Demystifying Advanced Persistent Threats for Industrial Control Systems

Anastasis Keliris, Michail Maniatakos
2017 Mechanical engineering (New York, N.Y. 1919)  
operating systems [2]. Figure 2 depicts the internals of an industrial controller, which include an ARM processor, COTS integrated circuits for control and communication, RJ45 sockets (Ethernet) for communication over common ICT protocols, as well as several memory chips. The use of COTS components facilitates development and reduces commissioning time, but at the same time enables malicious actors to readily port ICT vulnerabilities to ICS environments, rendering ICS prone to the same
more » ... lities and exploitation techniques that plague ICT. ICS systems often control national critical infrastructure such as critical manufacturing, chemical plants, power grids, oil and gas systems, and nuclear plants. Taking this into consideration, the implications of cyber-security breaches can be far-reaching, including signi cant nancial losses, environmental disasters, and loss of life. FIGURE 1 The modernization of Industrial Control Systems exposes them to novel threats and cyber-attacks. Downloaded From: http://memagazineselect.asmedigitalcollection.asme.org/ on 07/21/2018 Terms of Use: http://www.asme.org/about-asme/terms-of-use digitalbond.com/scadapedia/exploit-frameworks/ Accessed: Nov. 2016. FIGURE 5 Hardware-In-The-Loop testbeds allow security assessments across all layers of an ICS
doi:10.1115/1.2017-mar-6 fatcat:chq7iluidfe37duxmdfkm4w26a