Process Control Network Security

More documents

Recommendations

Info

Subject Office IT PCNplans (e.g. other locations)can be implemented.the costs of a failure (e.g. lossof human life).SystemCentral computer systemwith large files systems ordatabases.Full distributed system, manysmall systems, many differentvendors.RelationuserwithMany users for one system(e.g. mail, SAP).Limited users for a system (e.g.operator).InnovationNew releases (e.g. once ayear) by vendor.Iterative process with manysmall changes anywhere in theprocess.RelationvendorswithThere is one supplier /main contractor.There are many suppliers /contractors.Developmentand changesOff-line tests possible,there is a time forevaluation.Repeated configurations.Due to interaction withproduction, there is hardly timefor testing.Specialized systems: one–offconfigurations.Table 2 – Office IT versus PCNsDue to the different characteristics between PCNs and Office IT, theConfidentiality, Integrity and Availability also have different priorities in these twoenvironments. In the Office IT environment, in most cases the confidentiality(e.g. patents, privacy related information, BI information) is more important thanthe availability. However, in the PCNs, the availability is more important than theconfidentiality (e.g. shutdown of a whole plant if some parts malfunction).4.3 Common misconceptions about PCN securityTo conclude this chapter, we would like to present some common misconceptionsabout PCN security as identified by Riptech [RIP01].4.3.1 The SCADA system resides on a physically separate,standalone networkMost SCADA systems were originally built before and often separate from othercorporate networks (refer to Section 3.4 - Communication Topology (past vs.current)). As a result, IT managers typically operate on the assumption thatthese systems cannot be accessed through corporate networks or from remoteaccess points. Unfortunately, this belief is usually fallacious as in reality; PCNsand corporate IT systems are often bridged for remote access or businessintelligence information purposes.4.3.2 Connections between SCADA systems and othercorporate networks are protected by strong accesscontrolsMany of the interconnections between office networks and PCNs require theintegration of systems with different communications standards. The result isoften an infrastructure that is engineered to move data successfully between twounique systems. Due to the complexity of integrating disparate systems, networkengineers often fail to address the added burden of accounting for security risks.Process Control Network Security Page 18
As a result, access controls designed to protect PCN from unauthorized accessthrough office networks are usually minimal, which is largely attributable to thefact that network managers often overlook key access points connecting thesenetworks.4.3.3 SCADA systems require specialized knowledge,making them difficult for network intruders to accessand controlAs discussed in Section 3.4, more and more proprietary components in PCNs arebeing replaced by standardized components and network infrastructure. ModernPCN systems use for example Ethernet and standardized protocols (e.g. Modbus).The use of standardized network protocols allows even script kiddies to attackthese systems without in-depth knowledge. Automated vulnerability scanners likeTenable Nessus that is widely used even include all kinds of SCADA plug-ins[TEN09] to automatically detect weaknesses in the PCN environment.Process Control Network Security Page 19
Page 1 and 2: Process Control Network SecurityCom
Page 3 and 4: Table of ContentsPreface ..........
Page 5 and 6: 1 Introduction1.1 IntroductionFor t
Page 7 and 8: 2 Research ApproachThis chapter wil
Page 9 and 10: The relationship between CIA and ST
Page 11 and 12: The picture below shows some typica
Page 13 and 14: 3.4 Communication Topology (past vs
Page 15 and 16: 4 PCNs vs. Office IT4.1 Introductio
Page 17: The differences mentioned above and
Page 21 and 22: - unpatched machines within the PCN
Page 23 and 24: In addition, the scale on which cyb
Page 25 and 26: The list below presents examples of
Page 27 and 28: SpoofingidentityTamperingwith dataR
Page 30 and 31: SpoofingidentityTamperingwith dataR
Page 32 and 33: does hardly take place. Unauthorize
Page 34 and 35: The US department for Homeland Secu
Page 36 and 37: • Inadequate logical access restr
Page 38 and 39: functionality. These firewalls shou
Page 40 and 41: NIST 800-53 control AC-2 describes
Page 42 and 43: 1 Unsupported systemsThe following
Page 44 and 45: CategoryControlIncreasedinterconnec
Page 46 and 47: CategoryControlcomponents.4.5 In si
Page 48 and 49: 2 Increased interconnectivity (e.g.
Page 50 and 51: 9 ReflectionDuring the writing of t
Page 52 and 53: [GIA09][GOOD08][ITIL09][MCA09][MS09
Page 54 and 55: [TEN09][THER01]SCADA plugins for Ne
Page 56 and 57: I.2.1.4 SummaryThe table below summ
Page 58 and 59: Shared resourcesinsufficientlyaddre
Page 60 and 61: where it is stored. If an unauthori
Page 62 and 63: Replay attacks:A replay attack is a
Page 64 and 65: TCP/IP:The TCP/IP model is a descri

Process Control Network Security

Create successful ePaper yourself

Delete template?

Save as template?