s Cada Summary Lsn

8/16/2019 s Cada Summary Lsn

1/23

SCADA SecuritySCADA Security

Supervisory Control and Data AcquisitionSupervisory Control and Data Acquisition

Mr Mark RydellMr Mark Rydell


2/23

SCADA LessonSCADA Lesson

What is SCADA?What is SCADA?

Why is SCADA Security important?Why is SCADA Security important?

How SCADA Systems EvolvedHow SCADA Systems Evolved


3/23

SCADA systemsSCADA systems

SCADA Supervisory Control and DataSCADA Supervisory Control and DataAcquisitionAcquisition

SCADA systems are vital components o!SCADA systems are vital components o!

most nation"s critical in!rastructuresmost nation"s critical in!rastructures SCADA systems control#SCADA systems control#

$ %as pipelines%as pipelines

$ Water and wastewater systemsWater and wastewater systems

$ &ransportation systems&ransportation systems$ Electrical 'tilitiesElectrical 'tilities

$ Re!ineries and chemical plantsRe!ineries and chemical plants

$ Manu!acturin( operationsManu!acturin( operations


4/23

SCADA SystemsSCADA Systems

SCADA systems are intended to provide aSCADA systems are intended to provide a

human operator with updated real)timehuman operator with updated real)time

in!ormation a*out the current state o! thein!ormation a*out the current state o! the

remote process *ein( monitored+ as well asremote process *ein( monitored+ as well asthe a*ility to manipulate the processthe a*ility to manipulate the process

remotely,remotely, William T. Shaw William T. Shaw


5/23


'sed to monitor and remotely control critical'sed to monitor and remotely control criticalindustrial processesindustrial processes

-ndustrial control systems .-CS/-ndustrial control systems .-CS/$ SCADA systemsSCADA systems

$ Distri*uted Control Systems .DCS/Distri*uted Control Systems .DCS/$ 0ro(ramma*le 1o(ic Controllers .01C/0ro(ramma*le 1o(ic Controllers .01C/

SCADA ComponentsSCADA Components$ Master &erminal 'nit .Architecture unique/Master &erminal 'nit .Architecture unique/

$ Human Machine -nter!aceHuman Machine -nter!ace

$ Remote &erminal 'nitRemote &erminal 'nit

$ CommunicationsCommunications


6/23


Hi(hly distri*utedHi(hly distri*uted

%eo(raphically separated assets%eo(raphically separated assets

Centrali2ed data acquisition andCentrali2ed data acquisition andcontrol are criticalcontrol are critical

$ 3il and (as pipelines3il and (as pipelines

$ Electrical power (ridsElectrical power (rids$ Railway transportation systemsRailway transportation systems

4ield devices control local operations4ield devices control local operations


7/23

Distributed Control SystemDistributed Control System

Supervisory control o! multiple inte(ratedSupervisory control o! multiple inte(ratedsystems responsi*le !or asystems responsi*le !or a locallocal processprocess

DCSs used e5tensively in process)*asedDCSs used e5tensively in process)*asedindustriesindustries

E5amples#E5amples#$ 3il and (as re!ineries3il and (as re!ineries$ Electrical power (enerationElectrical power (eneration$ Automotive productionAutomotive production

4eed*ack loops maintain set points4eed*ack loops maintain set points 0ro(ramma*le lo(ic controllers used in the0ro(ramma*le lo(ic controllers used in the

!ield!ield


8/23

Programmable Logic ControllersProgrammable Logic Controllers

Computer *ased solid state devicesComputer *ased solid state devices

Control industrial equipment andControl industrial equipment and

processesprocesses

Re(ulate process !lowRe(ulate process !low

$ Automo*ile assem*ly lineAutomo*ile assem*ly line


9/23

SCADA, DCS or PLCSCADA, DCS or PLCCompare and ContrastCompare and Contrast

1ocation1ocation$ SCADA (eo(raphically dispersedSCADA (eo(raphically dispersed

$ DCS and 01C !actory centeredDCS and 01C !actory centered

CommunicationsCommunications$ SCADA lon( distance+ slow speedSCADA lon( distance+ slow speed

$ DCS and 01C 1A6+ hi(h speedDCS and 01C 1A6+ hi(h speed

ControlControl$ SCADA supervisory levelSCADA supervisory level

$ DCS and 01C closed !eed*ack loopsDCS and 01C closed !eed*ack loops


10/23

SCADA – Why the emphasis?SCADA – Why the emphasis?

SCADA Supports Critical -n!rastructuresSCADA Supports Critical -n!rastructures

78)98: o! critical in!rastructures .C-/ are78)98: o! critical in!rastructures .C-/ are

privately owned and operatedprivately owned and operated

Critical to 6ational survival and prosperity+Critical to 6ational survival and prosperity+

yet dependent on industries driven *yyet dependent on industries driven *ypro!it+ not securitypro!it+ not security


11/23

SCADA – Why the emphasis?SCADA – Why the emphasis?

Many challen(es e5ist when securin( SCADAMany challen(es e5ist when securin( SCADA$ Comple5 systems;patchin(+ re*ootin(+ authenticationComple5 systems;patchin(+ re*ootin(+ authentication

$ 0reponderance o! le(acy hardware+ so!tware and0reponderance o! le(acy hardware+ so!tware andtransmission protocols .


