ICS & SCADA

Supervisory Control and Data Acquisition Systems (SCADA Systems)

Most critical infrastructure, including major utilities infrastructure, industrial networks and transport systems, are controlled by SCADA systems. SCADA systems are smart, intelligent control systems that acquire inputs from a variety of sensors and, in many instances, respond to the system in real time through actuators under the program’s control. The SCADA system can function as a monitoring/supervisory system, control system or a combination thereof. SCADA Vs. IT Security Requirements

Moving to IP-based systems provides tremendous economic advantages in a time of intense competition. Consequently, more and more systems are expected to move toward IP-based systems. For example, the advantages of migrating from a proprietary radio-based network to an IP-based network include shared network resources across multiple applications, network improvements such as added redundancy and capacity across all applications, shared network management systems, and having to maintain only one skill set for onsite support staff. However, all known vulnerabilities and threats associated with traditional TCP/IP are available for exploitation, making it a challenge for the SCADA security community. Although all risk factors associated with IT systems apply to SCADA systems, it is not possible to completely superimpose an IT security framework on SCADA systems.

Governing SCADA Security

Industry organizations are developing standards for their vertical industries. These include, for example:

• Electric: North American Electric Reliability Corporation Critical Infrastructure Protection (NERC CIP)

• Chemicals: Chemical Industry Data Exchange/American Chemistry Council (CIDX/ACC)

• Natural gas: American Gas Association 12 (AGA 12)

• Oil and liquids: American Petroleum Institute (API)

• Manufacturing: International Society for Automation/International Electrotechnical Commission (ISA/IEC 62443) (formerly ISA 99)

Some governments have come up with their own regulations and standards, e.g., the US National Institute of Standards and Technology (NIST), the UK Center for Protection of National Infrastructure (CPNI) and The Netherlands Center for Protection of National Infrastructure (CPNI).

However, compliance to standards/regulations does not guarantee continuous security, but it does provide a snapshot of required controls at a point in time.

As new threats are identified almost daily, SCADA systems require a dynamic risk-based approach to keep pace with evolving threat scenarios.

IT security and risk professionals who have worked in traditional areas such as banking, finance or telecommunications are facing the same challenges of continuously evolving threats and risk. Most traditional IT security frameworks are modeled on standards/guidelines from ISACA, NIST or the International Organization for Standardization (ISO).

Resources

• Navigating Industrial Cybersecurity: A Field Guide (PDF)

• ScadaFence Blog

• SCADA Pentesting Course at BruCON

• SCADA Hacker

• CISA Cybersecurity Advisory AA22-103A

• DoD Control Systems Security Resource Guide (PDF)

• Awesome Industrial Control System Security

• Awesome Hardware and IoT Hacking

1. Introduction to SCADA

• Definition:

  • SCADA = Supervisory Control and Data Acquisition.

  • A centralized system for monitoring, controlling, and optimizing industrial processes in real time.

• Primary Functions:

  • Data acquisition from remote devices.

  • Supervisory control of field operations.

  • Human-Machine Interface (HMI) for operator interaction.

  • Alarm management and historical data logging.

---

2. Core Components of SCADA

1. Field Devices:

   • Sensors/Transmitters: Measure process variables (e.g., temperature, pressure).

   • Actuators: Execute control actions (e.g., valves, pumps).

   • RTU (Remote Terminal Unit):

     • Collects data from field devices.

     • Transmits data to the central system.

     • Executes control commands from the MTU.

2. MTU (Master Terminal Unit):

   • Central processing unit.

   • Manages communication with RTUs.

   • Hosts HMI, databases, and control algorithms.

3. Communication Infrastructure:

   • Medium: Fiber optics, radio, satellite, cellular, or wired networks.

   • Protocols: Modbus, DNP3, OPC, TCP/IP.

4. HMI (Human-Machine Interface):

   • Graphical interface for operators.

   • Displays real-time data, alarms, and trends.

   • Allows manual control inputs.

5. SCADA Server:

   • Stores historical data.

   • Runs advanced applications (e.g., leak detection, predictive maintenance).

---

3. SCADA System Architecture

Hierarchical Layers:

1. Field Level:

   • Sensors, actuators, and RTUs.

   • Converts physical signals to digital data.

2. Control Level:

   • PLCs (Programmable Logic Controllers) or RTUs.

   • Executes local control logic (e.g., PID loops).

3. Supervisory Level:

   • MTU and HMI.

   • Monitors multiple control loops and optimizes processes.

4. Enterprise Level:

   • Integrates with business systems (ERP, SAP).

   • Provides data for strategic decision-making.

---

4. Communication Protocols

• Modbus: Open protocol for PLC communication.

• DNP3: Robust protocol for utility industries (electricity, water).

• OPC (Open Platform Communications): Standardizes data exchange between devices/software.

• TCP/IP: Backbone for LAN/WAN connectivity.

---

5. Applications of SCADA

• Oil & Gas: Pipeline monitoring, leak detection.

• Power Grids: Load balancing, outage management.

• Water Management: Treatment plants, distribution networks.

• Manufacturing: Production line automation.

• Transportation: Traffic signal control, railway systems.

---

6. Key Benefits

• Operational Efficiency: Real-time data reduces downtime.

• Cost Savings: Remote monitoring minimizes onsite visits.

• Safety: Automated alarms for critical conditions (e.g., overpressure).

• Scalability: Supports expansion with modular components.

---

7. Challenges & Solutions

• Cybersecurity Risks:

  • Vulnerabilities in legacy systems.

  • Mitigation: Firewalls, encryption, regular updates.

• Interoperability Issues:

  • Mixing devices from different vendors.

  • Solution: Use standardized protocols (OPC, Modbus).

---

8. Modern Trends in SCADA

• IIoT Integration:

  • Connects SCADA with IoT sensors for predictive analytics.

• Cloud-Based SCADA:

  • Centralized data storage and remote access.

• Edge Computing:

  • Local data processing at RTUs/PLCs to reduce latency.

• AI/ML:

  • Enhances anomaly detection and optimization.

---

9. Example: Water Treatment Plant SCADA

1. Sensors: Monitor pH, turbidity, flow rates.

2. RTUs: Transmit data to the central server.

3. MTU: Alerts operators if parameters exceed limits.

4. Actuators: Adjust chemical dosing pumps automatically.

---

10. Summary

• SCADA is the backbone of industrial automation.

• Combines data acquisition, control, and visualization.

• Evolved from basic telemetry to AI-driven, cloud-enabled systems.

• Critical for industries requiring reliability, safety, and efficiency.