A Survey on Programmable Logic Controller Vulnerabilities, Attacks, Detections, and Forensics

Programmable Logic Controllers (PLCs), as specialized task-oriented embedded field devices, play a vital role in current industrial control systems (ICSs), which are composed of critical infrastructure. In order to meet increasing demands on cost-effectiveness while improving production efficiency, commercial-off-the-shelf software and hardware, external networks such the Internet, integrated into PLC-based systems. However, it also provides opportunities for adversaries launch malicious, targeted, sophisticated cyberattacks. To that end, there is an urgent need summarize ongoing work vulnerabilities, attacks, security detection schemes researchers practitioners. Although surveys similar topics exist, they less involved three key aspects, follows: First foremost, previous focused more system-level vulnerability analysis than PLC itself. Subsequently, was not clear whether their applied or future ones, especially schemes. Finally, prior lacked digital forensic research review systems, significant at different stages. As result, we highlight both core component level system level, well attack models against availability, integrity, confidentiality. Meanwhile, reviews provided. discuss next-generation