Title :
Software Safety and Security for Programmable Logic Controllers
Author :
Farkas, Csaba ; Valentine, Sidney
Author_Institution :
Dept. of Comput. Sci. & Eng., Univ. of South Carolina, Columbia, SC, USA
Abstract :
Supervisory Control and Data Acquisition (SCADA) systems are widely used in automated manufacturing and in all areas of our nation´s infrastructure. Current research on SCADA security focuses on the primary SCADA components and targets network centric attacks. Security risks via attacks against the peripheral devices such as the Programmable Logic Controllers (PLCs) have not been sufficiently addressed. Since PLCs dictate the functionality of the processes it is crucial that they function correctly and securely. In this paper we study the problem of providing safety and security for ladder logic code. We argue that general purpose safety and security methods are insufficient for PLCs due to the specific context and the unique processing logic of ladder logic applications. We present a PLC Security Framework (PLC-SF) that is compatible with the current PLC compilers, detects and classifies incorrect and unsafe ladder logic code. After the classification of the vulnerabilities, PLC-SF recommends appropriate design-patterns to eliminate the problems.
Keywords :
SCADA systems; control engineering computing; programmable controllers; security of data; PLC security framework; PLC-SF; SCADA security; ladder logic code; network centric attack; peripheral device; primary SCADA component; programmable logic controller; security risk; software safety; supervisory control and data acquisition; unique processing logic; Abstracts; Information technology; SCADA systems; Security; Software safety; US Department of Energy; PLC; design patterns; ladder logic; security; software reliability;
Conference_Titel :
Information Technology: New Generations (ITNG), 2013 Tenth International Conference on
Conference_Location :
Las Vegas, NV
Print_ISBN :
978-0-7695-4967-5
DOI :
10.1109/ITNG.2013.98
