SCADA Cybersecurity in Factories of the Future

未来工厂的 SCADA 网络安全

• 批准号: 2514671
• 金额: --
• 依托单位: University of Glasgow
• 依托单位国家: 英国
• 项目类别: Studentship
• 财政年份: 2017
• 资助国家: 英国
• 起止时间: 2017 至 无数据
• 项目状态: 已结题
• 来源: https://gtr.ukri.org/projects?ref=studentship-2514671
• 关键词: SCADA; Cybersecurity; Factories; Future

The integrity and security of ICS and SCADA systems are absolutely central to their function and reliable availability. Despite this, appropriate security-related technologies and methodologies are limited and still very much in their early development.This project proposes the development of a baseline metric model for the classification of the overall vulnerability level of ICS and SCADA components and devices, used across the supply chain. A supply chain here refers to the variety of devices that could potentially be used to manufacture a product, or execute a process. A metric model of this type will help industries identify how vulnerable a specific component is, such as a Programmable Logic Controller (PLC) or a Remote Terminal Unit (RTU), within a wider risk assessment. The application of baseline metric systems to the evaluation of the security of computer systems and networks is not in itself a new approach. One example has been produced by the Communications-Electronics Security Group (CESG), and provides security guidance for cloud computing environments [1]. It consists of a set of security principles forming baseline guidance for public sector organizations who handle sensitive data via cloud services. Another notable example is the ISA 62443 Standard [2]. This standard draws on conformance metrics to establish a baseline model for quantifying compliance to Industrial Automation and Control System (IACS) security practices. Another group have explored the quantitative assessment of vulnerabilities within SCADA systems, primarily elaborating on the cost/benefit calculations for risk management, thereby allowing managers to make more informed security decisions [3]. Furthermore, other studies have developed a quantitative model that could be used to aggregate vulnerability metrics, specifically for enterprise IT and networks [4]. The research proposed here will further develop and extend the baseline metric methodology as applied to security, with a particular focus on the vulnerability analysis of critical infrastructure components. This research will result in the development of usable models and methods that will aide the process of risk assessment and management of ICS/SCADA components and systems. Proposed are four key phases to the project, resulting in multiple deliverables throughout the period of the research, and these are defined below. There is one primary overall hypothesis for the project, and four separate secondary hypotheses, one for each phase, as illustrated below under each phase heading. - Primary Hypothesis: The formation of a metric system will (i) aid the process of security management in ICS environments, (ii) help individuals to make decisions regarding risk management, and (iii) contribute to the development and implementation of more informedand cost-effective decision making for security safeguards.

ICS和SCADA系统的完整性和安全性对其功能和可靠性至关重要。尽管如此，适当的安全相关的技术和方法是有限的，仍然在他们的早期development.This项目提出了一个基线度量模型的分类ICS和SCADA组件和设备的整体脆弱性水平的发展，在整个供应链中使用。这里的供应链是指可能用于制造产品或执行流程的各种设备。这种类型的度量模型将帮助行业在更广泛的风险评估中识别特定组件的脆弱程度，例如可编程逻辑控制器（PLC）或远程终端单元（RTU）。应用基线度量系统来评估计算机系统和网络的安全性本身并不是一种新的方法。其中一个例子是由通信电子安全小组（CESG）提出的，它为云计算环境提供了安全指导[1]。它包括一套安全原则，为通过云服务处理敏感数据的公共部门组织提供基线指导。另一个值得注意的例子是伊萨62443标准[2]。本标准利用一致性度量来建立一个基准模型，用于量化工业自动化和控制系统（IACS）安全实践的合规性。另一个小组探索了对SCADA系统内漏洞的定量评估，主要阐述了风险管理的成本/收益计算，从而使管理者能够做出更明智的安全决策[3]。此外，其他研究已经开发出一种定量模型，可用于聚合脆弱性指标，特别是针对企业IT和网络[4]。这里提议的研究将进一步发展和扩展适用于安全的基准度量方法，特别侧重于关键基础设施组件的脆弱性分析。这项研究将导致可用的模型和方法，这将有助于风险评估和ICS/SCADA组件和系统的管理过程的发展。提出了项目的四个关键阶段，在整个研究期间产生多个可交付成果，这些成果定义如下。该项目有一个主要的总体假设，四个独立的次要假设，每个阶段一个，如下面每个阶段标题下所示。- 主要假设：度量系统的形成将（i）有助于ICS环境中的安全管理过程，（ii）帮助个人做出有关风险管理的决策，以及（iii）有助于制定和实施更信息化和更具成本效益的安全保障决策。