SCADA Exposure Will Short-Circuit US Utilities
1 like133 views
Supervisory Control And Data Acquisition (SCADA) networks are used to control large industrial machines and systems remotely. SCADA systems were designed for efficiency, not security, so they are vulnerable to exploitation. There are numerous entry points for attackers, including wireless networks connecting SCADA systems, gateways between computer and SCADA networks, and modifying unencrypted command traffic. Organizations need to implement controls separating SCADA networks, monitor for abnormalities, regularly upgrade firmware, and consider the human element for securely controlling SCADA systems.
SCADA Exposure Will Short-Circuit US Utilities
- 1. Restricting Authenticating Tracking User Access? Time Is Not On Our Side! Page 1 of 2 12100 Sunrise Valley Dr. Suite 290-1 Reston, VA 20191 Supervisory Control And Data Acquisition (SCADA) networks pervade the industry. These small microcontroller systems are used to control large industrial machines and systems. SCADA systems are predominantly used for monitoring industrial systems, often in remote locations. Typically remote terminal units and Programmable Logic Controllers are connected to enterprise networks using a “telemetry” network. Where the telemetry network meets the enterprise computer network, gateways permit two-way communications between the SCADA network and the traditional corporate network. SCADA systems were designed to be highly efficient, but they were not necessarily designed with security in mind. Because security was not the primary consideration, SCADA telemetry networks may be highly vulnerable to exploitation. Because SCADA systems control and provide feedback on industrial processes, exploitation of these systems could seriously disrupt key industrial processes, such as power generation, lift and crane systems, and transportation systems. There are numerous entry points to SCADA telemetry networks: • Compromise of WLAN and/or wireless networks that connect SCADA systems to each other and to control systems • Compromise of gateways from traditional computer networks to the SCADA network • Improper physical access to key control systems • Access to telemetry networks and modification of command-level traffic (typically this traffic is unencrypted) • Application-level vulnerabilities in SCADA control software • SCADA traffic encapsulated in TCP/IP and transmitted over public networks SCADA exposure will short-circuit US utilities! What is it? Where are the vulnerabilities? • What should be considered? SCADA systems were designed to be highly efficient, but they were not necessarily designed with security in mind.
- 2. COPYRIGHT © 2015 VIMRO, LLC. ALL RIGHTS RESERVED. ALL REFERENCED COMPANY NAMES AND LOGOS ARE TRADEMARKS OF THEIR RESPECTIVE OWN These vectors are but a limited selection of the entry points for SCADA networks. Because of the traditional use of SCADA networks, encryp- tion of traffic between endpoints is often forgone. The most memorable SCADA attack was STUXNET. STUXNET attacked the centrifuge control SCADA systems in Iran, rendering them useless. Organizations need a structured approach to securing SCADA systems. While firmware manufacturers may be slow to respond to security requirements, organizations must take the following preventive initia- tives: • Implement simple but effective controls that separate SCADA networks from general computer network systems. • Monitor SCADA system activities for abnormal conditions. • Upgrade and assess SCADA firmware on a regular basis. • Where bounds checking has been implemented (for controller move- ment such as stepper-motor controlled systems), the configuration scripts for SCADA devices must cover movement bounds to avoid damaging control hardware. Finally, while there are many technological aspects to controlling SCADA systems, we cannot overlook the human element. Contact VIMRO now to learn more about how to secure SCADA systems, telemetry networks, and gateway systems—and to control the human effect on SCADA systems. (800) 272 0019 Ashburn, VA | Baltimore, MD | Boston, MA | Glendale, CA | Las Vegas, NV | Reston, VA | San Diego, CA | Tampa, FL Authored by VIMRO’s Cybersecurity Leaders SCADA exposure will short-circuit US utilities! Page 2 of 2 The most memorable SCADA attack was STUXNET!