Securing Your HMI/SCADA System
September 18, 2007 By: Jack Wilkins
Supervisory control and data acquisition (SCADA) systems monitor and control remote or local industrial equipment and processes in real time. Many of these systems have been in place for years, with little attention paid to who has access to them and how vulnerable they may be to deliberate or inadvertent compromise.
However it occurs, failure of an HMI/SCADA system is a serious matter. Pipelines crisscross the U.S. delivering all kinds of materials, some hazardous, some explosive. If an HMI/SCADA system controlling such a network is compromised and harmful material is released, the result can be loss of lives, a threat to the environment, and a multimillion-dollar cleanup.
Getting Secure
The first step to securing your HMI/SCADA system is understanding what you have and what is available. The larger issue of ongoing protection, however, requires a macro-level understanding of security issues, as well as an integrated effort by multiple systems and suppliers.
Today, resources and information supporting the security effort abound, and features available in the HMI/SCADA system components can help create secure environments. But in the end, the skill and knowledge of the systems integrator installing the HMI/SCADA system determines the security solution's effectiveness. In other words, the tools are there, but to be effective, they must be properly applied and implemented.
At the local level, you can ensure maximum security by creating operator constraints that reduce vulnerability through variability. Protect the desktop by preventing the operator from using HMI/SCADA screens improperly, and don't allow operators to use the operating system at all. Lock out the CTL-ALT-DEL and Alt-Tab commands that typically bring up operating system features. Control or restrict certain computer practices and functions an operator may need, such as email. When email access is granted on an operator's workstation, it creates one of the greatest potential vulnerabilities. Instead, consider providing email to the operator by placing it on a different computer and providing only a view of that function on the operator's station. Creating a secure system is not easy and takes time and effort.
Security Resources
The U.S. government embraces the need for security in a variety of ways and offers help through its Department of Homeland Security, Department of Energy, Sandia Labs, and National Institute of Standards and Technology, among other resources. These organizations have produced abundant material to assist manufacturers and system integrators in moving toward a more secure environment. One excellent resource is the Department of Energy's "21 Steps to Improve Cybersecurity of SCADA Networks," which runs the gamut from identifying all SCADA network connections to establishing policies and conducting training to prevent the inadvertent disclosure of sensitive information.
| sensorsonline: 01-Feb-2012: 01-Feb-2012 read more http://t.co/3OeclVKQ | |
| sensorsonline: 01-Feb-2012: 01-Feb-2012 read more http://t.co/3OeclVKQ | |
|
|
|
| sensorsonline: Wide-Temperature Ethernet Switches from Wago: The 852-103 and 852-104 from WAGO Corp., Germantown, WI, are Ether... http://t.co/QsOMSds2 | |
| sensorsonline: Wide-Temperature Ethernet Switches from Wago: The 852-103 and 852-104 from WAGO Corp., Germantown, WI, are Ether... http://t.co/QsOMSds2 | |
|
|
|
| sensorsonline: Bluetooth Low-Energy SoC from TI: The CC2541 Bluetooth low-energy SoC from Texas Instruments (TI) Inc., Dallas, ... http://t.co/OB3kelc9 | |
