Analyzing the Impact of Cybersecurity on Monitoring and Control Systems in the Energy Sector

Monitoring and control systems in the energy sector are specialized information structures that are not governed by the same information technology standards as the rest of the world’s information systems. Such industrial control systems are also used to handle important infrastructures, including smart grids, oil and gas facilities, nuclear power plants, water management systems, and so on. Industry equipment is handled by systems connected to the internet, either via wireless or cable connectivity, in the present digital age. Further, the system must work without fail, with the system’s availability rate being of paramount importance. Furthermore, to certify that the system is not subject to a cyber-attack, the entire system must be safeguarded against cyber security vulnerabilities, threats, and hazards. In addition, the article looks at and evaluates cyber security evaluations for industrial control systems, as well as their possible impact on the accessibility of industrial control system operations in the energy sector. This research work discovers that the hesitant fuzzy-based method of the Analytic Hierarchy Process (AHP) and the Technique for Order of Preference by Similarity to Ideal Solution (TOPSIS) is an operational procedure for estimating industrial control system cyber security assessments by understanding the numerous characteristics and their impacts on cyber security industrial control systems. The author evaluated the outputs of six distinct projects to determine the quality of the outcomes and their sensitivity. According to the results of the robustness analysis, alternative 1 shows the utmost effective cybersecurity project for the industrial control system. This research work will be a conclusive reference for highly secure and managed monitoring and control systems.

Download Full-text

Situation awareness framework for industrial control system based on cyber kill chain

MATEC Web of Conferences ◽

10.1051/matecconf/202133602013 ◽

2021 ◽

Vol 336 ◽

pp. 02013

Author(s):

Yufei Wang ◽

Tengbiao Zhang ◽

Qian Ye

Keyword(s):

Control System ◽

Control Systems ◽

Situation Awareness ◽

Cyber Security ◽

Reference Architecture ◽

Industrial Control System ◽

Industrial Control ◽

Industrial Control Systems ◽

High Level ◽

Cyber Kill Chain

Information and cyber security of Industrial Control Systems (ICS) has gained considerable importance. Situation Awareness (SA) is an exciting mechanism to achieve the perception, comprehension and projection of the ICS information security status. Based on the Purdue Enterprise Reference Architecture (PERA), a situation awareness framework for ICS is presented considering the ICS cyber kill chain. The proposed framework consists of IT SA Centre, OT SA Centre, and Comprehensive SA Centre. Comprehensive SA Centre is responsible for creating and maintaining an integrated and high level of security visibility into the whole environments. The introduced framework can be used to guide the development of the situation awareness infrastructure in organization with industrial control systems.

Download Full-text

Cyber security in industrial control system

WEENTECH Proceedings in Energy ◽

10.32438/wpe.432021 ◽

2021 ◽

pp. 481-493

Author(s):

Sarika Singh ◽

Gargi Phadke

Keyword(s):

Control System ◽

Control Systems ◽

Communication Networks ◽

Cyber Security ◽

Denial Of Service ◽

Mitigation Measures ◽

Security Assessment ◽

Industrial Control System ◽

Industrial Control ◽

Smart Grid Communication

For any system to secure them industrial control system plays an important role in it. It helps to design the isolated procure system, specialized communication mechanisms is used to help for the setup. And with the help of this setup the flexibility, safety, threats, and vulnerabilities are the most important things to make. To secure them from risk assessment and other protection measurement need to specify with good instruments and security. The paper describes technical aspects on Denial of Service (Dos) attack. We also identify how smart grid communication networks works in security technical implementation guides of the different countries as a defense information systems agency. A brief chronicle of cyber storm on ICS; common challenges, some mitigation of those challenge, all levels of the multi-layered ICS architecture. This paper demonstrates railway control systems (RCS) compliance estimation of immovable control system design, operational scenarios that can be used for mitigation measures and security assessment.

Download Full-text

Building a Cybersecurity Culture in the Industrial Control System Environment

International Journal of Information Security and Cybercrime ◽

10.19107/ijisc.2019.01.05 ◽

2019 ◽

Vol 8 (1) ◽

pp. 39-44

Author(s):

Claudia ARAUJO MACEDO ◽

Jos MENTING

Keyword(s):

