An Experimental Study on the Impact of Network Segmentation to the Resilience of Physical Processes

The fact that modern Networked Industrial Control Systems (NICS) depend on Information and Communication Technologies (ICT) is well known. Although many studies have focused on the security of NICS, today we still lack a proper understanding of the impact that network design choices have on the resilience of NICS, e.g., a network architecture using VLAN segmentation. In this paper we investigate the impact of process control network segmentation on the resilience of physical processes. We consider an adversary capable of reprogramming the logic of control hardware in order to disrupt the normal operation of the physical process. Our analysis that is based on the Tennessee-Eastman chemical process proves that network design decisions significantly increase the resilience of the process using as resilience metric the time that the process is able to run after the attack is started, before shutting down. Therefore a resilience-aware network design can provide a tolerance period of several hours that would give operators more time to intervene, e.g., switch OFF devices or disconnect equipment in order to reduce damages.

[1]  Om Pal,et al.  Cryptographic Key Management for SCADA System: An Architectural Framework , 2009, 2009 International Conference on Advances in Computing, Control, and Telecommunication Technologies.

[2]  Mike Hibler,et al.  An integrated experimental environment for distributed systems and networks , 2002, OPSR.

[3]  John C. Sozio Intelligent Parameter Adaptation for Chemical Processes , 1999 .

[4]  Alvaro A. Cárdenas,et al.  Attacks against process control systems: risk assessment, detection, and response , 2011, ASIACCS '11.

[5]  Quanyan Zhu,et al.  Secure routing in smart grids , 2011 .

[6]  Aditya Bagri,et al.  Supervisory Control and Data Acquisition , 2014 .

[7]  Stuart A. Boyer Scada: Supervisory Control and Data Acquisition , 1993 .

[8]  Fangxing Li,et al.  Hierarchical Utilization Control for Real-Time and Resilient Power Grid , 2009, 2009 21st Euromicro Conference on Real-Time Systems.

[9]  Kun Ji,et al.  Resilient industrial control system (RICS): Concepts, formulation, metrics, and insights , 2010, 2010 3rd International Symposium on Resilient Control Systems.

[10]  Kun Ji,et al.  Resilient control for wireless networked control systems , 2011 .

[11]  E. F. Vogel,et al.  A plant-wide industrial process control problem , 1993 .

[12]  Béla Genge,et al.  Analyzing Cyber-Physical Attacks on Networked Industrial Control Systems , 2011, Critical Infrastructure Protection.

[13]  Agostinho M. Brito,et al.  A model for security management of SCADA systems , 2008, 2008 IEEE International Conference on Emerging Technologies and Factory Automation.

[14]  Igor Nai Fovino,et al.  An experimental investigation of malware attacks on SCADA systems , 2009, Int. J. Crit. Infrastructure Prot..

[15]  Sujeet Shenoi,et al.  A Taxonomy of Attacks on the DNP3 Protocol , 2009, Critical Infrastructure Protection.