Poster: Improving SCADA Security with Context-aware Network Profiling
نویسندگان
چکیده
SCADA (Supervisory Control and Data Acquisition) systems are computer systems used for monitoring and controlling industrial processes such as power plants and power grid systems, water, gas and oil distribution, production systems for food, cars and other products. In the current effort we propose a new approach for deviation monitoring in SCADA networks. We use statistics extracted from parsed protocol messages to build models of usual plant operations. We validate our approach using network traffic from five real-life SCADA installations operating on three common industrial protocols.
منابع مشابه
A Testbed for locally Monitoring SCADA Networks in Smart Grids
This paper proposes a testbed for validating how our process-aware monitoring approach is able to increase the security of decentralized SCADA networks in power grids. The testbed builds on the simulation framework Mosaik, and cosimulates in an integrated way, the power distribution network itself, and the control network (Modbus/TCP). By extending the existing Mosaik framework with with a SCAD...
متن کاملCAMAC: a context-aware mandatory access control model
Mandatory access control models have traditionally been employed as a robust security mechanism in multilevel security environments such as military domains. In traditional mandatory models, the security classes associated with entities are context-insensitive. However, context-sensitivity of security classes and flexibility of access control mechanisms may be required especially in pervasive c...
متن کاملUsing a Specification-based Intrusion Detection System to Extend the DNP3 Protocol with Security Functionalities
Modern SCADA systems are increasingly adopting Internet technologies to control distributed industrial assets. As proprietary communication protocols are increasingly being used over public networks without efficient protection mechanisms, it is increasingly easier for attackers to penetrate into the communication networks of companies that operate electrical power grids, water plants, and othe...
متن کاملImproving SCADA Control Systems Security with Software Vulnerability Analysis
Cyber security threats and attacks are greatly affecting the security of critical infrastructure, industrial control systems, and Supervisory Control and Data Acquisition (SCADA) control systems. Despite growing awareness of security issues especially in SCADA networks, there exist little or scarce information about SCADA vulnerabilities and attacks. The emergence of Internet and World Wide Web...
متن کاملA semantic-aware role-based access control model for pervasive computing environments
Access control in open and dynamic Pervasive Computing Environments (PCEs) is a very complex mechanism and encompasses various new requirements. In fact, in such environments, context information should be used in access control decision process; however, it is not applicable to gather all context information completely and accurately all the time. Thus, a suitable access control model for PCEs...
متن کامل