automatic system can eithe
Page 113 and 114:
In the second spike test, we were i
Page 115 and 116:
Figure 12: E-Coli. Third spiking ex
Page 117 and 118:
Effekten av forbedret vannbehandlin
Page 119 and 120:
plasseres i kø for tilbakespyling.
Page 121 and 122:
Figur 2 Resultater fra måling av A
Page 123 and 124:
Figur 5 Midlere mengde muggsopp i p
Page 125 and 126:
Mixed Bed Filtration in Surface Wat
Page 127 and 128:
Materials and Methods Pilot-Scale S
Page 129 and 130:
Table 4 The characteristics of the
Page 131 and 132:
Figure 3 Turbidity before and after
Page 133 and 134:
Dricksvattenkriser berör oss alla!
Page 135 and 136:
Increased insight in microbial proc
Page 137 and 138:
Preliminary results are indicating
Page 139 and 140:
To optimize the interaction with in
Page 141 and 142:
Figure 1 Total organic carbon (mg L
Page 143 and 144:
Freeman, C., C. D. Evans, et al. (2
Page 145 and 146:
supply networks. The numbers of mic
Page 147 and 148:
change which, with altered temperat
Page 149 and 150:
Methodology Pilot plant for ultrafi
Page 151 and 152:
Figure 2 AFM Height obtained on ref
Page 153 and 154:
Operational experience from fluidiz
Page 155 and 156:
Alkali surplus (mol OH / mol Ca) 1,
Page 157 and 158:
Session 4: Distributionssystem För
Page 159 and 160:
Utveckling av ny teknik med Doppler
Page 161 and 162:
Tryckoptimering med flödesstyrd re
Page 163 and 164:
On-line simulation of water distrib
Page 165 and 166:
The most important elements of the
Page 167 and 168:
AQUA Fingerprint - Early warning fo
Page 169 and 170:
Når flere vandtyper sammenblandes
Page 171 and 172:
Påvirker lett flyktige organiske f
Page 173 and 174:
le den potensielle helserisikoen vu
Page 175 and 176:
Identity and biodegradability of or
Page 177 and 178:
This study is probably the first th
Page 179 and 180:
Abstract in Danish. Hvidovre Forsyn
Page 181 and 182:
Figur 2 Oversigt over sektionering
Page 183 and 184:
Figur 4 Målerbrønde klar til etab
Page 185 and 186:
Figur 7 Udvikling I nattimeforbrug
Page 187 and 188:
published a study according to whic
Page 189 and 190:
lining, a curing period, an examina
Page 191 and 192:
Sikker vannforsyning i vannlednings
Page 193 and 194:
2. Trykkfall som skyldes høye vann
Page 195 and 196:
● Forbud mot ventiler kan lukkes
Page 197 and 198:
Hvis det ikke er mulig å få plass
Page 199 and 200:
3.2.4 Vann til brannslokking og sik
Page 201 and 202:
Genomträngning av kemiska markför
Page 203 and 204:
markvattnet samt fördelningskoeffi
Page 205 and 206:
Swedish work about development of m
Page 207 and 208:
The government agencies have an imp
Page 209 and 210:
References Mäkinen, R. (2008) Drin
Page 212:
Box 47607, 117 94 Stockholm Tel 08
show all

Åttonde Nordiska Dricksvattenkonferensen - Svenskt Vatten

Create successful ePaper yourself

Delete template?

Save as template?