Title :
Security attack analysis of safety systems
Author_Institution :
ABB Corp. Reseach, Billingstad, Norway
Abstract :
An analysis of the security threats from attack scenarios for a state of the art safety certified control system is done here in order to provide a realistic discussion of the risk that a hacker could endanger, even kill people or harm the environment by such means. The security discussion here is done from a practical hacker´s point of view instead of an analytic categorization. We show that even if there are known issues of using these outside a protected network, the challenges that a hostile hacker faces are much larger than a typical case. Most safety communication protocols are a vulnerable point in the system, with higher risk of dangerous compromising than the safety devices. We show that the most likely outcome of hacking a safety system is bringing the system to fail safe state, harming the availability instead of the safety.
Keywords :
computer crime; safety systems; fail safe state; practical hackers perspective; safety communication protocol; safety system; security attack analysis; state-of-the-art safety certified control system; Communication system security; Computer hacking; Control systems; Electrical equipment industry; IEC standards; Industrial control; Protection; Protocols; Risk analysis; Safety devices;
Conference_Titel :
Emerging Technologies & Factory Automation, 2009. ETFA 2009. IEEE Conference on
Conference_Location :
Mallorca
Print_ISBN :
978-1-4244-2727-7
Electronic_ISBN :
1946-0759
DOI :
10.1109/ETFA.2009.5347258
