Presentation is loading. Please wait.

Presentation is loading. Please wait.

Joint Program Office for Special Technology Countermeasures Joint Program Office for Special Technology Countermeasures JPOSTCJPOSTC JPOSTCJPOSTC Briefing.

Published byRonald Owenby Modified over 9 years ago

Similar presentations

Presentation on theme: "Joint Program Office for Special Technology Countermeasures Joint Program Office for Special Technology Countermeasures JPOSTCJPOSTC JPOSTCJPOSTC Briefing."— Presentation transcript:

1 Joint Program Office for Special Technology Countermeasures Joint Program Office for Special Technology Countermeasures JPOSTCJPOSTC JPOSTCJPOSTC Briefing Classification: Tri-Service Power Expo 2003 National Defense Industrial Association 15-17 July 2003 Norfolk, Virginia Tri-Service Power Expo 2003 National Defense Industrial Association 15-17 July 2003 Norfolk, Virginia UNCLASSIFIED Control Systems Vulnerabilities

2 UNCLASSIFIED Contact Information Joint Program Office for Special Technology Countermeasures Naval Surface Warfare Center, Dahlgren Division Dahlgren, VA 22448-5100 Mike Burks (540) 653-4973 burksmw@nswc.navy.mil Joint Program Office for Special Technology Countermeasures Naval Surface Warfare Center, Dahlgren Division Dahlgren, VA 22448-5100 Mike Burks (540) 653-4973 burksmw@nswc.navy.mil

3 UNCLASSIFIED

4 Agenda Types of Control Systems Architecture Impact of Disruption Reducing Vulnerabilities

5 UNCLASSIFIED Supervisory Control and Data Acquisition SCADA Used in Electric Power, NG, POL, Water, Waste Water Older Systems - Primary Conduits of Raw Data In and Commands Out Newer Systems - Process and Store Significant Amount of Data Internally Local Control Augmented by Centralized Control Using SCADA

6 UNCLASSIFIED Distributed Control Systems DCS Control Large Manufacturing and Production Facilities Process and Store Significant Amount of Data Chemical Plant Processes Monitoring Power Plant DCS Linked to Energy Management Center Power Plant DCS Vulnerabilities Can Extent to Control Center

7 UNCLASSIFIED Programmable Logic Controllers PLC Used in Manufacturing Facilities, Industrial Facilities, Power Plants, Substations, Water Facilities, US NAVY Warships May Be used as a Remote Terminal Unit (RTU) for SCADA Older Systems - PLC Impact Localized Newer Systems - PLC Impact Widespread Networking PLC will Increase Vulnerabilities

8 UNCLASSIFIED Control System Architecture Central Monitoring Unit Communications Network Sensor Remote Terminal Unit 1 Remote Terminal Unit 2 Sensor Programmable Logic Controller Sensor Fiber, Radio, Modem, Microwave, Telephone, Wireless, Powerline Carrier

9 UNCLASSIFIED Requirements Highly Reliable Make Automated Changes to Processes Use Real Time Operating System High Performance High Functionality

10 UNCLASSIFIED Polled Communications System Polled System Master Polls Slaves in Sequence Slave Responds Only If Requested (Half- Duplex) No Digital Collisions on Network Slave To Master To Slave Communications

11 UNCLASSIFIED Interrupt Communications Systems Interrupt System (Report By Exception) Slave Monitors Inputs and Initiates Report Based On Change Erratic System Operation Caused by Digital Collisions on Network Master Polls After Slave Fails to Transmit Slave To Slave Communication

12 UNCLASSIFIED Software Vulnerabilities Use Insecure Industry-Wide Protocols (DNP3.0, Modbus, Profibus, etc.) Relying On Obscurity for Security Heavy Use of Clear Text or ASCII Protocol Analyzers Available to Decode Structures Architectures Common Across All Industries Operating Systems DOS, VMS, UNIX, NT, LINUX, SOLARIS Proprietary Software Discussed at Conferences and Periodicals Security Patches Impact Functionality and Performance

13 UNCLASSIFIED Representative RF Threats Man Portable RF Devices Surplus Military RF Devices

14 UNCLASSIFIED Communication Network Instrumentation Remote Station Central Monitoring Station LAN, WAN, INTERNET Communication Network Instrumentation Remote Station Central Monitoring Station Communication Network Instrumentation Remote Station Corporate Architecture

15 UNCLASSIFIED Corporate Network Highly Networked System Easy Access to Control Systems From Corporate Intranet Few Firewalls and Intrusion Detection at Operational Facilities (Power Plants & Substations) Remote Maintenance Performed by Vendors Direct Remote Access Not Protected by Corporate Security

16 UNCLASSIFIED Impacts of Disruptions Depends on Level of Sophistication of Intrusion Electric Power Outages (Hours to Days) and Equipment Damage Revert to Manual Operation of System Monetary Chemical/LNG Safety Related Safeguards Interrupted Potentially Catastrophic Monetary

17 UNCLASSIFIED Impacts of Disruptions Depends on Level of Sophistication of Intrusion Telecommunications Loss of Service (Hours) and Equipment Damage Monetary Water and Wastewater Contamination Public Confidence Monetary Manufacturing Equipment Damage Monetary

