CYSE 200T Assignments

Write-up: SCADA Systems

Posted by acomi002 on

Securing SCADA: Mitigating Cybersecurity Risks in Critical Infrastructure

Image created with assistance from OpenAI’s ChatGPT and DALL·E

BLUF

SCADA systems face vulnerabilities due to legacy protocols, increased connectivity, and human factors. SCADA applications can mitigate these risks by incorporating redundancy, enhanced security, and training.

SCADA System Overview

Supervisory Control and Data Acquisition (SCADA), also known as Industrial Control Systems (ICS), monitor and control critical infrastructure processes. (SCADA Systems, n.d.).  These systems contain an interconnected network of sensors and actuators, Programmable Logic Controllers (PLCs), Remote Terminal/Telemetry Units (RTUs), Human-machine Interfaces (HMI), and data servers. SCADA systems provide real-time monitoring, data acquisition and analysis, remote control and automation, alarm management, and data visualization and decision support.

Vulnerabilities

  • Legacy Protocols: Networked SCADA systems provide better communication protocols, reduce costs, and provide remote access. However, most deployed SCADA systems were not designed for connected networks and lack the associated security protocols. The majority of the SCADA communication protocols are plain-text without encryption or authentication features. (Nazir et al., 2017). Vulnerable data communication can be exploited to gain control of the system.
  • Connectivity. Networked, internet-accessible systems dramatically increase exposure to cyberattacks. Internet and cellular communication use web technologies known to have security gaps. (Nazir et al., 2017). Connected SCADA systems can now be targets for malware, denial-of-service (DoS) attacks, and man-in-the-middle (MITM) attacks.
  • Human Factors: SCADA systems require human interaction. Organizations are prone to social engineering and insider attacks. Additionally, system misconfigurations or delayed responses increase the risk of cyber-attack. (Nazir et al., 2017).

Mitigating Risk

  • Redundancy: SCADA system design should incorporate redundant pathways and hardware.  Well-designed systems are configured with multiple servers and hardware that are on hot standby to automatically take over functions in the event of a cyber-attack or failure. (SCADA Systems, n.d.).
  • Enhanced Security: SCADA systems are implementing specialized industrial VPNs and firewalls to increase network security. (SCADA Systems, n.d.). Distributed Intrusion Detection Systems (DIDS) designed specifically for SCADA systems are also being utilized. (Nejeh, 2017). DIDS can monitor multiple points, including sensors, controllers, servers, and communication lines, providing comprehensive coverage across a SCADA system.
  • Training: Simulated testing environments such as OMNeT++ and SCADASiM are used to replicate SCADA systems. (Nazir et al., 2017). These frameworks provide safe training conditions to simulate cyberattacks and evaluate vulnerabilities without risking actual infrastructure. The controlled experiments are used to test cyberattack response protocols and provide effective training to personnel.  

Conclusion

SCADA systems are essential to managing critical infrastructure. However, their legacy protocols, increased connectivity, and human factors expose them to cyberattacks. Applying the tenets of the CIA Triad with a heavier focus on Accessibility is appropriate. (Nazir et al., 2017). These risks can be mitigated by implementing redundancy, enhanced security, and simulated training applications in SCADA systems.

References

Lakhoua, N. M. (2017). Review on SCADA Cybersecurity for Critical Infrastructures. Journal of Computer Science and Control Systems, 10(1), 15.

Nazir, S., Patel, S., & Patel, D. (2017). Assessing and augmenting SCADA cyber security: A survey of techniques. Computers & Security, 70, 436–454. https://doi.org/10.1016/j.cose.2017.06.010

SCADA Systems. (n.d.). https://www.scadasystems.net/

Leave a Reply

Your email address will not be published. Required fields are marked *