| sensorsonline: Bluetooth Low-Energy SoC from TI: The CC2541 Bluetooth low-energy SoC from Texas Instruments (TI) Inc., Dallas, ... http://t.co/OB3kelc9 | |
|
|
|
| sensorsonline: Combo Gyro and Accelerometer from Kionix: The KXG02 from Kionix Inc., Ithaca, NY, is a low-power, low-current 3-... http://t.co/j4nclAHD | |
| sensorsonline: Combo Gyro and Accelerometer from Kionix: The KXG02 from Kionix Inc., Ithaca, NY, is a low-power, low-current 3-... http://t.co/j4nclAHD | |
|
|
|
| sensorsonline: CAN Transceiver from Analog Devices: The ADM3054 from Analog Devices Inc., Norwood, MA, is a 5 kV rms signal-iso... http://t.co/ytse4FP7 | |
| sensorsonline: CAN Transceiver from Analog Devices: The ADM3054 from Analog Devices Inc., Norwood, MA, is a 5 kV rms signal-iso... http://t.co/ytse4FP7 | |
|
|
|
| sensorsonline: Do you subscribe to Sensors Weekly? If not, you might have missed these articles today http://t.co/YrbicBsi #sensorsweekly | |
| sensorsonline: Do you subscribe to Sensors Weekly? If not, you might have missed these articles today http://t.co/YrbicBsi #sensorsweekly | |
|
|
|
| sensorsonline: February R&D Round Up: This month's examples of clever and useful sensor research includes smart paint to monito... http://t.co/oTsU3EBx | |
| sensorsonline: February R&D Round Up: This month's examples of clever and useful sensor research includes smart paint to monito... http://t.co/oTsU3EBx | |
|
|
|
| sensorsonline: Will Tu: http://t.co/77KHZndE | |
| sensorsonline: Will Tu: http://t.co/77KHZndE | |
|
|
|
| sensorsonline: Quake Global Receives Certification for Q4000 Modem: The Q4000 is the first fully integrated, dual-mode modem fo... http://t.co/YzLgOtjg | |
| sensorsonline: Quake Global Receives Certification for Q4000 Modem: The Q4000 is the first fully integrated, dual-mode modem fo... http://t.co/YzLgOtjg | |
|
|
|
| sensorsonline: Tiny Black Box Detects Electric Power Crashes: New tiny electronic instrument detects and records power glitches... http://t.co/Pe6sbivL | |
| sensorsonline: Tiny Black Box Detects Electric Power Crashes: New tiny electronic instrument detects and records power glitches... http://t.co/Pe6sbivL | |
|
|
|
| sensorsonline: Libelium Offers e-Learning Platform for Sensor Networks: New e-Learning platform enables system integrators worl... http://t.co/TOCQclaS | |
| sensorsonline: Libelium Offers e-Learning Platform for Sensor Networks: New e-Learning platform enables system integrators worl... http://t.co/TOCQclaS | |
|
|
|
| sensorsonline: Schneider Electric To Expand Collaboration With Cisco: Introduces new solutions for comprehensive building and d... http://t.co/GoZvqLRT | |
| sensorsonline: Schneider Electric To Expand Collaboration With Cisco: Introduces new solutions for comprehensive building and d... http://t.co/GoZvqLRT | |
|
|
|
| sensorsonline: RT @SensorsExpo: #sensors12 digital brochure is here! download it at http://t.co/LFe7twTj OR register w/code 602K for the lowest rates h ... | |
| sensorsonline: RT @SensorsExpo: #sensors12 digital brochure is here! download it at http://t.co/LFe7twTj OR register w/code 602K for the lowest rates h ... | |
|
|
|
| sensorsonline: Seen and Heard: Articles and postings about Sensors Expo & Conference in blogs, news sites and publications read more http://t.co/rZCFxDoS | |
| sensorsonline: Seen and Heard: Articles and postings about Sensors Expo & Conference in blogs, news sites and publications read more http://t.co/rZCFxDoS | |
|
|
|
| sensorsonline: Sensor and System Design Track: Sensor and System Design Track read more http://t.co/Sz29WxXv | |
| sensorsonline: Sensor and System Design Track: Sensor and System Design Track read more http://t.co/Sz29WxXv | |