Control System ◽

Control Systems ◽

Cyber Attacks ◽

Cyber Attack ◽

Industrial Control System ◽

Security Measures ◽

Industrial Control ◽

Industrial Control Systems ◽

System A ◽

Educational Processes

Cybersecurity in industrial control system environments has become a significant concern and is even more relevant in the context of critical infrastructures where control system disruption could have a profound impact on health, safety and the environment. This makes this type of system a major target for malicious activities. Notwithstanding an organization’s interest in protecting its industrial control systems against cyber-attacks, the implementation of security measures, whether technical, organizational or human, still faces resistance and is often seen as a constraint. Using the best technology to protect industrial control systems makes no sense if persons with access do not act attentively and protectively. Technical and human cybersecurity measures are intrinsically linked, and it is essential that all persons with access to these systems are fully aware of the inherent cyber risks. Organizations must also act so that staff receive appropriate training on how to keep systems continuously protected against cyber-attack when carrying out their daily tasks. These educational processes can contribute to building an effective cybersecurity culture fully reflective of management and staff attitudes, so that the availability, integrity and confidentiality of information in industrial control systems can be assured.

Download Full-text

Specification of the Current State Vulnerabilities Related to Industrial Control Systems

International Journal of Online Engineering (iJOE) ◽

10.3991/ijoe.v11i5.4981 ◽

2015 ◽

Vol 11 (5) ◽

pp. 64

Author(s):

Jan Vávra ◽

Martin Hromada ◽

Roman Jašek

Keyword(s):

Control System ◽

Control Systems ◽

Fundamental Question ◽

Industrial Control System ◽

Security Risk ◽

Considerable Effort ◽

Industrial Control ◽

Industrial Control Systems ◽

Current State ◽

True Distribution

The contemporary trend of increasing connectivity, interoperability and efficiency of technologies, which are used in organizations, also affected Industrial Control System (further only ICS). The recently isolated system is becoming more dependent on interconnection with external technologies. This leads to a formation of new vulnerabilities, which are significant threats to ICS. For this reason, it is necessary to devote considerable effort to analyze vulnerabilities. Neglecting of this area could lead to damage or unavailability of ICS services. The purpose of the article is to evaluate vulnerabilities related to individual elements of ICS. The fundamental question of the article is to find a true distribution of security risk related to ICS.

Download Full-text

Information Security Evaluation of the Key Equipment in Industrial Control Systems

Applied Mechanics and Materials ◽

10.4028/www.scientific.net/amm.336-338.1640 ◽

2013 ◽

Vol 336-338 ◽

pp. 1640-1644

Author(s):

Zhi Gang Zhang ◽

Zhuo Lv ◽

Shuang Xia Niu

Keyword(s):

Control System ◽

Information Security ◽

Control Systems ◽

Research Program ◽

System Level ◽

Security Evaluation ◽

Industrial Control System ◽

Industrial Control ◽

Security Risks ◽

Industrial Control Systems

This paper analyzes the information security risks faced by the industrial control systems, Propose the Information Security Evaluation on industrial control system based on the level protection assessment technology, The development of industrial control system from the device level , field-level and system-level three levels of information security evaluation, propose the next step in the research program.

Download Full-text

Cyber-Security for ICS/SCADA

Cyber Warfare and Terrorism ◽

10.4018/978-1-7998-2466-4.ch038 ◽

2020 ◽

pp. 613-630

Author(s):

Barend Pretorius ◽

Brett van Niekerk

Keyword(s):

South Africa ◽

Control System ◽

Control Systems ◽

Cyber Security ◽

Cyber Attacks ◽

Physical Damage ◽

Industrial Control ◽

Industrial Control Systems ◽

Nation States ◽

National Infrastructure

Industrial control systems (ICS) or supervisory, control, and data acquisition (SCADA) systems drive many key components of the national infrastructure. It makes these control systems targets for cyber-attacks by terrorists and nation-states who wish to damage their target economically and socially, and cyber-criminals who blackmail the companies operating the infrastructure. Despite the high risk of leaving these systems exposed, providing adequate cyber-security is often challenging. The Stuxnet worm illustrated how vulnerable control systems potentially are when it bypassed a number of security mechanisms to cause physical damage to an Iranian nuclear facility. The article focuses on ICS/SCADA in South Africa discussing the unique challenges and legislation relate to securing control system in the South Africa. A governance and security framework for overcoming these challenges are proposed.

Download Full-text

Research of Smart Gird Functional Safety Certification

Applied Mechanics and Materials ◽

10.4028/www.scientific.net/amm.263-266.3168 ◽

2012 ◽

Vol 263-266 ◽

pp. 3168-3173

Author(s):

Xiu Li Huang ◽

Tao Zhang ◽

Yuan Yuan Ma ◽

Yu Fei Wang ◽

Ye Hua

Keyword(s):

Control System ◽

Smart Grid ◽

Control Systems ◽

Evaluation Process ◽

Functional Safety ◽

Industrial Control System ◽

Industrial Control ◽

Industrial Control Systems ◽

Security Issues ◽

Safety Certification

With the increasing number of attacks against industrial control systems, functions security issues of the smart grid industrial control system gradually become the focus of research in the field of smart grid. This paper introduced smart grid industrial control systems threats which faced and incidents firstly, and analyzed the current situation of the functional safety certification, including certification bodies, certification tools and certification classes; Then, researched the smart grid industrial control system functional safety certification, gave the content of the smart grid industrial control system functional safety certification, and made the design of its hardware evaluation process; Finally, we discuss the research status of functional safety certification, and pointed out the problems that the smart grid industrial control system functional safety faces.

