A tiered security analysis of Industrial Control System Devices

Cyntia Vargas; Michael Langfinger; Birgit Vogel-Heuser

doi:10.1109/INDIN.2017.8104805

A tiered security analysis of Industrial Control System Devices

Cyntia Vargas, Michael Langfinger, Birgit Vogel-Heuser

Chair of Automation and Information Systems

Bosch Rexroth AG

Research output: Chapter in Book/Report/Conference proceeding › Conference contribution › peer-review

7 Scopus citations

Abstract

The discussion of threats and vulnerabilities in Industrial Control Systems has gained popularity during the last decade due to the increase in interest and growing concern to secure these systems. In order to provide an overview of the complete landscape of these threats and vulnerabilities this contribution provides a tiered security analysis of the assets that constitute Industrial Control Systems. The identification of assets is obtained from a generalization of the system's architecture. Additionally, the security analysis is complemented by discussing security countermeasures and solutions that can be used to counteract the vulnerabilities and increase the security of control systems.

Original language	English
Title of host publication	Proceedings - 2017 IEEE 15th International Conference on Industrial Informatics, INDIN 2017
Publisher	Institute of Electrical and Electronics Engineers Inc.
Pages	399-404
Number of pages	6
ISBN (Electronic)	9781538608371
DOIs	https://doi.org/10.1109/INDIN.2017.8104805
State	Published - 10 Nov 2017
Event	15th IEEE International Conference on Industrial Informatics, INDIN 2017 - Emden, Germany Duration: 24 Jul 2017 → 26 Jul 2017

Publication series

Name	Proceedings - 2017 IEEE 15th International Conference on Industrial Informatics, INDIN 2017

Conference

Conference	15th IEEE International Conference on Industrial Informatics, INDIN 2017
Country/Territory	Germany
City	Emden
Period	24/07/17 → 26/07/17

Keywords

Computer Security
Distributed Control Systems (DCSs)
Industrial Communication
Industrial Control Systems (ICSs)
Programmable Logic Controllers (PLCs)
Supervisory Control and Data Acquisition (SCADA) systems

Access to Document

10.1109/INDIN.2017.8104805

Cite this

Vargas, C., Langfinger, M., & Vogel-Heuser, B. (2017). A tiered security analysis of Industrial Control System Devices. In Proceedings - 2017 IEEE 15th International Conference on Industrial Informatics, INDIN 2017 (pp. 399-404). Article 8104805 (Proceedings - 2017 IEEE 15th International Conference on Industrial Informatics, INDIN 2017). Institute of Electrical and Electronics Engineers Inc.. https://doi.org/10.1109/INDIN.2017.8104805

Vargas, Cyntia ; Langfinger, Michael ; Vogel-Heuser, Birgit. / A tiered security analysis of Industrial Control System Devices. Proceedings - 2017 IEEE 15th International Conference on Industrial Informatics, INDIN 2017. Institute of Electrical and Electronics Engineers Inc., 2017. pp. 399-404 (Proceedings - 2017 IEEE 15th International Conference on Industrial Informatics, INDIN 2017).

@inproceedings{2395955bacc441b0884c979257acfa21,

title = "A tiered security analysis of Industrial Control System Devices",

abstract = "The discussion of threats and vulnerabilities in Industrial Control Systems has gained popularity during the last decade due to the increase in interest and growing concern to secure these systems. In order to provide an overview of the complete landscape of these threats and vulnerabilities this contribution provides a tiered security analysis of the assets that constitute Industrial Control Systems. The identification of assets is obtained from a generalization of the system's architecture. Additionally, the security analysis is complemented by discussing security countermeasures and solutions that can be used to counteract the vulnerabilities and increase the security of control systems.",

keywords = "Computer Security, Distributed Control Systems (DCSs), Industrial Communication, Industrial Control Systems (ICSs), Programmable Logic Controllers (PLCs), Supervisory Control and Data Acquisition (SCADA) systems",

author = "Cyntia Vargas and Michael Langfinger and Birgit Vogel-Heuser",

note = "Publisher Copyright: {\textcopyright} 2017 IEEE.; 15th IEEE International Conference on Industrial Informatics, INDIN 2017 ; Conference date: 24-07-2017 Through 26-07-2017",

year = "2017",

month = nov,

day = "10",

doi = "10.1109/INDIN.2017.8104805",

language = "English",

series = "Proceedings - 2017 IEEE 15th International Conference on Industrial Informatics, INDIN 2017",

publisher = "Institute of Electrical and Electronics Engineers Inc.",

pages = "399--404",

booktitle = "Proceedings - 2017 IEEE 15th International Conference on Industrial Informatics, INDIN 2017",

