Cyberprotection of Industrial Control Systems: a Model-Based Approach to Detect and Respond to Cyberattacks

Industrial Control Systems (ICSs) are present in many areas to ensure the productivity and reliability of production systems. However, as security requirements were not taken into account in their design, these systems are extremely vulnerable to cyberattacks. Since the beginning of the 21st century, these systems have become the target of hackers, whose most famous attack is Stuxnet (2009), which affected the Natanz uranium enrichment plant in Iran. This article will highlight the flaws of ICSs, then suggest an innovative approach to protect these systems, using « business knowledge » and the specificities of real-time protection layers. Finally, it will describe detection mechanisms that can be developed after a critical attack.