Download Full-text

Noise immunity of monitoring and control systems for access to buildings when exposed to electromagnetic interference through the power supply network.

Journal of Radio Electronics ◽

10.30898/1684-1719.2021.6.9 ◽

2021 ◽

Author(s):

R.M. Safina ◽

◽

M.S. Shkinderov ◽

M.M. Mubarakov ◽

◽

...

Keyword(s):

Control System ◽

Control Systems ◽

Power Supply ◽

Electromagnetic Interference ◽

Experimental Studies ◽

High Capacity ◽

Supply Network ◽

Monitoring And Control ◽

Monitoring And Control Systems ◽

And Control

Access monitoring and control system are a set of software and hardware for restricting and registering the entrance to a given territory through special passages. In addition, when used in modern sports facilities, these systems must have a high capacity. This is necessary for the safe movement and timely evacuation of a large number of visitors. Therefore, the reliable operation of access monitoring and control systems is the most important technical challenge. Electromagnetic interference can disrupt the functions of the control system. One of the reasons for system malfunctions can be electromagnetic interference on the power supply network. The article analyzes the sources of electromagnetic interference in the power supply network. Experimental studies of the functioning of the control system under the influence of nanosecond noise on the power supply network have been carried out. A simulation model is proposed and the results of modeling electromagnetic interference in the control system when exposed to electromagnetic pulses through the power supply network are presented. The simulation results are in good agreement with the experimental data.

Download Full-text

Control Systems Security Center Comparison Study of Industrial Control System Standards against the Control Systems Protection Framework Cyber-Security Requirements

10.2172/911771 ◽

2005 ◽

Author(s):

Robert P. Evans

Keyword(s):

Control System ◽

Control Systems ◽

Cyber Security ◽

Security Requirements ◽

Comparison Study ◽

Industrial Control System ◽

Industrial Control ◽

Systems Security

Download Full-text

Smart Industrial IoT Monitoring and Control System Based on UAV and Cloud Computing Applied to a Concrete Plant

Sensors ◽

10.3390/s19153316 ◽

2019 ◽

Vol 19 (15) ◽

pp. 3316 ◽

Cited By ~ 11

Author(s):

Marouane Salhaoui ◽

Antonio Guerrero-González ◽

Mounir Arioua ◽

Francisco J. Ortiz ◽

Ahmed El Oualkadi ◽

...

Keyword(s):

Cloud Computing ◽

Control System ◽

Fog Computing ◽

Cloud Services ◽

Industrial Control System ◽

Monitoring And Control ◽

Industrial Control ◽

Monitoring And Control System ◽

Industrial Iot ◽

And Control

Unmanned aerial vehicles (UAVs) are now considered one of the best remote sensing techniques for gathering data over large areas. They are now being used in the industry sector as sensing tools for proactively solving or preventing many issues, besides quantifying production and helping to make decisions. UAVs are a highly consistent technological platform for efficient and cost-effective data collection and event monitoring. The industrial Internet of things (IIoT) sends data from systems that monitor and control the physical world to data processing systems that cloud computing has shown to be important tools for meeting processing requirements. In fog computing, the IoT gateway links different objects to the internet. It can operate as a joint interface for different networks and support different communication protocols. A great deal of effort has been put into developing UAVs and multi-UAV systems. This paper introduces a smart IIoT monitoring and control system based on an unmanned aerial vehicle that uses cloud computing services and exploits fog computing as the bridge between IIoT layers. Its novelty lies in the fact that the UAV is automatically integrated into an industrial control system through an IoT gateway platform, while UAV photos are systematically and instantly computed and analyzed in the cloud. Visual supervision of the plant by drones and cloud services is integrated in real-time into the control loop of the industrial control system. As a proof of concept, the platform was used in a case study in an industrial concrete plant. The results obtained clearly illustrate the feasibility of the proposed platform in providing a reliable and efficient system for UAV remote control to improve product quality and reduce waste. For this, we studied the communication latency between the different IIoT layers in different IoT gateways.

Download Full-text