Off-the-shelf intrusion detection systems prove an ill fit for protecting industrial control systems, as they do not take their process semantics into account. Specifically, current systems fail to detect recent proce...
详细信息
ISBN:
(纸本)9781450330053
Off-the-shelf intrusion detection systems prove an ill fit for protecting industrial control systems, as they do not take their process semantics into account. Specifically, current systems fail to detect recent process control attacks that manifest as unauthorized changes to the configuration of a plant s programmable logic controllers (PLCs). In this work we present a detector that continuously tracks updates to corresponding process variables to then derive variablespecific prediction models as the basis for assessing future activity. Taking a specification-agnostic approach, we passively monitor plant activity by extracting variable updates from the devices network communication. We evaluate the capabilities of our detection approach with traffic recorded at two operational water treatment plants serving a total of about one million people in two urban areas. We show that the proposed approach can detect direct attacks on process control, and we further explore its potential to identify more sophisticated indirect attacks on field device measurements as well.
Industrial Process Control is constantly expand, regarding their control more and more solutions are presently in the market. These include mature methods like Petri nets, and standardized languages, which are commonl...
详细信息
CNC vertical lathe is the main on products. The domestic and foreign demand is also very big. The key part of the high precision is on the control of the spindle. This design is with the German SIEMENS company program...
详细信息
Changes of software in factory automation are frequent and resource-consuming in quality assurance when proving compliance with functional specifications. Automated testing can help minimizing required resources for s...
详细信息
Discrete Laguerre filters are a simple and efficient tool for approximating stable dynamical systems. They can be used not only to model the system dynamics but also to express the controller structure. In this paper ...
详细信息
Running casing with conventional equipment is a labor intensive process requiring multiple personnel on the rig floor. Due to the dynamic environment of running casing with this equipment, there is elevated potential ...
详细信息
ISBN:
(纸本)9781632660831
Running casing with conventional equipment is a labor intensive process requiring multiple personnel on the rig floor. Due to the dynamic environment of running casing with this equipment, there is elevated potential for accidents. Two specific operational hazards associated with hydraulic power tong operations (the "mule kick" and "rattlesnake") have been addressed, and the authors are developing solutions to mitigate future related incidents. A new system, utilizing a programmablelogic controller (PLC) and position sensors, as well as hydromechanical and electromechanical devices, has been devised to reduce the chance for injury and enhance safety for casing power tong operators. Risk mitigation through engineered safety controls is a primary objective for service companies, and the operators and contractors they work with. Hydromechanical, electromechanical, and electronic control (PLC) devices for land-based, conventional casing equipment are under development and revision. These devices are being customized for incorporation into power tongs and hydraulic power units. In conventional operation of power tongs, the power unit modulates the amount of hydraulic power provided to the tong based on required flow rate and pressure. The PLC provides the ability for electronic communication between the power tong and power unit, virtually eliminating lag in response time. The logic control can also determine, based on the magnitude of tension in the backup line, if the tongs are actively in make-up or break-out mode. These devices under development will prevent the violent backlash and stored energy associated with the "mule kick" and " rattlesnake". In addition, due to the flexibility of the system, Human Machine Interface (HMI) screens can be provided to adapt the system to changing conditions. The application of the logic controller and mechanical devices on land-based, conventional casing running equipment is a significant step in reducing operator and equipment er
Industrial plant software is implemented in the programming languages of IEC 61131-3. As plant software needs to perform many tasks, it is often highly complex and typically characterized by a monolithic structure. Wh...
详细信息
Industrial plant software is implemented in the programming languages of IEC 61131-3. As plant software needs to perform many tasks, it is often highly complex and typically characterized by a monolithic structure. Whereas for high-level programming languages, commonly occurring problems are solved using design patterns, such general reusable solution alternatives are not yet available for IEC 61131-3. Thus, an approach for statically analysing the plant software and visualizing the software units' complexity and interconnectedness is proposed in this paper. Furthermore, basic software design patterns are introduced and, subsequently, their appearance within plant software is evaluated using industrial code and interviews with experts. By that, a first step towards providing design patterns for IEC 61131-3 is made.
This paper presents an efficient static analysis for programmablelogic controller code. For each program line (or each function block call), the analysis calculates an over-approximation of the possible values each v...
详细信息
This paper presents an efficient static analysis for programmablelogic controller code. For each program line (or each function block call), the analysis calculates an over-approximation of the possible values each variable can assume during all possible executions. This information can then be used to automatically check for certain critical program conditions such as division-by-zero and array-out-of-bounds. To make this approach applicable to large programs comprising many variables, we present a technique that only stores the values of a subset of the variables based on their context and liveness. We show how to detect typical problems in real PLC code.
In this paper, the current situation of how PLC software is tested in industry is analyzed and the challenges on new testing approaches are identified using real industry code and a survey conducted within industry. T...
详细信息
In this paper, the current situation of how PLC software is tested in industry is analyzed and the challenges on new testing approaches are identified using real industry code and a survey conducted within industry. The different possible and most relevant faults that may occur and must be dealt with are identified and requirements for testing approaches concerning component failures are derived. Further on, an approach to generate tests for error handling routines, which test the reliability of plants by injecting the corresponding faults is presented. The test cases are generated from timing sequence diagrams in combination with failure mode and effects analysis. In order to inject the faults at relevant points during the execution of the control software, IEC 61131-3 code is analyzed for the derivation of the test cases.
暂无评论