SCADA Security

The world’s manufacturing, energy and transportation infrastructures are currently facing a serious security crisis. These critical systems are largely based on legacy SCADA and Industrial Control System (ICS) products and protocols. Many of these products are decades old and were never designed with security in mind.

The good news is that there is an effective and easy-to-deploy solution to this security crisis. Using an advanced technology called “Deep Packet Inspection” (DPI), SCADA-aware firewalls offer fine-grained control of control system traffic.

A number of previously unknown security vulnerabilities in the CoDeSys Ladder Logic Runtime product, plus fully functional attack tools that exploit them, have been publically disclosed.

While CoDeSys is not widely known in the SCADA and ICS field, its product is embedded in many popular PLCs and industrial controllers. There is a risk that criminals or political groups may attempt to exploit the vulnerabilities for either financial or ideological gain. 

Article from: Automation and Control Technical, October 2012

Recently Eric Byres addressed the difference between SCADA, ICS and other jargon in our industry. In this article Erik Schweigert addresses a question he is often asked “Why are industrial networks so hard to secure?” This is a big topic, so for now he simply addresses “Why are PLCs so insecure?”

Article from: SA Instrumentation & Control, September 2012

In this article, Extech Safety Systems discusses the susceptibility of critical SCADA systems to security issues. The solution is an architecture called Scadanet that provides a simple and secure encryption system between control devices.

Article from: IT & Production Magazine, March 2012

In this article Eric Byres discusses the myth that an air gap between the control network and the buisness network provides security.

Read about why Eric thinks this concept is a "fairy tale"

Cyber security threats, from sophisticated malware like Stuxnet, Night Dragon and Duqu, or from the publishing of an unprecedented number of security vulnerabilities, are causing a major disruption in the industrial automation market.

If you are a process control engineer, an IT professional in a company with an automation division, or a business manager responsible for safety or security, you may be wondering how your organization can get moving on more robust cyber security practices. 

Two industry veterans, Eric Byres and John Cusimano, combine industry standards, best practice materials, and their real-world experience to provide an easy-to-follow 7-step process for improved ICS and SCADA security.

AusCERT 2011: Eric Byres demonstrates SCADA protection

Article in: Electric Energy Magazine, December 2011

Supervisory Control and Data Acquisition (SCADA) systems have undergone a technological revolution over the past 20 years that has been nothing short of mind-boggling.

In this article, Scott Howard, System Architect at Byres Security Inc., explains how the integration of new technologies can subject existing SCADA systems to new stresses and threat sources that the systems were never designed to handle.

Presentation from: Tofino Security, October 2011

"SCADA and CIP Security in a Post-Stuxnet World" summarizes a lot of information about the Stuxnet malware and how it has affected SCADA and CIP security. The presentation also goes into detail about the possibilities of a Son-of-Stuxnet.

The presentation is ideal for anyone needing a crash course on Stuxnet, or as a tool for informing management about the implications of it.

A number of previously unknown security vulnerabilities in the 7-Technologies Interactive Graphics SCADA System (IGSS) product have been publically disclosed. The release of these vulnerabilities included proof-of-concept (PoC) exploit code.

This White Paper summarizes the current known facts about these vulnerabilities. It also summarizes the actions that operators of SCADA and ICS systems can take to protect critical operations.

A number of previously unknown security vulnerabilities in the ICONICS^TM GENESIS32^TM and GENESIS64^TM ICS/SCADA products have been publically disclosed.

This White Paper documents the current known facts about these vulnerabilities. It then summarizes the actions that operators of SCADA and ICS systems can take to protect critical operations.  

Presentation from:  Byres Security, March 2011

"What Does Stuxent Mean for Industrial Control Systems - The Future of Critical Infrastructure Security"  summarizes a lot of information about the Stuxnet malware and discusses what it means for the future of SCADA and ICS security.

This presentation is ideal for anyone needing a crash course on Stuxnet, or as a tool for informing management about the implications of it.