Electricity for Free? The Dirty Underbelly of SCADA and Smart Meters

More documents

Recommendations

Info

Methodology Used for SCADA AssessmentsRed Tiger Security’s Assessment Approach for SCADAOver the past nine years of conducting security assessments of SCADA systems andperforming research in the field of SCADA security, we have found that unless you use adefense-in-depth approach of assessing all components of the system, then small vulnerabilitiescan be used as threat vectors into the system.Since we have been involved in the development and bench marking of several control systemssecurity regulations and standards, we developed our assessment methodology in compliancewith NERC CIP, ISA S99, and NIST 800-53 requirements for SCADA and Process ControlSystems. We start with a review of the physical controls in place that restrict physical access tothe systems used for monitoring and control. Then we use a “Follow-the-Wire” approach toanalyze all of the digital components in the path from outside connections, through the networkinfrastructure, computing systems, applications, protocols, and lastly the field devices.The diagram below shows how our six layer approach maps to the physical control systemsnetwork infrastructure, hardware, applications, protocols and field equipment.pg [ 10 ]
Our assessment approach was designed to ensure that each protective layer helps secure thelayer(s) below it. For example, the physical controls should protect access to the networkinfrastructure, which should restrict access over the network to the DMZ and host systems downin the control room environment. Since the field devices do more than just monitor the system,and are used for control functions, these are the most vulnerable and have the biggest impact tothe reliability and availability of the system. That is why SCADA field devices must have themost protective controls in place.This is the same methodology and approach that we use for assessments of DCS (distributivecontrol systems), EMS (energy management systems), DMS (distribution managementsystems), AMR (automated meter reading) systems, and other mission-critical systems thathave similar 24x7 uptime requirements and system components.pg [ 11 ]
Page 1 and 2: sorryElectricity for Free?The Dirty
Page 3 and 4: IntroductionSCADA Systems control t
Page 5 and 6: Typical Generation System Diagrampg
Page 7 and 8: Typical Transmission System Diagram
Page 9: Typical Distribution System Diagram
Page 13: SCADA Vulnerability StatisticsHavin
Page 16 and 17: SCADA, how can I own thee, let me c
Page 20 and 21: Appendix A - Test Results with Comm
Page 22 and 23: We used the programming software to
Page 24: Appendix C - Some Smart Meter Vendo

Electricity for Free? The Dirty Underbelly of SCADA and Smart Meters

Create successful ePaper yourself

Delete template?

Save as template?