Projects per year
Abstract
The threat landscape for industrial control systems is ever-expanding and these systems have proven to be attractive targets for cyber attackers. Programmable Logic Controllers are major components in ICSs and hence need to be well-protected and monitored. By examining the existing research in this field we found that there is a void in comprehensive analysis of data logging and extraction features on industrial devices. However, analysis of these features and evaluation of their applicability for cyber intrusion detection would significantly facilitate their adoption by intrusion detection tools. In order to close the gap, we analyzed the logging and extraction capabilities of the Siemens S7-1200 PLC and HMI panel. We implemented a PLC logic for data logging called PLCBlockMon. In this paper, we provide guidelines for its usage and demonstrate its applicability for cyber intrusion detection in selected scenarios.
Original language | English |
---|---|
Title of host publication | 5th International Symposium for ICS & SCADA Cyber Security Research 2018: Proceedings |
Publisher | Electronic Workshops in Computing (eWic) |
Pages | 102-111 |
Number of pages | 10 |
DOIs | |
Publication status | Published - Aug 2018 |
Event | 5th International Symposium for ICS & SCADA Cyber Security Research 2018 - Hamburg, Germany Duration: 28 Aug 2018 → 30 Aug 2018 |
Publication series
Name | The eWiC Series |
---|---|
Publisher | BCS |
ISSN (Print) | 1477-9358 |
Conference
Conference | 5th International Symposium for ICS & SCADA Cyber Security Research 2018 |
---|---|
Country/Territory | Germany |
City | Hamburg |
Period | 28/08/2018 → 30/08/2018 |
Fingerprint
Dive into the research topics of 'PLCBlockMon: Data Logging and Extraction on PLCs for Cyber Intrusion Detection'. Together they form a unique fingerprint.Projects
- 2 Finished
-
R1594ECI: Analysing and Detecting Advanced Multistage Attacks Against ICS
McLaughlin, K. (PI)
13/01/2016 → 30/09/2018
Project: Research
-
R6440ECI: Smart Grid Protection Against Cyber Attacks
Sezer, S. (PI) & McLaughlin, K. (CoI)
15/04/2014 → 30/06/2017
Project: Research
Research output
- 1 Article
-
Vulnerability Analysis of S7 PLCs: Manipulating the Security Mechanism
Hui, H., McLaughlin, K. & Sezer, S., Dec 2021, In: International Journal of Critical Infrastructure Protection. 35, 100470.Research output: Contribution to journal › Article › peer-review
Open AccessFile20 Citations (Scopus)1006 Downloads (Pure)