PLC Forensics Based on Control Program Logic Change Detection
نویسندگان
چکیده
Supervisory Control and Data Acquisition (SCADA) system is an industrial control automated system. It is built with multiple Programmable Logic Controllers (PLCs). PLC is a special form of microprocessor-based controller with proprietary operating system. Due to the unique architecture of PLC, traditional digital forensic tools are difficult to be applied. In this paper, we propose a program called Control Program Logic Change Detector (CPLCD), which works with a set of Detection Rules (DRs) to detect and record undesired incidents on interfering normal operations of PLC. In order to prove the feasibility of our solution, we set up two experiments for detecting two common PLC attacks. Moreover, we illustrate how CPLCD and network analyzer Wireshark could work together for performing digital forensic investigation on PLC.
منابع مشابه
Design and PLC Implementation for Speed Control of DC Motor using Fuzzy Logic
In this article, a speed control of DC motor is designed and illustrated using fuzzy logic-based programmable logic controller (PLC). The DC motor is an attractive part of electrical equipment in many industrial applications requiring variable speed and load specifications due to its ease of controllability. The designed system is consisted of three main parts including programmable logic contr...
متن کاملOn Ladder Logic Bombs in Industrial Control Systems
In industrial control systems, devices such as Programmable Logic Controllers (PLCs) are commonly used to directly interact with sensors and actuators, and perform local automatic control. PLCs run software on two different layers: a) firmware (i.e. the OS) and b) control logic (processing sensor readings to determine control actions). In this work, we discuss ladder logic bombs, i.e. malware w...
متن کاملExploring The Use Of PLC Debugging Tools For Digital Forensic Investigations On SCADA Systems
The Stuxnet malware attack has provided strong evidence for the development of a forensic capability to aid in thorough post-incident investigations. Current live forensic tools are typically used to acquire and examine memory from computers running either Windows or Unix. This makes them incompatible with embedded devices found on SCADA systems that have their own bespoke operating system. Cur...
متن کاملAn FPGA implementation of hard-wired sequence control system based on PLC software
Although a Programmable Logic Controller (PLC) has been widely adopted for the sequence control of industrial machinery, its performance does not always satisfy the recent requirements in large and highly responsive systems. With the state-of-the-art FPGA technology, it is possible to implement a control program with hard-wired logic for higher response and reduced implementation cost/space. Th...
متن کاملFUZZY BASED FAULT DETECTION AND CONTROL FOR 6/4 SWITCHED RELUCTANCE MOTOR
Prompt detection and diagnosis of faults in industrial systems areessential to minimize the production losses, increase the safety of the operatorand the equipment. Several techniques are available in the literature to achievethese objectives. This paper presents fuzzy based control and fault detection for a6/4 switched reluctance motor. The fuzzy logic control performs like a classicalproporti...
متن کاملذخیره در منابع من
با ذخیره ی این منبع در منابع من، دسترسی به آن را برای استفاده های بعدی آسان تر کنید
عنوان ژورنال:
- JDFSL
دوره 10 شماره
صفحات -
تاریخ انتشار 2015