IT Security for SCADA: A Position Paper

IT Security for SCADA: A Position Paper

Rahul Rastogi (Engineers India Limited, New Delhi, India and Nelson Mandela Metropolitan University, Port Elizabeth, South Africa) and Rossouw von Solms (Nelson Mandela Metropolitan University, Port Elizabeth, South Africa)
Copyright: © 2015 |Pages: 9
DOI: 10.4018/IJCWT.2015070102
OnDemand PDF Download:
$30.00
List Price: $37.50

Abstract

SCADA (Supervisory Control and Data Acquisition System) is a cyber-physical system, wherein IT (Information Technology) components work in conjunction with field devices to control a physical process. The security of these IT components becomes crucial in view of the damaging effects that any security breach of these IT components can have on the underlying physical process. In response to this critical issue, various governments across the world have recognized the issue of SCADA security and have initiated the creation of a regulatory framework for mandating SCADA security in their respective countries. This paper provides a brief overview of the cyber-security issues of SCADA and the implications of Stuxnet for SCADA security. The paper reviews the steps taken by the governments of India and South Africa; and it provides guidance to the owners of SCADA regarding SCADA security, as mandated by the Government of India.
Article Preview

2. It Security For Scada

SCADA consists of many IT components, viz. servers, networking systems, databases, web-servers, SCADA software, operating systems etc. The SCADA system is also interfaced with Programmable Logic Controllers (PLCs) and Remote Terminal Units (RTUs). The PLCs and RTUs are, in turn, connected to sensors and actuators. PLCs and RTUs are also IT components, albeit as special-purpose computers with special-purpose software. SCADA systems depend upon networking for communicating the data to various components. LAN/WAN technologies are used to interconnect these components within a location, or across multiple locations. Web-servers are often used to make SCADA accessible on the Internet.

For support and remote maintenance, remote access is also enabled.

The same security issues that affect IT systems in general also affect SCADA. Bugs are present in the SCADA system software; and new ones are being discovered on an ongoing basis. Since, the SCADA software runs on computers, the security issues of the underlying operating system and any other software on the computers also become relevant. The use of networking, together with its inherent weaknesses in the communication protocols, is also relevant for the security of SCADA. Since, SCADA systems are to be accessed by people, issues related to password security and access rights become important. In order to share and move information between systems, USB thumb-drives or other removable media may be used; however, these increase the chance of a virus infection.

Finally, the use of networking also means that all vulnerabilities can be exploited remotely, and local access to the SCADA system is not mandatory. The use of Internet connectivity means that potentially, any hacker in the world can attack the SCADA system. All the above factors combine to increase substantially the SCADA attack surface. Some of the attacks that a SCADA system can face include the following:

Complete Article List

Search this Journal:
Reset
Open Access Articles: Forthcoming
Volume 7: 4 Issues (2017)
Volume 6: 4 Issues (2016)
Volume 5: 4 Issues (2015)
Volume 4: 4 Issues (2014)
Volume 3: 4 Issues (2013)
Volume 2: 4 Issues (2012)
Volume 1: 4 Issues (2011)
View Complete Journal Contents Listing