18 UNCLASSIFIED Example of Impact Bellingham, Washington June 1999 Pressure surge occurred during SCADA slowdown Control Room Operator Unable to Relieve Pressure 237,000 gallons of gasoline released from ruptured 16 “ gasoline pipeline SCADA data base modifications made before event System Administrator saw errors 18 minutes before rupture System Administrator did not notify operators Remote dialup access to SCADA for account holders Findings by National Transportation Safety Board faulted database modification

19 UNCLASSIFIED Reducing Vulnerabilities (Short Term) Assume All Control Systems are Vulnerable to Attack Eliminate Back Doors Used For Maintenance Implement a Business to Control System Security Policy Limit Access to Control Systems Install Security Patches and Insist Vendors Do the Same Install Firewalls and Intrusion Detection

20 UNCLASSIFIED Reducing Vulnerabilities (Long Term) Information Sharing Between Industries, (ISACs), and Government Support Development of Control System Security Technology Specifying Security Technology in New Purchases Firewalls Intrusion Detection Encryption Secure Real Time Operating Systems Join Technical Organizations and Consortiums to Influence Industry Consortium for Electric Infrastructure to Support a Digital Society (CEIDS) IEEE-Instrument, Systems and Automation Society (IAS) International Electrotechnical Commission (IEC)

21 UNCLASSIFIED Dahlgren Test Bed Citadelle Bastille Shielded Diagnostic Vans

22 UNCLASSIFIED Questions ?

Download ppt "Joint Program Office for Special Technology Countermeasures Joint Program Office for Special Technology Countermeasures JPOSTCJPOSTC JPOSTCJPOSTC Briefing."

Similar presentations

Remote Automation and Monitoring: PLC or RTU. Key Points PLCs and RTUs are similar devices with somewhat differing functionality.

Remote Automation and Monitoring: PLC or RTU. Key Points PLCs and RTUs are similar devices with somewhat differing functionality.
Computer Sciences & Engineering Department

Computer Sciences & Engineering Department
Public Safety Related Applications Summary July, 2014 - DRAFT -

Public Safety Related Applications Summary July, DRAFT -
Lighting and Wastewater Controls Smithfield Foods Engineering.

Lighting and Wastewater Controls Smithfield Foods Engineering.
Substation Automation (S.A) System Project Supervisor: Stuart Wildy.

Substation Automation (S.A) System Project Supervisor: Stuart Wildy.
Team Dec13_11: Cole Hoven Jared Pixley Derek Reiser Rick Sutton Adviser/Client: Prof. Manimaran Govindarasu Graduate Assistant: Aditya Ashok PowerCyber.

Team Dec13_11: Cole Hoven Jared Pixley Derek Reiser Rick Sutton Adviser/Client: Prof. Manimaran Govindarasu Graduate Assistant: Aditya Ashok PowerCyber.
National Space-Based Positioning, Navigation, and Timing (PNT) Federal Advisory Board DHS Challenges & Opportunities Captain Curtis Dubay, P.E. Department.

National Space-Based Positioning, Navigation, and Timing (PNT) Federal Advisory Board DHS Challenges & Opportunities Captain Curtis Dubay, P.E. Department.
IS Network and Telecommunications Risks

IS Network and Telecommunications Risks
SCADA SYSTEM CLASSIFICATION

SCADA SYSTEM CLASSIFICATION
SCADA MODEL SYSTEM COMPONENTS

SCADA MODEL SYSTEM COMPONENTS
Toward Open Source Intrusion Tolerant SCADA Trevor Aron JR Charles Akshay Srivatsan Mentor: Marco Platania.

Toward Open Source Intrusion Tolerant SCADA Trevor Aron JR Charles Akshay Srivatsan Mentor: Marco Platania.
ABB Connectivity & Smart Grid Ahmed Fahmy,Senior Technical Promoter 18-19 Novmber 2014 NEMA technical workshop.

ABB Connectivity & Smart Grid Ahmed Fahmy,Senior Technical Promoter Novmber 2014 NEMA technical workshop.
 A system consisting of a number of remote terminal units (or RTUs) collecting field data connected back to a master station via a communications system.

 A system consisting of a number of remote terminal units (or RTUs) collecting field data connected back to a master station via a communications system.
Introduction to wind parks SCADA systems

Introduction to wind parks SCADA systems
Trends in SCADA Technology for Public Power

Trends in SCADA Technology for Public Power
Secure Systems Research Group - FAU 1 SCADA Software Architecture Meha Garg Dept. of Computer Science and Engineering Florida Atlantic University Boca.

Secure Systems Research Group - FAU 1 SCADA Software Architecture Meha Garg Dept. of Computer Science and Engineering Florida Atlantic University Boca.
Network Infrastructure Security. LAN Security Local area networks facilitate the storage and retrieval of programs and data used by a group of people.

Network Infrastructure Security. LAN Security Local area networks facilitate the storage and retrieval of programs and data used by a group of people.
INTRODUCTION Chapter 1.

INTRODUCTION Chapter 1.
© ELPRO Technologies NORCAL ISA Think Wireless…Think ELRPO Wireless Gateways Smart Wireless Gateways The 21 st Century modem Frank Williams May 1, 2007.

© ELPRO Technologies NORCAL ISA Think Wireless…Think ELRPO Wireless Gateways Smart Wireless Gateways The 21 st Century modem Frank Williams May 1, 2007.
Title Month Year John Richmond

Title Month Year John Richmond

Similar presentations

Ads by Google