Critical infrastructure and industrial automation systems are becoming profitable targets for online predators. Generally, the physical systems that incorporate cyber components, such as programmable logic, micro controllers, sensors, and actuators, field area network controllers, often known as distributed control systems, wide-area networks, etc., are supervised by Supervisory Control and Data Acquisition (SCADA). Following the discovery of Stuxnet in 2009, as well as numerous other incidents of cyberattacks, including one on a chemical plant in Germany and a power distribution system in Ukraine, studies on protecting these systems against cyberattacks, such as plants, have grown to be crucial. But frequently, it is not acceptable to exploit vulnerabilities in the actual operating critical systems evaluation or testing methods for mitigating. We will be concentrating on (i) case studies of the evaluation of the vulnerabilities in industrial components that are frequently used in actual critical systems around the globe. (ii) The security of the exploits consequences; (iii) the mitigating strategies we will be using for defending against such attacks.

错误:搜索内容不能为空,请输入英文关键词
错误:关键词超出字数限制,请精简
高级检索

Vulnerability Management and Risk Assessment and its Mitigation in ICS

  • Nabadeepa Bhowmik,
  • Ujjaval Patel

摘要

Critical infrastructure and industrial automation systems are becoming profitable targets for online predators. Generally, the physical systems that incorporate cyber components, such as programmable logic, micro controllers, sensors, and actuators, field area network controllers, often known as distributed control systems, wide-area networks, etc., are supervised by Supervisory Control and Data Acquisition (SCADA). Following the discovery of Stuxnet in 2009, as well as numerous other incidents of cyberattacks, including one on a chemical plant in Germany and a power distribution system in Ukraine, studies on protecting these systems against cyberattacks, such as plants, have grown to be crucial. But frequently, it is not acceptable to exploit vulnerabilities in the actual operating critical systems evaluation or testing methods for mitigating. We will be concentrating on (i) case studies of the evaluation of the vulnerabilities in industrial components that are frequently used in actual critical systems around the globe. (ii) The security of the exploits consequences; (iii) the mitigating strategies we will be using for defending against such attacks.