Challenges and opportunities in securing industrial control systems

2012 IEEE Workshop on Complexity in Engineering, COMPENG 2012 - Proceedings

Volumn , Issue , 2012, Pages 133-138

  Hadziosmanovic, Dina ^a   Bolzoni, Damiano ^a   Etalle, Sandro ^a,b   Hartel, Pieter ^a  

^a UNIVERSITY OF TWENTE   (Netherlands)

^b EINDHOVEN UNIVERSITY OF TECHNOLOGY   (Netherlands)

Author keywords

[No Author keywords available]

Indexed keywords

CYBER THREATS; DATA RESOURCES; INDUSTRIAL CONTROL SYSTEMS; INDUSTRIAL PROCESSS; RESEARCH EFFORTS; SPECIFIC NATURE;

CONTROL SYSTEMS;

INTELLIGENT CONTROL;

EID: 84866543673     PISSN: None     EISSN: None     Source Type: Conference Proceeding    
DOI: 10.1109/CompEng.2012.6242970     Document Type: Conference Paper

References (21)

1. C. Balducelli, L. Lavalle, and G. Vicoli. Novelty detection and management to safeguard information-intensive critical infrastructures. Int. J. Emergency Management, 4(1):88-103, 2007.
2. R. R. R. Barbosa, R. Sadre, and A. Pras. Difficulties in modeling SCADA traffic: A comparative analysis. In 13th International Conference on Passive and Active Measurement, PAM 2012, Vienna, Austria, volume 7192 of LNCS, pages 126-135, Berlin, March 2012. Springer Verlag.
3. C. Bellettini and J. Rrushi. Vulnerability analysis of SCADA protocol binaries through detection of memory access taintedness. In LTC John Hill, editor, Proc. 8th IEEE SMC Information Assurance Workshop, pages 341-348. IEEE Press, 2007.
4. L. Bernaille, R. Teixeira, and K. Salamatian. Early application identification. In Proc. of the ACM CoNEXT conference, CoNEXT '06, pages 6:1-6:12, New York, NY, USA, 2006. ACM.
5. J. Bigham, D. Gamez, and N. Lu. Safeguarding SCADA systems with anomaly detection. In Proc. 2nd International Workshop on Mathematical Methods, Models and Architectures for Computer Network Security, LNCS 2776, pages 171-182. Springer Verlag, 2003.
6. L. Burns, J.L. Hellerstein, S. Ma, C.S. Perng, D.A. Rabenhorst, and D.J. Taylor. Towards discovery of event correlation rules. In Proc. IEEE/IFIP International Symposium on Integrated Network Management, pages 345-359, 2001.
7. Alvaro A. Cárdenas, Saurabh Amin, and Shankar Sastry. Research challenges for the security of control systems. In Proc. of the 3rd conference on Hot topics in security, HOTSEC'08, pages 6:1-6:6, Berkeley, CA, USA, 2008. USENIX Association.
8. S. Cheung, B. Dutertre, M. Fong, U. Lindqvist, K. Sinner, and A. Valdes. Using model-based intrusion detection for SCADA networks. In Proc. SCADA Security Scientific Symposium 2007. Digital Bound Press, 2007.
9. National Vulnerabiltity Database. National Vulnerabiltity Database CVE-2010-4709. http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2010-4709, February 20011.
10. D. Hadžiosmanović, D. Bolzoni, and P. H. Hartel. A log mining approach for process monitoring in SCADA. International Journal of Information Security, 11, 2012.
11. Ponemon Institute. State of it security: Study of utilities and energy companies, 2011. http://q1labs.com/resource-center/white-papers.aspx.
12. Y. Liu, P. Ning, and M. Reiter. False data injection attacks against state estimation in electric power grids. In Proc. 16th ACM conference on Computer and communications security, CCS '09, pages 21-32, New York, NY, USA, 2009. ACM.
13. L. Murchu N. Falliere and E. Chien. W32.stuxnet Dossier, 2011.
14. M. Naedele and O. Biderbost. Human-assisted intrusion detection for process control systems. Accepted for 2nd Int. Conf. on Applied Cryptography and Network Security (ACNS), 2004.
15. V. Paxson. Bro: a system for detecting network intruders in real-time. Comput. Netw., 31:2435-2463, December 1999.
16. A. Rege-Patwardhan. Cybercrimes against critical infrastructures: a study of online criminal organization and techniques. Criminal Justice Studies, 22(3):261-271, Sep 2009.
17. F. Salfner, S. Tschirpke, and M. Malek. Comprehensive logfiles for autonomic systems. In Proc. 18th International Symposium on Parallel and Distributed Processing, page 211, april 2004.
18. Alfonso Valdes and Steven Cheung. Communication pattern anomaly detection in process control systems. In 2009 IEEE International Conference on Technologies for Homeland Security, Waltham, MA, May 11-12, 2009.
19. IEC 60870-5-104 - protocol specification.
20. ISO/IEC 9506-2: Manufacturing message specification - part 2: Protocol specification.
21. MODBUS TCP/IP messaging implementation guide.