Using SCADA to Protect Critical Infrastructure and Systems

Posted by pbrow010 on

When thinking about critical infrastructure we might think about airports, seaports, power grid, power plants and the like. The importance in protecting and securing this infrastructure is obvious. However, how to begin might be less clear. Supervisory control and data acquisition (SCADA) were developed to help and actualize this sort of protection. In an article on scadasystems.net it is stated that, “Supervisory control and data acquisition – SCADA refers to ICS (industrial control systems) used to control infrastructure processes […], facility-based processes […] or industrial processes[…].” (scadasystems.net). The truth is that these systems are vulnerable to a wide assortment of attacks just like other technological systems. An article from Panda Security states, “As the report shows, the most frequent vulnerabilities are those related to obtaining confidential or sensitive data from companies. It also highlights the use of algorithms to steal passwords for computers and user accounts, and hence, access company information.” (pandasecurity.com). This points out how critical infrastructure systems are susceptible to the same sort of attacks as other businesses. A bad actor might be trying to steal data about a particular airport system or attempt DoS on the power grid. The point is that all the attacks we try to defend against in other organizations are present, but the attacks result can be more dangerous for the society hit.

            Luckily, SCADA has proven quite beneficial for professionals tasked with protecting critical infrastructure. The architecture of SCADA allows for high visibility on processes and data from key components in the ICS such as pumps, valves and transmitters. Monitoring and control of automated processes in the ICS is made possible by using SCADA systems. The automation and supervisory control allow for centralized control during times of concern opposed to the need to access the physical location of the ICS component causing concern.

References

Panda Security Panda Security specializes in the development of endpoint security products and is part of the WatchGuard portfolio of IT security solutions. Initially focused on the development of antivirus software. (2019, October 21). Vulnerabilities in critical infrastructure increased 14% in 2018. Retrieved November 08, 2020, from https://www.pandasecurity.com/en/mediacenter/news/vulnerabilities-critical-infrastructures/

SCADA Systems. (n.d.). Retrieved November 08, 2020, from http://www.scadasystems.net/

Leave a Reply

Your email address will not be published. Required fields are marked *