Industrial control systems (ICSs) are special purpose networked computing systems used to implement control processes and management operations. Their design, which enables realtime operation as well as continuous operation under failures, has made them attractive for the management and control of critical infrastructures, such as power, water supply, and transport infrastructures. Their increasing adoption in infrastructures has led to their exposure to attacks from various actors; such attacks, if successful, can have catastrophic results for infrastructures and cause even loss of life. Thus, their security and resilience are critical. In this paper, we provide a short description of problems and solution approaches for the security of ICSs. Considering their special purpose and their characteristics, we address application-level security demonstrating that a complete solution requires a combination of design methods and technologies including trusted components, secure networks, software security, as well as effective vulnerability analysis.
[1]
Dimitrios N. Serpanos,et al.
ARMET: Behavior-Based Secure and Resilient Industrial Control Systems
,
2018,
Proceedings of the IEEE.
[2]
Gabriela Hug,et al.
Vulnerability Assessment of AC State Estimation With Respect to False Data Injection Cyber-Attacks
,
2012,
IEEE Transactions on Smart Grid.
[3]
Peng Ning,et al.
False data injection attacks against state estimation in electric power grids
,
2011,
TSEC.
[4]
Ehab Al-Shaer,et al.
A formal model for verifying stealthy attacks on state estimation in power grids
,
2013,
2013 IEEE International Conference on Smart Grid Communications (SmartGridComm).
[5]
Armando Solar-Lezama,et al.
Automated vulnerability analysis of AC state estimation under constrained false data injection in electric power systems
,
2015,
2015 54th IEEE Conference on Decision and Control (CDC).
[6]
Adam Chlipala,et al.
Fiat
,
2015,
POPL.
[7]
Harold Willmington,et al.
What You Need to Know About You
,
2010
.