What's under the hood? Improving SCADA security with process awareness

Justyna Joanna Chromik, Anne Katharina Ingrid Remke, Boudewijn R.H.M. Haverkort

    Research output: Chapter in Book/Report/Conference proceedingConference contributionAcademicpeer-review

    5 Citations (Scopus)
    96 Downloads (Pure)

    Abstract

    SCADA networks are an essential part of monitoring and controlling physical infrastructures, such as the power grid. Recent news item show that tampering with the data exchanged in a SCADA network occurs and has severe consequences. A possible way of improving the security of SCADA networks is to use intrusion detection systems. By monitoring and analysing the traffic, it is possible to detect whether information has a legitimate source or was tampered with. However, in many cases the knowledge of just the traffic is not enough. Detecting intrusions could be improved by including awareness about the physical processes that are controlled. This paper shows a simple analysis of a small scenario of a power distribution system, to illustrate the benefits of including the knowledge about the process in detecting breaches in SCADA.
    Original languageUndefined
    Title of host publicationProceedings of the Joint Workshop on Cyber-physical Security and Resilience in Smart Grids (CPSR-SG 2016)
    Place of PublicationUSA
    PublisherIEEE
    Pages-
    Number of pages6
    ISBN (Print)978-1-5090-1165-0
    DOIs
    Publication statusPublished - 12 Apr 2016

    Publication series

    Name
    PublisherIEEE

    Keywords

    • METIS-318500
    • IR-101864
    • EWI-27160

    Cite this

    Chromik, J. J., Remke, A. K. I., & Haverkort, B. R. H. M. (2016). What's under the hood? Improving SCADA security with process awareness. In Proceedings of the Joint Workshop on Cyber-physical Security and Resilience in Smart Grids (CPSR-SG 2016) (pp. -). USA: IEEE. https://doi.org/10.1109/CPSRSG.2016.7684100
    Chromik, Justyna Joanna ; Remke, Anne Katharina Ingrid ; Haverkort, Boudewijn R.H.M. / What's under the hood? Improving SCADA security with process awareness. Proceedings of the Joint Workshop on Cyber-physical Security and Resilience in Smart Grids (CPSR-SG 2016). USA : IEEE, 2016. pp. -
    @inproceedings{dbe33d7258d34d7aa6cbf8ea5843a35e,
    title = "What's under the hood? Improving SCADA security with process awareness",
    abstract = "SCADA networks are an essential part of monitoring and controlling physical infrastructures, such as the power grid. Recent news item show that tampering with the data exchanged in a SCADA network occurs and has severe consequences. A possible way of improving the security of SCADA networks is to use intrusion detection systems. By monitoring and analysing the traffic, it is possible to detect whether information has a legitimate source or was tampered with. However, in many cases the knowledge of just the traffic is not enough. Detecting intrusions could be improved by including awareness about the physical processes that are controlled. This paper shows a simple analysis of a small scenario of a power distribution system, to illustrate the benefits of including the knowledge about the process in detecting breaches in SCADA.",
    keywords = "METIS-318500, IR-101864, EWI-27160",
    author = "Chromik, {Justyna Joanna} and Remke, {Anne Katharina Ingrid} and Haverkort, {Boudewijn R.H.M.}",
    note = "eemcs-eprint-27160",
    year = "2016",
    month = "4",
    day = "12",
    doi = "10.1109/CPSRSG.2016.7684100",
    language = "Undefined",
    isbn = "978-1-5090-1165-0",
    publisher = "IEEE",
    pages = "--",
    booktitle = "Proceedings of the Joint Workshop on Cyber-physical Security and Resilience in Smart Grids (CPSR-SG 2016)",
    address = "United States",

    }

    Chromik, JJ, Remke, AKI & Haverkort, BRHM 2016, What's under the hood? Improving SCADA security with process awareness. in Proceedings of the Joint Workshop on Cyber-physical Security and Resilience in Smart Grids (CPSR-SG 2016). IEEE, USA, pp. -. https://doi.org/10.1109/CPSRSG.2016.7684100

    What's under the hood? Improving SCADA security with process awareness. / Chromik, Justyna Joanna; Remke, Anne Katharina Ingrid; Haverkort, Boudewijn R.H.M.

    Proceedings of the Joint Workshop on Cyber-physical Security and Resilience in Smart Grids (CPSR-SG 2016). USA : IEEE, 2016. p. -.

    Research output: Chapter in Book/Report/Conference proceedingConference contributionAcademicpeer-review

    TY - GEN

    T1 - What's under the hood? Improving SCADA security with process awareness

    AU - Chromik, Justyna Joanna

    AU - Remke, Anne Katharina Ingrid

    AU - Haverkort, Boudewijn R.H.M.

    N1 - eemcs-eprint-27160

    PY - 2016/4/12

    Y1 - 2016/4/12

    N2 - SCADA networks are an essential part of monitoring and controlling physical infrastructures, such as the power grid. Recent news item show that tampering with the data exchanged in a SCADA network occurs and has severe consequences. A possible way of improving the security of SCADA networks is to use intrusion detection systems. By monitoring and analysing the traffic, it is possible to detect whether information has a legitimate source or was tampered with. However, in many cases the knowledge of just the traffic is not enough. Detecting intrusions could be improved by including awareness about the physical processes that are controlled. This paper shows a simple analysis of a small scenario of a power distribution system, to illustrate the benefits of including the knowledge about the process in detecting breaches in SCADA.

    AB - SCADA networks are an essential part of monitoring and controlling physical infrastructures, such as the power grid. Recent news item show that tampering with the data exchanged in a SCADA network occurs and has severe consequences. A possible way of improving the security of SCADA networks is to use intrusion detection systems. By monitoring and analysing the traffic, it is possible to detect whether information has a legitimate source or was tampered with. However, in many cases the knowledge of just the traffic is not enough. Detecting intrusions could be improved by including awareness about the physical processes that are controlled. This paper shows a simple analysis of a small scenario of a power distribution system, to illustrate the benefits of including the knowledge about the process in detecting breaches in SCADA.

    KW - METIS-318500

    KW - IR-101864

    KW - EWI-27160

    U2 - 10.1109/CPSRSG.2016.7684100

    DO - 10.1109/CPSRSG.2016.7684100

    M3 - Conference contribution

    SN - 978-1-5090-1165-0

    SP - -

    BT - Proceedings of the Joint Workshop on Cyber-physical Security and Resilience in Smart Grids (CPSR-SG 2016)

    PB - IEEE

    CY - USA

    ER -

    Chromik JJ, Remke AKI, Haverkort BRHM. What's under the hood? Improving SCADA security with process awareness. In Proceedings of the Joint Workshop on Cyber-physical Security and Resilience in Smart Grids (CPSR-SG 2016). USA: IEEE. 2016. p. - https://doi.org/10.1109/CPSRSG.2016.7684100