Cybersecurity Perspectives for Smart Building Automation Systems

As the built environment becomes the hallmark of urbanisation tendencies worldwide, people have come to rely on buildings for a large majority of their daily activities. Modern buildings are equipped with new sensor technologies and advanced controllers, integrated through communication interfaces and application software to handle various required functions through automation. This is partially extended to legacy buildings through retrofitting. Integration of these new technologies opens up the automation system of the building to internal and external attackers. The challenges related to cybersecurity identified are partially similar to the industrial control system domain while adding specific constraints for the built environment as compared to a production/manufacturing environment, which relate to human safety, security and privacy aspects. We provide a critical overview of cybersecurity challenges for smart building automation systems by focusing on key areas of development at the device, system and communication and interoperability levels. A representative example for BACnet protocol features and tools is provided.

[1]  Jaspreet Kaur,et al.  Visualizing BACnet Data to Facilitate Humans in Building-Security Decision-Making , 2015, HCI.

[2]  Grigore Stamatescu,et al.  Data-driven Modelling of Smart Building Ventilation Subsystem , 2019, J. Sensors.

[3]  Craig Valli,et al.  BACnet - Bridging the Cyber Physical Divide One HVAC at a Time , 2017, 2017 9th IEEE-GCC Conference and Exhibition (GCCCE).

[4]  Hans D. Schotten,et al.  Time is of the Essence: Machine Learning-Based Intrusion Detection in Industrial Time Series Data , 2018, 2018 IEEE International Conference on Data Mining Workshops (ICDMW).

[5]  Wolfgang Granzer,et al.  Security in Building Automation Systems , 2010, IEEE Transactions on Industrial Electronics.

[6]  Seung Ho Hong Development of a BACnet-ZigBee gateway for demand response in buildings , 2013, 2013 Pan African International Conference on Information Science, Computing and Telecommunications (PACT).

[7]  Grigore Stamatescu,et al.  Building Cyber-Physical Energy Systems , 2016, ArXiv.

[8]  Jaouhar Fattahi,et al.  Method for authentication of sensors connected on Modbus TCP , 2017, 2017 4th International Conference on Control, Decision and Information Technologies (CoDIT).

[9]  I-En Liao,et al.  Mining Anomaly Communication Patterns for Industrial Control Systems , 2018, 2018 Australasian Universities Power Engineering Conference (AUPEC).

[10]  Thomas Mundt,et al.  Honeypots for Threat Intelligence in Building Automation Systems , 2019, 2019 Computing, Communications and IoT Applications (ComComAp).

[11]  Grigore Stamatescu,et al.  Pervasive system architecture for optimal HVAC control in smart buildings , 2017, 2017 12th IEEE Conference on Industrial Electronics and Applications (ICIEA).

[12]  Iulia Stamatescu,et al.  Decision Support System for a Low Voltage Renewable Energy System , 2017 .

[13]  Huang Jian-Cang Research on BACnet building controller based on ARM9 and embedded Linux , 2018, 2018 Chinese Control And Decision Conference (CCDC).

[14]  Dirk Timmermann,et al.  Performance Analysis of a Secured BACnet/IP Network , 2019, 2019 15th IEEE International Workshop on Factory Communication Systems (WFCS).

[15]  Alessandro Barenghi,et al.  Security challenges in building automation and SCADA , 2014, 2014 International Carnahan Conference on Security Technology (ICCST).

[16]  Jerry den Hartog,et al.  Leveraging Semantics for Actionable Intrusion Detection in Building Automation Systems , 2018, CRITIS.