×
INTELLIGENT WORK FORUMS
FOR ENGINEERING PROFESSIONALS

Log In

Come Join Us!

Are you an
Engineering professional?
Join Eng-Tips Forums!
  • Talk With Other Members
  • Be Notified Of Responses
    To Your Posts
  • Keyword Search
  • One-Click Access To Your
    Favorite Forums
  • Automated Signatures
    On Your Posts
  • Best Of All, It's Free!
  • Students Click Here

*Eng-Tips's functionality depends on members receiving e-mail. By joining you are opting in to receive e-mail.

Posting Guidelines

Promoting, selling, recruiting, coursework and thesis posting is forbidden.

Students Click Here

Jobs

DCS/SCADA Survey

DCS/SCADA Survey

DCS/SCADA Survey

(OP)
I'm working on a research project that involves the use of metrics for measuring system security.  I have integrated systems in the past but my experience is limited so I'm curious to know what others have seen (especially in DCS systems).  Here's what I'm interested in:

Are metrics used to measure any part of the system security?  This is from employee security training all the way down to intrusion detection.

Are process control operators and managers familiar with other metrics?  For example OEE (Overall Equipment Effectiveness), Wonderware DTAnalyst, Honeywell Alarm Scout.

Most systems I've seen don't use virus detection software due to the performance issues, is this generally true?

What about IDS (intrusion detection software)?

Any data provided would be greatly appreciated.  Thanks!

Marty

RE: DCS/SCADA Survey

We don't use intrusion detection software.  We also don't have any metrics to measure how secure our control system is.

We do run virus detection software.

Sorry, not much help.

RE: DCS/SCADA Survey

Hi Marty,

In the old days, the DCS/control system was a stand alone sytsem, and not conneted to any other systems (eg. the office LAN). Back then, security was primarily via physical keys (which everybody seems to have a copy of), and/or operator logon/passwords (again, not totally secure). I am not aware of any metric other than gathering data for the number of excursion, upsets, etc.

Today, many DCS/control systems are linked to the office system (LAN) via router/switches/hubs/etc. My suggestin for a metric for this type of system may be to adapt the existing IT metric. In this type of setup, your DCS is now like another node on your offcie system/network. Any intrusion into the corporate system/network may mean intrusion into your control system (more so if you also use wireless technology).

Some security feature you may want to think about are:
- firewall your router(s)
- read only by the office LAN
- use MAC addresses rather than IP addresses since most viruses tend to attack via IP rather than MAC
- limit operator access to their areas only, not the whole system

Not sure if this anwser's your query. I'd like to know what you come up with though.



Red Flag This Post

Please let us know here why this post is inappropriate. Reasons such as off-topic, duplicates, flames, illegal, vulgar, or students posting their homework.

Red Flag Submitted

Thank you for helping keep Eng-Tips Forums free from inappropriate posts.
The Eng-Tips staff will check this out and take appropriate action.

Reply To This Thread

Posting in the Eng-Tips forums is a member-only feature.

Click Here to join Eng-Tips and talk with other members!


Resources