Projects per year
The threat landscape for industrial control systems is ever-expanding and these systems have proven to be attractive targets for cyber attackers. Programmable Logic Controllers are major components in ICSs and hence need to be well-protected and monitored. By examining the existing research in this field we found that there is a void in comprehensive analysis of data logging and extraction features on industrial devices. However, analysis of these features and evaluation of their applicability for cyber intrusion detection would significantly facilitate their adoption by intrusion detection tools. In order to close the gap, we analyzed the logging and extraction capabilities of the Siemens S7-1200 PLC and HMI panel. We implemented a PLC logic for data logging called PLCBlockMon. In this paper, we provide guidelines for its usage and demonstrate its applicability for cyber intrusion detection in selected scenarios.
|Title of host publication||5th International Symposium for ICS & SCADA Cyber Security Research 2018: Proceedings|
|Publisher||Electronic Workshops in Computing (eWic)|
|Number of pages||10|
|Publication status||Published - Aug 2018|
|Event||5th International Symposium for ICS & SCADA Cyber Security Research 2018 - Hamburg, Germany|
Duration: 28 Aug 2018 → 30 Aug 2018
|Name||The eWiC Series|
|Conference||5th International Symposium for ICS & SCADA Cyber Security Research 2018|
|Period||28/08/2018 → 30/08/2018|
FingerprintDive into the research topics of 'PLCBlockMon: Data Logging and Extraction on PLCs for Cyber Intrusion Detection'. Together they form a unique fingerprint.
- 2 Finished
13/01/2016 → 30/09/2018
15/04/2014 → 30/06/2017