Survivable SCADA Via Intrusion-Tolerant Replication

Kirsch, John A. W.; Goose, Stuart; Amir, Yair; Dong, Wei; Skare, Paul

doi:10.1109/tsg.2013.2269541

Cited by 43 publications

(21 citation statements)

References 21 publications

Supporting

Mentioning

Contrasting

Order By: Relevance

“…Traditional BFT protocols [11], [13] do not generally consider the timing attributes of the setpoints. Moreover, all BFT protocols require consensus among the replicas.…”

Section: Related Workmentioning

confidence: 99%

“…The consensus can take unbounded time [18], delaying delivery of setpoints to PAs indefinitely. This property makes them unsuitable for tolerating delay faults, even in the cases when they are designed for real-time applications [13].…”

Section: Related Workmentioning

confidence: 99%

“…Traditional fault-tolerance protocols can be classified as benign-fault tolerance [9], [10] and Byzantine-fault tolerance (BFT) [11]- [13]. Benign-fault tolerance handles crash-only faults and is thus not designed for delay faults.…”

Section: Introductionmentioning

confidence: 99%

See 2 more Smart Citations

Axo: Masking delay faults in real-time control systems

Mohiuddin

Saab

Bliudze

et al. 2016

IECON 2016 - 42nd Annual Conference of the IEEE Industrial Electronics Society

View full text Add to dashboard Cite

Abstract-We consider real-time control systems that consist of a controller that computes and sends setpoints to be implemented in physical processes through process agents. We focus on systems that use commercial off-the-shelf hardware and software components. Setpoints of these systems have strict real-time constraints: Implementing a setpoint after its deadline, or not receiving setpoints within a deadline, can cause failure. In this paper, we address delay faults: faults that cause setpoints to violate their real-time constraints. We present Axo, a fault-tolerance protocol that guarantees safety and improves availability for a class of such systems that exhibit two main properties: the setpoints must have a known validity horizon, and process agents must be capable of handling duplicate setpoints. To reason about delay faults, and consequently design Axo, we present an abstraction of a controller; the abstraction applies to a wide range of real-time control systems. We prove guarantees of safety and availability. Finally, we present an implementation of Axo and the results of the tests performed with Commelec, a real-time control system for electric grids.

show abstract

“…Traditional BFT protocols [11], [13] do not generally consider the timing attributes of the setpoints. Moreover, all BFT protocols require consensus among the replicas.…”

Section: Related Workmentioning

confidence: 99%

Section: Related Workmentioning

confidence: 99%

See 1 more Smart Citation

Axo: Masking delay faults in real-time control systems

Mohiuddin

Saab

Bliudze

et al. 2016

IECON 2016 - 42nd Annual Conference of the IEEE Industrial Electronics Society

View full text Add to dashboard Cite

show abstract

“…Kirsch et al. [7] reported their experience in design and implementation of their first survivable SCADA system. Survivability means that the SCADA system, continue to work correctly with minimal degradation performance, even if malicious anomalies have jeopardized a part of the system.…”

Section: Introductionmentioning

confidence: 99%

Anomaly detection in industrial control systems using evolutionary-based optimization of neural networks

Mansouri¹,

Majidi²,

Shamisa³

2017

Communications on Advanced Computational Science with Applicati

View full text Add to dashboard Cite

Industrial control systems are increasingly used for control and monitoring of important infrastructure. Machine learning algorithms have the ability to discover patterns in large amounts of data and to create diagnosis models based on these patterns. Since modelling a large amount of unlabeled data is costly and time-consuming, the automated machine learning methods have the ability to detect anomalies in industrial control systems effectively. In this paper, first, twenty-four machine learning algorithms are evaluated for anomaly detection in gas distribution control network. Then dimensionality reduction algorithms are used to improve the accuracy of anomaly detection. Finally, by using an evolutionary based optimization for training a neural network, a new algorithm for prediction of anomalies in the SCADA system with high accuracy is proposed. The experimental results show that the proposed algorithm has the ability to detect the anomalies in the gas distribution control network with 97.5% accuracy.

show abstract

“…We devise two novel state transfer strategies: one that prioritizes fast data retrieval and one that minimizes bandwidth usage, which can be used to restart a replica from a clean state; • A theoretical model that computes the resiliency of the system over its lifetime (e.g. 30 years) based on the rejuvenation rate, the number of replicas, and the strength of a single replica; and • The first integration of subsystems that support the assump-tions of a practical survivable data replication system: the Prime BFT protocol [8], which ensures performance guarantees even while under attack, and that recently has been integrated into the Siemens corporation commercial SCADA product for the power grid [9]; and the MultiCompiler [10] that produces different versions of the system, such that no two versions present an identical attack surface. This does not mean that the exploits have vanished, but rather that the attacker must craft a new attack for each replica.…”

Section: Introductionmentioning

confidence: 99%

Towards a Practical Survivable Intrusion Tolerant Replication System

Platania

Obenshain

Tantillo

et al. 2014

2014 IEEE 33rd International Symposium on Reliable Distributed Systems

Self Cite

View full text Add to dashboard Cite

Abstract-The increasing number of cyber attacks against critical infrastructures, which typically require large state and long system lifetimes, necessitates the design of systems that are able to work correctly even if part of them is compromised.We present the first practical survivable intrusion tolerant replication system, which defends across space and time using compiler-based diversity and proactive recovery, respectively. Our system supports large-state applications, and utilizes the Prime BFT protocol (providing performance guarantees under attack) with a compiler-based diversification engine. We devise a novel theoretical model that computes how resilient the system is over its lifetime based on the rejuvenation rate and the number of replicas.This model shows that we can achieve a confidence in the system of 95% over 30 years even when we transfer a state of 1 terabyte after each rejuvenation.

show abstract

Survivable SCADA Via Intrusion-Tolerant Replication

Cited by 43 publications

References 21 publications

Axo: Masking delay faults in real-time control systems

Axo: Masking delay faults in real-time control systems

Anomaly detection in industrial control systems using evolutionary-based optimization of neural networks

Towards a Practical Survivable Intrusion Tolerant Replication System

Contact Info

Product

Resources

About