Andrea Mangiameli*, Lacava G and Martinelli F
SCADA security is the practice of protecting the supervisory control and data acquisition (SCADA) networks responsible for the increasingly remote management of essential services such as water, natural gas, electricity and transport. In general, these networks connect a very large and heterogeneous number of devices, from simple sensors to complex machines such as 6-axis robots. The cyber-attacks documented in recent years on SCADA infrastructures (e.g. Stuxnet, Shamoon, Havex) have made us realise the importance of protecting these assets.
To date, the defense practices of such systems operate according to standard response protocols such as:
• The passive or active analysis of network traffic;
• The adoption of defence measures via anti-malware;
• Access control and impediment for unaccepted hosts or profiles;
• Partial business continuity in the event of a threat or attack.
What we propose with our work is an intelligent emergency response system (ASRO -Autonomous Smart Response Operator) that allows the same measures to be taken as would be taken by an operator, adapting to the type of threat or attack in progress. This makes it possible to:
• Take the same measures as other devices used in the industry;
• Perform a low-level analysis of the host or host network's internal processes;
• Carry out a remedial action proportionate to the offence, guaranteeing business continuity.
HTML PDFShare this article
Advances in Robotics & Automation received 1127 citations as per Google Scholar report
