Successfully reported this slideshow.
Your SlideShare is downloading. ×

Industrial Control System Security Overview

Ad

# ??
@CSIT_QUB
Industrial Control
System Security
Overview
Peter Maynard, PhD Researcher

Ad

What is ICS and SCADA
• Industrial Control Systems (ICS):
• Chemical, water, gas processing.
• Transportation, electricity...

Ad

Security Threats to ICS
●
ICS systems have a 40 year life span.
●
Used to use firewall air-gapping to separate
the network...

Ad

Ad

Ad

Ad

Upcoming SlideShare
CSIRS ICS BCS 2.2
CSIRS ICS BCS 2.2
Loading in …3
×

Check these out next

1 of 7 Ad
1 of 7 Ad
Advertisement

More Related Content

Advertisement

Industrial Control System Security Overview

  1. 1. # ?? @CSIT_QUB Industrial Control System Security Overview Peter Maynard, PhD Researcher
  2. 2. What is ICS and SCADA • Industrial Control Systems (ICS): • Chemical, water, gas processing. • Transportation, electricity, nuclear systems. • Supervisory Control And Data Acquisition (SCADA): • SCADA provides remote telemetry control for ICS.
  3. 3. Security Threats to ICS ● ICS systems have a 40 year life span. ● Used to use firewall air-gapping to separate the networks. ● Systems often left un-patched due to system maintainability concerns. ● SCADA protocols developed in the 70s-80s still widely in use. ● Provide no form of encryption or authenticity. – Not implemented in industry.
  4. 4. What we have been working on • European FP7 Project. • Worked with Linz Strom GmbH. – Austrian Electrical Distribution Operator. • Access to real world testbed.
  5. 5. Man-In-The-Middle Attack ● Using our custom Ettercap plugin we’re able to hide an earth fault from the operator. ● Using ARP Spoofing. ● Packet manipulation.
  6. 6. Detection of attacks on ICS • Current signature based systems, SNORT, Bro. – Unable to detect Zero day. – Unable to identify suspicious traffic. e.g. malware, backdoors • Anomaly Detection using Machine Learning. – ICS networks are fairly consistent and predictable.
  7. 7. Questions ?

×