Title :
Industrial PLC security issues
Author :
Milinkovic, S.A. ; Lazic, L.R.
Author_Institution :
Sch. of Comput., Univ. of Belgrade, Belgrade, Serbia
Abstract :
In this paper we have shown that PLC devices are complex embedded systems often relying on some operating system. They are plagued by the same sorts of vulnerabilities and exploits as general purpose operating systems. In fact, the number of latent vulnerabilities in the typical microprocessor-based device can be surprisingly high. However we don´t need bugs or vulnerabilities in order to attack the PLC. We can exploit its normal operation provided we have some access to the device. It is suggested that the one of effective ways to avoid expensive business losses or production disruption due to misuse of the PLC is to start protecting the system with defence-in-depth measures.
Keywords :
control engineering computing; embedded systems; industrial control; operating systems (computers); programmable controllers; security of data; Industrial PLC security issues; PLC devices; complex embedded systems; general purpose operating systems; microprocessor-based device; normal operation; Authentication; Control systems; IP networks; Microprogramming; Operating systems; Protocols; PLC; embedded software; information security; manufacturing automation;
Conference_Titel :
Telecommunications Forum (TELFOR), 2012 20th
Conference_Location :
Belgrade
Print_ISBN :
978-1-4673-2983-5
DOI :
10.1109/TELFOR.2012.6419513
