Continue to Site

Eng-Tips is the largest engineering community on the Internet

Intelligent Work Forums for Engineering Professionals

Register Log in
  • Congratulations waross on being selected by the Eng-Tips community for having the most helpful posts in the forums last week. Way to Go!

DCS/SCADA Survey 1

Status
Not open for further replies.
mls1

mls1

Electrical
Aug 15, 2002
133
I'm working on a research project that involves the use of metrics for measuring system security. I have integrated systems in the past but my experience is limited so I'm curious to know what others have seen (especially in DCS systems). Here's what I'm interested in:

Are metrics used to measure any part of the system security? This is from employee security training all the way down to intrusion detection.

Are process control operators and managers familiar with other metrics? For example OEE (Overall Equipment Effectiveness), Wonderware DTAnalyst, Honeywell Alarm Scout.

Most systems I've seen don't use virus detection software due to the performance issues, is this generally true?

What about IDS (intrusion detection software)?

Any data provided would be greatly appreciated. Thanks!

Marty
 
Replies continue below

Recommended for you

Sort by date Sort by votes
We don't use intrusion detection software. We also don't have any metrics to measure how secure our control system is.

We do run virus detection software.

Sorry, not much help.

 
Upvote 0 Downvote
Hi Marty,

In the old days, the DCS/control system was a stand alone sytsem, and not conneted to any other systems (eg. the office LAN). Back then, security was primarily via physical keys (which everybody seems to have a copy of), and/or operator logon/passwords (again, not totally secure). I am not aware of any metric other than gathering data for the number of excursion, upsets, etc.

Today, many DCS/control systems are linked to the office system (LAN) via router/switches/hubs/etc. My suggestin for a metric for this type of system may be to adapt the existing IT metric. In this type of setup, your DCS is now like another node on your offcie system/network. Any intrusion into the corporate system/network may mean intrusion into your control system (more so if you also use wireless technology).

Some security feature you may want to think about are:
- firewall your router(s)
- read only by the office LAN
- use MAC addresses rather than IP addresses since most viruses tend to attack via IP rather than MAC
- limit operator access to their areas only, not the whole system

Not sure if this anwser's your query. I'd like to know what you come up with though.



 
Upvote 0 Downvote
Status
Not open for further replies.

Similar threads

Pavan Kumar
  • Locked
  • Question
Bad Data from DCS - Need to Understand 1
Replies
6
Views
421
danw2
danw2
stewbaby
  • Locked
  • Question
DCS or PLC emergency call out system
Replies
8
Views
283
controlnovice
controlnovice
jWithTheSmile
  • Locked
  • Question
Microcontroller to SCADA
Replies
1
Views
88
sonamb
sonamb
Kiran369
  • Locked
  • Question
Fisher DVC 6000 SERIES PWB COMMUNICATION FAILURE WITH DCS
Replies
1
Views
211
danw2
danw2
omareladel
  • Locked
  • Question
How SCADA Systems communicate with each other
Replies
3
Views
196
bohdand
bohdand

Part and Inventory Search

Sponsor

Back
Top Bottom