}

Vargas, C, Langfinger, M & Vogel-Heuser, B 2017, A tiered security analysis of Industrial Control System Devices. in Proceedings - 2017 IEEE 15th International Conference on Industrial Informatics, INDIN 2017., 8104805, Proceedings - 2017 IEEE 15th International Conference on Industrial Informatics, INDIN 2017, Institute of Electrical and Electronics Engineers Inc., pp. 399-404, 15th IEEE International Conference on Industrial Informatics, INDIN 2017, Emden, Germany, 24/07/17. https://doi.org/10.1109/INDIN.2017.8104805

A tiered security analysis of Industrial Control System Devices. / Vargas, Cyntia; Langfinger, Michael; Vogel-Heuser, Birgit.
Proceedings - 2017 IEEE 15th International Conference on Industrial Informatics, INDIN 2017. Institute of Electrical and Electronics Engineers Inc., 2017. p. 399-404 8104805 (Proceedings - 2017 IEEE 15th International Conference on Industrial Informatics, INDIN 2017).

Research output: Chapter in Book/Report/Conference proceeding › Conference contribution › peer-review

TY - GEN

T1 - A tiered security analysis of Industrial Control System Devices

AU - Vargas, Cyntia

AU - Langfinger, Michael

AU - Vogel-Heuser, Birgit

PY - 2017/11/10

Y1 - 2017/11/10

N2 - The discussion of threats and vulnerabilities in Industrial Control Systems has gained popularity during the last decade due to the increase in interest and growing concern to secure these systems. In order to provide an overview of the complete landscape of these threats and vulnerabilities this contribution provides a tiered security analysis of the assets that constitute Industrial Control Systems. The identification of assets is obtained from a generalization of the system's architecture. Additionally, the security analysis is complemented by discussing security countermeasures and solutions that can be used to counteract the vulnerabilities and increase the security of control systems.

AB - The discussion of threats and vulnerabilities in Industrial Control Systems has gained popularity during the last decade due to the increase in interest and growing concern to secure these systems. In order to provide an overview of the complete landscape of these threats and vulnerabilities this contribution provides a tiered security analysis of the assets that constitute Industrial Control Systems. The identification of assets is obtained from a generalization of the system's architecture. Additionally, the security analysis is complemented by discussing security countermeasures and solutions that can be used to counteract the vulnerabilities and increase the security of control systems.

KW - Computer Security

KW - Distributed Control Systems (DCSs)

KW - Industrial Communication

KW - Industrial Control Systems (ICSs)

KW - Programmable Logic Controllers (PLCs)

KW - Supervisory Control and Data Acquisition (SCADA) systems

UR - http://www.scopus.com/inward/record.url?scp=85041204587&partnerID=8YFLogxK

U2 - 10.1109/INDIN.2017.8104805

DO - 10.1109/INDIN.2017.8104805

M3 - Conference contribution

AN - SCOPUS:85041204587

T3 - Proceedings - 2017 IEEE 15th International Conference on Industrial Informatics, INDIN 2017

SP - 399

EP - 404

BT - Proceedings - 2017 IEEE 15th International Conference on Industrial Informatics, INDIN 2017

PB - Institute of Electrical and Electronics Engineers Inc.

T2 - 15th IEEE International Conference on Industrial Informatics, INDIN 2017

Y2 - 24 July 2017 through 26 July 2017

ER -

Vargas C, Langfinger M, Vogel-Heuser B. A tiered security analysis of Industrial Control System Devices. In Proceedings - 2017 IEEE 15th International Conference on Industrial Informatics, INDIN 2017. Institute of Electrical and Electronics Engineers Inc. 2017. p. 399-404. 8104805. (Proceedings - 2017 IEEE 15th International Conference on Industrial Informatics, INDIN 2017). doi: 10.1109/INDIN.2017.8104805

A tiered security analysis of Industrial Control System Devices

Abstract

Publication series

Conference

Keywords

Access to Document

Other files and links

Fingerprint

Cite this