|
|
|
| sensorsonline: Soitec and Sumitomo Electric Announce GaN Milestone: The strategic joint developed program has successfully demo... http://t.co/DH4MFCBG | |
| sensorsonline: Soitec and Sumitomo Electric Announce GaN Milestone: The strategic joint developed program has successfully demo... http://t.co/DH4MFCBG | |
|
|
|
| sensorsonline: Imec, Genalyte Report Disposable Silicon Biosensor Chips: The disposable silicon photonics biosensor chips will ... http://t.co/Y22O3Bwf | |
| sensorsonline: Imec, Genalyte Report Disposable Silicon Biosensor Chips: The disposable silicon photonics biosensor chips will ... http://t.co/Y22O3Bwf | |
|
|
|
| sensorsonline: Peter Himes: Peter Himes has over 25 years' experience in helping startups and public companies establish their ... http://t.co/483WVNWS | |
| sensorsonline: Peter Himes: Peter Himes has over 25 years' experience in helping startups and public companies establish their ... http://t.co/483WVNWS | |
|
|
|
| sensorsonline: RT @MDT_Sensor_News: Announcement to our new magnetic switch #sensors reposted at @sensorsonline, http://t.co/0QoriRIo | |
| sensorsonline: RT @MDT_Sensor_News: Announcement to our new magnetic switch #sensors reposted at @sensorsonline, http://t.co/0QoriRIo | |
|
|
|
| sensorsonline: Catch the latest Sensors Prod Picks featuring @Kionix @BoschSensortec @Dynasonics @InvenSense http://t.co/vGQvTtyh #sensorsmag | |
| sensorsonline: Catch the latest Sensors Prod Picks featuring @Kionix @BoschSensortec @Dynasonics @InvenSense http://t.co/vGQvTtyh #sensorsmag | |
|
|
|
| sensorsonline: RT @SensorsExpo: #sensors12 welcomes these exhibitors @KamanIndustrial @Sika @InfinitePower @Xeno @MEDERelectronic @Interplex @HBM @Sens ... | |
| sensorsonline: RT @SensorsExpo: #sensors12 welcomes these exhibitors @KamanIndustrial @Sika @InfinitePower @Xeno @MEDERelectronic @Interplex @HBM @Sens ... | |
|
|
|
| sensorsonline: You Can’t Manage What You Can’t Measure: Turning Sensor Data into ROI: read more http://t.co/dPKhTgLZ | |
| sensorsonline: You Can’t Manage What You Can’t Measure: Turning Sensor Data into ROI: read more http://t.co/dPKhTgLZ | |
|
|
|
| sensorsonline: Speaker Marketing Tool Kit: Marketing Tool Kit for speakers selected to present at the 2012 event. read more http://t.co/TST8jMpA | |
| sensorsonline: Speaker Marketing Tool Kit: Marketing Tool Kit for speakers selected to present at the 2012 event. read more http://t.co/TST8jMpA | |
|
|
|
| sensorsonline: Pondering Parking: One of the promises of wireless sensor networking is its ability to add a level of sensing an... http://t.co/s12IH4Ha | |
| sensorsonline: Pondering Parking: One of the promises of wireless sensor networking is its ability to add a level of sensing an... http://t.co/s12IH4Ha | |
|
|
|
| sensorsonline: IMUs/AHRS from YEI Technology: The 3-Space Sensor family of intelligent IMUs and AHRS from YEI Technology, Ports... http://t.co/OqklJSKs | |
| sensorsonline: IMUs/AHRS from YEI Technology: The 3-Space Sensor family of intelligent IMUs and AHRS from YEI Technology, Ports... http://t.co/OqklJSKs | |
|
|
|
| sensorsonline: Photoelectric Sensors from Pepperl+Fuchs: Pepperl+Fuchs Inc., Twinsburg, OH, has expanded its ML4.2 Series of su... http://t.co/P6fvyrKf | |
| sensorsonline: Photoelectric Sensors from Pepperl+Fuchs: Pepperl+Fuchs Inc., Twinsburg, OH, has expanded its ML4.2 Series of su... http://t.co/P6fvyrKf | |
|
|
|
| sensorsonline: Wall Shear Stress Sensors from Lenterra: RealShear sensors from Lenterra Inc, Newark, NJ, are inline sensors tha... http://t.co/i3CUF2JR | |