12/23

SCADA EvolutionSCADA Evolution

>98s -nte(rated Circuit led to>98s -nte(rated Circuit led to

minicomputers capa*le o! computerminicomputers capa*le o! computer

control o! processescontrol o! processes

$ Con!ined to one physical locationCon!ined to one physical location

$ 6ot connected to an e5ternal network6ot connected to an e5ternal network

$ 1ocal area network1ocal area network

$ Closed loop controlClosed loop control

$ 0roprietary protocols0roprietary protocols


13/23


>98 )>978s Central Architectures>98 )>978s Central Architectures

$ Sin(le power!ul computer per!ormin( allSin(le power!ul computer per!ormin( all

!unctions!unctions

$ @@ndnd identical computer !or redundancyidentical computer !or redundancy


14/23


>978s to present Distri*uted>978s to present Distri*uted

ArchitecturesArchitectures

$ Multiple computers networked to(etherMultiple computers networked to(ether

with each per!ormin( a speci!ic !unctionwith each per!ormin( a speci!ic !unction

$ 1A6 improvements 1A6 improvements practical and possi*lepractical and possi*le

$ 4unctions#4unctions#

Remote terminal pollin(Remote terminal pollin(Comple5 applications processin(Comple5 applications processin(

Historian data archivin( and trendin(Historian data archivin( and trendin(

$%race!ul de(radation%race!ul de(radation


15/23


>998s to present ClientServer>998s to present ClientServer

$ 0ower!ul 0Cs0ower!ul 0Cs

$ &C0-0 networkin(&C0-0 networkin(

$ Hi(h speed EthernetHi(h speed Ethernet

$ Commercial real)time operatin( systemsCommercial real)time operatin( systems

1ookin( more like -& systems1ookin( more like -& systems

$ Scala*le and !ault tolerantScala*le and !ault tolerant

$ Smart so!tware makes redundancy easySmart so!tware makes redundancy easy


16/23


Human Machine -nter!aceHuman Machine -nter!ace

$ 0rintouts0rintouts

$ Map *oardMap *oard

$ Mimic panelMimic panel

$ =ideo proBection technolo(y=ideo proBection technolo(y


17/23

SCADA EvolutionSCADA Evolution!" E#ample!" E#ample


18/23


Remote &erminal 'nitRemote &erminal 'nit

$ Electronic devices located at keyElectronic devices located at key

measurement and control pointsmeasurement and control points

$ 3ri(inally hardwired devices with limited3ri(inally hardwired devices with limited

capa*ilities and one proprietarycapa*ilities and one proprietary

communications protocolcommunications protocol

$ Modern R&'s contain their ownModern R&'s contain their ownmicroprocessors and can supportmicroprocessors and can support

multiple sophisticated protocolsmultiple sophisticated protocols


19/23


CommunicationsCommunications

$ -nitially used telephone systems and-nitially used telephone systems and

radio transmitters desi(ned !or voiceradio transmitters desi(ned !or voiceSlowSlowSome remote areas had to *uild their ownSome remote areas had to *uild their own

communication systemscommunication systems

$ 1atest systems are di(ital networks1atest systems are di(ital networksdesi(ned to trans!er datadesi(ned to trans!er data &C0-0&C0-0

Wireless includin( cellular and satelliteWireless includin( cellular and satellite


20/23

SCADA Evolution SummarySCADA Evolution Summary

SCADA systems are *ased onSCADA systems are *ased on

computer technolo(y so they havecomputer technolo(y so they have

evolved with computer technolo(yevolved with computer technolo(y

6ew technolo(ies have also *een6ew technolo(ies have also *een

introduced to SCADA systemsintroduced to SCADA systems

Hu(e decreases in proprietary natureHu(e decreases in proprietary nature


21/23

SCADA Evolution SummarySCADA Evolution Summary

&he %ood 6ews&he %ood 6ews

$ CheaperCheaper

$ -nteropera*le *etween vendors-nteropera*le *etween vendors

$ 1ar(er pool o! availa*le workers1ar(er pool o! availa*le workers

&he ad 6ews&he ad 6ews

$ Suscepti*le to malware+ hackers andSuscepti*le to malware+ hackers and

cy*er attackscy*er attacks

We can"t (o *ack, We must provideWe can"t (o *ack, We must provide

secure desi(ns !or now the !uturesecure desi(ns !or now the !uture


22/23


23/23

And $inally%& And $inally%&

Do you *elieve our adversaries have the capa*ility o! *rin(in( down aDo you *elieve our adversaries have the capa*ility o! *rin(in( down a

power (rid? ro!t asked,power (rid? ro!t asked,

- do+ McConnell replied,- do+ McConnell replied,

Asked i! the ',S, is prepared !or such an attack+ McConnell told ro!t+Asked i! the ',S, is prepared !or such an attack+ McConnell told ro!t+

6o, &he 'nited States is not prepared !or such an attack,6o, &he 'nited States is not prepared !or such an attack,

Documents

s Cada Summary Lsn