The PLC of Industrial Control System Facing Security Threats from Cyberspace

doi:10.3969/j.issn.1671-1122.2016.09.045

Abstract

Abstract:

Since invented, Programmable Logic Controller(PLC) is widely used in Industrial Control Systems(ICS).With the gradual fusion of industrialization and informationization,more technology like smart hardware & the Internet of Things IoT was used in ICS, and more PLCs exposed on the Internet.For originally only for automation control without considering security, PLC was attacked by hacker have occurred sometimes,and caused substantial damage to real physical device. The paper simulated the reduction process of a new type attack on PLC. Hackers use tools to invade PLC. PLCs Which can be uploaded and downloaded code turn into the gateway. Then they use PLC as tools to access other ICS and information systems. Malicious code is long latent period and hard to moniter.It is hard to stop when the attack occurred. The paper provides the attack process for the analysis and research, and provide reference for the research of the PLC and ICS safety.

Key words: PLC, ICS, cyberspace attack

CLC Number:

TP309

Guojiang SONG, Ronghua XIAO, PEI YAN. The PLC of Industrial Control System Facing Security Threats from Cyberspace[J]. Netinfo Security, 2016, 16(9): 228-233.

Figures/Tables 9

References 17

[1]	王小山,杨安,石志强,等. 工业控制系统信息安全新趋势[J]. 信息网络安全,2015(1):6-11.
[2]	陈梁. “震网”病毒敲响自动化系统安全警钟[J]. 自动化技术与应用,2010,29(10):138.
[3]	WADE S M.SCADA Honeynets: the Attractiveness of Honeypots as Critical Infrastructure Security Tools for the Detection and Analysis of Advanced threats[J]. Digital Repository, 2011,12(4):11-15.
[4]	谢耀滨,舒辉,常瑞,等.可编程逻辑控制器脆弱性分析关键技术研究[J].计算机工程与应用,2016,52(12):105-107.
[5]	王峰. 关于PLC在工业自动化控制领域中的应用分析[J]. 科技展望,2015(5):159.
[6]	PENG Y, WANG Y, XIANG C, et al.Cyber-Physical Attack-Oriented Industrial Control Systems (ICS) Modeling, Analysis and Experiment Environment[C]// IEEE,2015 International Conference on Intelligent Information Hiding and Multimedia Signal Processing (IIH-MSP), September 23-25. 2015, Adelaide, SA. Washington, DC: IEEE Computer Society 2015:322-326
[7]	周小锋,陈秀真. 面向工业控制系统的灰色层次信息安全评估模型[J]. 信息网络安全,2014(1):15-20.
[8]	潘必胜. 西门子PLC的PPI通信协议研究[J]. 单片机与嵌入式系统应用,2009(12):35-37.
[9]	彭瑜. SFC的结构化特性及其在PLC系统控制程序设计中的作用[J]. 电气时代,2008(9):56-61.
[10]	谭小彬,王卫平,奚宏生,等. 计算机系统入侵检测的隐马尔可夫模型[J]. 计算机研究与发展,2003,40(2):245-250.
[11]	林雪梅. 利用TCP/IP协议实现西门子PLC与上位机的通信[J]. 南方金属,2014(2):39-41.
[12]	冯若愚,李远. 试论PLC系统常见故障与维修研究[J]. 科学与财富,2016,8(5).
[13]	李瑞民. 网络扫描技术揭秘: 原理、实践与扫描器的实现[M]. 北京:机械工业出版社,2012.
[14]	XIA Y Q, ZHANG B Q, XU J P .The Analysis and Application of SOCKS5 Proxy Technology[J]. Ordnance Industry Automation, 2003.
[15]	刘强,赵剑波,马平. OPC客户端与西门子PLC通信[J]. 冶金自动化,2009,33(z2):590-592.
[16]	西门子(中国)有限公司. 深入浅出西门子S7-1200 PLC[M]. 北京:北京航空航天大学出版社,2009.
[17]	王红凯,王志强,龚小刚. 移动互联网安全问题及防护措施探讨[J]. 信息网络安全,2014(9):207-210.