| sensorsonline: Wall Shear Stress Sensors from Lenterra: RealShear sensors from Lenterra Inc, Newark, NJ, are inline sensors tha... http://t.co/i3CUF2JR | |
|
|
|
| sensorsonline: 3D Metrology Software from InnovMetric: InnovMetric Software Inc., Quebec City, PQ, Canada, offers its V12.0.3 P... http://t.co/lMoTasYo | |
| sensorsonline: 3D Metrology Software from InnovMetric: InnovMetric Software Inc., Quebec City, PQ, Canada, offers its V12.0.3 P... http://t.co/lMoTasYo | |
|
|
|
| sensorsonline: RT @SensorsExpo: Registration is now live for 2012 Sensors Expo & Conf. Register w/code 602K for the lowest 2012 rates: http://t.co/q0yR ... | |
| sensorsonline: RT @SensorsExpo: Registration is now live for 2012 Sensors Expo & Conf. Register w/code 602K for the lowest 2012 rates: http://t.co/q0yR ... | |
|
|
|
| sensorsonline: January R&D Round Up: Welcome to 2012! As we start the new year, how about some intriguing research breakthroug... http://t.co/48NNA24d | |
| sensorsonline: January R&D Round Up: Welcome to 2012! As we start the new year, how about some intriguing research breakthroug... http://t.co/48NNA24d | |
|
|
|
| sensorsonline: 01-Jan-2012: 01-Jan-2012 read more http://t.co/N7p9u6Fc | |
| sensorsonline: 01-Jan-2012: 01-Jan-2012 read more http://t.co/N7p9u6Fc | |
|
|
|
| sensorsonline: Molly Bakewell Chamberlin: Molly Bakewell Chamberlin is President of Embassy Global LLC. http://t.co/23PIOzFU | |
| sensorsonline: Molly Bakewell Chamberlin: Molly Bakewell Chamberlin is President of Embassy Global LLC. http://t.co/23PIOzFU | |
|
|
|
| sensorsonline: Happy New Years! Make one of your resolutions to stay on top of industry news w/ @sensorsonline - sign up today at http://t.co/LFI8n1zU | |
| sensorsonline: Happy New Years! Make one of your resolutions to stay on top of industry news w/ @sensorsonline - sign up today at http://t.co/LFI8n1zU | |
|
|
|
| sensorsonline: What's New at Sensors...System Solutions for Industrial Sensors/Field Transmitters...and more http://t.co/n7speoxH | |
| sensorsonline: What's New at Sensors...System Solutions for Industrial Sensors/Field Transmitters...and more http://t.co/n7speoxH | |
|
|
|
| sensorsonline: Happy Holidays from the Sensors Team to Yours http://t.co/taoAX06L #happyholidays #sensorsmag #sensorsexpo #sensors12 | |
| sensorsonline: Happy Holidays from the Sensors Team to Yours http://t.co/taoAX06L #happyholidays #sensorsmag #sensorsexpo #sensors12 | |
|
|
|
| sensorsonline: December Product Picks avail now at http://t.co/09v3hVAT. See New Sensors, Components, and Data Acquisition & Control Products #sensorsmag | |
| sensorsonline: December Product Picks avail now at http://t.co/09v3hVAT. See New Sensors, Components, and Data Acquisition & Control Products #sensorsmag | |
|
|
|
| sensorsonline: RT @sherbornesensor: Great article in @sensorsonline 'MEMS: The Future Looks Bright' http://t.co/x0fjxBhz | |
| sensorsonline: RT @sherbornesensor: Great article in @sensorsonline 'MEMS: The Future Looks Bright' http://t.co/x0fjxBhz | |
|
|
|
| sensorsonline: Sensors Weekly is available here: http://t.co/cZSkJcxr. Catch the latest R&D Round Up and sensors news #sensorsnews #sensorsmag | |
| sensorsonline: Sensors Weekly is available here: http://t.co/cZSkJcxr. Catch the latest R&D Round Up and sensors news #sensorsnews #sensorsmag | |
|
|
|
| sensorsonline: triaxial accelerometers, chlorine sensors, thermal imagers & more products can be found in this week's Product Picks http://t.co/WS50rlEX | |
| sensorsonline: triaxial accelerometers, chlorine sensors, thermal imagers & more products can be found in this week's Product Picks http://t.co/WS50rlEX | |
|
|
|
Please send any technical comments or questions to our webmaster.