ABSTRACT
We develop a method for collecting security logs of industrial control systems (ICS) as a preliminary study for ICS security log management and integrated monitoring systems. Although there is scope to collect security logs by using traditional IT technology, this is challenging for special ICS devices such as a programmable logic controller (PLC). PLCs are the major target of APT in ICS because physical damage can be caused by connecting directly with sensors or actuators. According to NIST SP 800-92 \citekent2006sp, that provides importance of log management in computer security, security logs generated from PLCs also need to be managed to enhance ICS security. Therefore, this study analyzes how to collect various information on PLCs. Additionally, we experimented with collecting system logs from a PLC that provides system information via a web interface, and the results are described.
- Seungoh Choi, Yesol Kim, Jeong-Han Yun, Byung-Gil Min, and HyoungChun Kim.2019. Data-Driven Field Mapping of Heterogeneous Security Events for Integrated Monitoring. In Thirteenth Annual IFIP WG 11.10 International conference on Critical Infrastructure Protection.Google Scholar
- Seungoh Choi, Woomyo Lee, Hyeok-Ki Shin, Jeong-Han Yun, and Sin-Kyu Kim.2018. POSTER: CPS Security Testbed Development Using Controller-in-the-Middle. In Proceedings of the 2018 on Asia Conference on Computer and Communications Security (ASIACCS '18). ACM, New York, NY, USA, 829--831. Google ScholarDigital Library
- Nicolas Falliere, Liam O Murchu, and Eric Chien. 2011. W32. stuxnet dossier.White paper, Symantec Corp., Security Response5, 6 (2011), 29.Google Scholar
- Karen Kent and Murugiah P Souppaya. 2006. SP 800--92: guide to computer securitylog management. (2006).Google Scholar
- Siemens. 2015. Which information is entered in the diagnostic buffer of the SIMATIC S7 CPU with STEP 7. Retrieved April 15, 2019 from https://support.industry.siemens.com/cs/document/14960968/Google Scholar
Recommendations
Design and implementation of PID controller in programmable logic controller for DC motor position control of the conveyor system
CONTROL'07: Proceedings of the 3rd WSEAS/IASME international conference on Dynamical systems and controlDirect Current (DC) motor position control using Programmable Logic Controller (PLC) is one of the applications which are widely used in automation industries. The aim of this project is to implement a Proportional Integral Derivative (PID) controller ...
Design and Realization of Fuzzy Self-tuning PID Water Temperature Controller Based on PLC
IHMSC '12: Proceedings of the 2012 4th International Conference on Intelligent Human-Machine Systems and Cybernetics - Volume 02Temperature Control System has the characteristics of nonlinear, strong delay and inertia, and it is difficult to build the accurate mathematical models of the system. Conventional PID controller can not achieve precise control because its control ...
Building Control, Monitoring, Safety and Security Using Collaborative Systems
INCOS '12: Proceedings of the 2012 Fourth International Conference on Intelligent Networking and Collaborative SystemsThis paper describes the use of SIEMENS S7-300 PLC's and SIEMENS SIMATIC WinCC software in creating collaborative systems for controlling and monitoring modern buildings. These systems assure also the safety and security of the buildings. The ...
Comments