Security attack analysis of safety systems

被引:0
|
作者
Hansen, Kai [1 ]
机构
[1] ABB Corp Reseach, N-1375 Billingstad, Norway
来源
2009 IEEE CONFERENCE ON EMERGING TECHNOLOGIES & FACTORY AUTOMATION (EFTA 2009) | 2009年
关键词
D O I
暂无
中图分类号
TP [自动化技术、计算机技术];
学科分类号
0812 ;
摘要
An analysis of the security threats from attack scenarios for a state of the art safety certified control system is done here in order to provide a realistic discussion of the risk that a hacker could endanger, even kill people or harm the environment by such means. The security discussion here is done from a practical hacker's point of view instead of an analytic categorization. We show that even if there are known issues of using these outside a protected network, the challenges that a hostile hacker faces are much larger than a typical case. Most safety communication protocols are a vulnerable point in the system, with higher risk of dangerous compromising than the safety devices. We show that the most likely outcome of hacking a safety system is bringing the system to fail safe state, harming the availability instead of the safety.
引用
收藏
页数:4
相关论文
共 50 条
  • [21] Safety and security of information systems
    Shaw, R
    TOWARDS SECURITY IN MEDICAL TELEMATICS: LEGAL AND TECHNICAL ASPECTS, 1996, 27 : 190 - 199
  • [22] An Analysis of Cyber Security Attack Taxonomies
    Derbyshire, Richard
    Green, Benjamin
    Prince, Daniel
    Mauthe, Andreas
    Hutchison, David
    2018 3RD IEEE EUROPEAN SYMPOSIUM ON SECURITY AND PRIVACY WORKSHOPS (EUROS&PW 2018), 2018, : 153 - 161
  • [23] On the Security and Safety of AbU Systems
    Pasqua, Michele
    Miculan, Marino
    SOFTWARE ENGINEERING AND FORMAL METHODS (SEFM 2021), 2021, 13085 : 178 - 198
  • [24] Attack Graph-Based Data Presentation for Use in Automated Security Analysis Systems
    E. M. Orel
    D. A. Moskvin
    A. A. Lyashenko
    Automatic Control and Computer Sciences, 2024, 58 (8) : 1436 - 1441
  • [25] A practical tool for analysis of security in systems for distribution of digital contents based on 'attack trees'
    Higuero, Marivi
    Unzilla, Juanjo
    Saiz, Purificacion
    Jacob, Eduardo
    Aguado, Marina
    Goirizelaia, Inaki
    BMSB: 2009 IEEE INTERNATIONAL SYMPOSIUM ON BROADBAND MULTIMEDIA SYSTEMS AND BROADCASTING, VOLS 1 AND 2, 2009, : 232 - 237
  • [26] Extraction and systems analysis of factors that prevent safety and security by structural models
    Tamura, H
    Nagata, R
    Akazawa, K
    SICE 2002: PROCEEDINGS OF THE 41ST SICE ANNUAL CONFERENCE, VOLS 1-5, 2002, : 1752 - 1759
  • [27] A new safety and security risk analysis framework for industrial control systems
    Kriaa, Siwar
    Bouissou, Marc
    Laarouchi, Youssef
    PROCEEDINGS OF THE INSTITUTION OF MECHANICAL ENGINEERS PART O-JOURNAL OF RISK AND RELIABILITY, 2019, 233 (02) : 151 - 174
  • [28] Embedded Systems Security: Threats, Vulnerabilities, and Attack Taxonomy
    Papp, Dorottya
    Ma, Zhendong
    Buttyan, Levente
    2015 THIRTEENTH ANNUAL CONFERENCE ON PRIVACY, SECURITY AND TRUST (PST), 2015, : 145 - 152
  • [29] A survey on EOSIO systems security: vulnerability, attack, and mitigation
    He, Ningyu
    Wang, Haoyu
    Wu, Lei
    Luo, Xiapu
    Guo, Yao
    Chen, Xiangqun
    FRONTIERS OF COMPUTER SCIENCE, 2025, 19 (06)
  • [30] A Generic Metamodel for IT Security - Attack Modeling for Distributed Systems
    Miede, Andre
    Nedyalkov, Nedislav
    Gottron, Christian
    Koenig, Andre
    Repp, Nicolas
    Steinmetz, Ralf
    FIFTH INTERNATIONAL CONFERENCE ON AVAILABILITY, RELIABILITY, AND SECURITY: ARES 2010, PROCEEDINGS, 2010, : 430 - 437
12345