Blog
About

  • Record: found
  • Abstract: found
  • Article: found
Is Open Access

PLCBlockMon: Data Logging and Extraction on PLCs for Cyber Intrusion Detection

1 , 1 , 2 , 2

5th International Symposium for ICS & SCADA Cyber Security Research 2018 (ICS-CSR 2018)

ICS & SCADA Cyber Security Research

29 - 30 August 2018

Industrial Control Systems, Cyber Security, Logging and Extraction, PLC, Intrusion Detection

Read this article at

Bookmark
      There is no author summary for this article yet. Authors can add summaries to their articles on ScienceOpen to make them more accessible to a non-specialist audience.

      Abstract

      The threat landscape for industrial control systems is ever-expanding and these systems have proven to be attractive targets for cyber attackers. Programmable Logic Controllers are major components in ICSs and hence need to be well-protected and monitored. By examining the existing research in this field we found that there is a void in comprehensive analysis of data logging and extraction features on industrial devices. However, analysis of these features and evaluation of their applicability for cyber intrusion detection would significantly facilitate their adoption by intrusion detection tools. In order to close the gap, we analyzed the logging and extraction capabilities of the Siemens S7-1200 PLC and HMI panel. We implemented a PLC logic for data logging called PLCBlockMon. In this paper, we provide guidelines for its usage and demonstrate its applicability for cyber intrusion detection in selected scenarios.

      Related collections

      Most cited references 13

      • Record: found
      • Abstract: not found
      • Article: not found

      Sequence-aware Intrusion Detection in Industrial Control Systems

        Bookmark
        • Record: found
        • Abstract: not found
        • Article: not found

        A survey of industrial control system testbeds

          Bookmark
          • Record: found
          • Abstract: not found
          • Article: not found

          Exploiting Siemens Simatic S7 PLCs, in Black Hat USA+2011

           D Beresford (2011)
            Bookmark

            Author and article information

            Affiliations
            [1 ]AIT Austrian Institute of Technology Center for Digital Safety & Security Vienna, Austria
            [2 ]Queen’s University Belfast Center for Secure Information Technologies, Belfast, UK
            Contributors
            Conference
            August 2018
            August 2018
            : 102-111
            10.14236/ewic/ICS2018.12
            © Findrik et al. Published by BCS Learning and Development Ltd. Proceedings of ICS & SCADA 2018

            This work is licensed under a Creative Commons Attribution 4.0 Unported License. To view a copy of this license, visit http://creativecommons.org/licenses/by/4.0/

            5th International Symposium for ICS & SCADA Cyber Security Research 2018
            ICS-CSR 2018
            5
            University of Hamburg, Germany
            29 - 30 August 2018
            Electronic Workshops in Computing (eWiC)
            ICS & SCADA Cyber Security Research
            Product
            Product Information: 1477-9358 BCS Learning & Development
            Self URI (journal page): https://ewic.bcs.org/
            Categories
            Electronic Workshops in Computing

            Comments

            Comment on this article