Blog
About
Search
Advanced search

8
views
3
references
 Top references
0
cited by
 Most cited
    
0 reviews
 Review
0
comments
 Comment
0
recommends
+1 Recommend
1 collections
    0
    shares
    3,895
    similar
     All similar
    • Record: found
    • Abstract: found
    • Article: found
    Is Open Access

    Towards a SCADA Forensics Architecture

    Authors: , , ,

    Publication date (Print):

    Conference name: 1st International Symposium for ICS & SCADA Cyber Security Research 2013 (ICS-CSR 2013) (ICSCSR)

    Conference theme: ICS & SCADA Cyber Security Research 2013

    Conference date: 16-17 September 2013

    Keywords: Digital Forensics, SCADA Forensics, Critical Infrastructures, PLC, Process Control, EnCase, Forensic Architecture

    Read this article at

    ScienceOpen
    Bookmark
        There is no author summary for this article yet. Authors can add summaries to their articles on ScienceOpen to make them more accessible to a non-specialist audience.

        Abstract

        With the increasing threat of sophisticated attacks on critical infrastructures, it is vital that forensic investigations take place immediately following a security incident. This paper presents an existing SCADA forensic process model and proposes a structured SCADA forensic process model to carry out a forensic investigations. A discussion on the limitations of using traditional forensic investigative processes and the challenges facing forensic investigators. Furthermore, flaws of existing research into providing forensic capability for SCADA systems are examined in detail. The study concludes with an experimentation of a proposed SCADA forensic capability architecture on the Siemens S7 PLC. Modifications to the memory addresses are monitored and recorded for forensic evidence. The collected forensic evidence will be used to aid the reconstruction of a timeline of events, in addition to other collected forensic evidence such as network packet captures.

        Related collections

        Most cited references 3

        • Record: found
        • Abstract: not found
        • Article: not found

        A Taxonomy of Cyber Attacks on SCADA Systems

         Bonnie Zhu,  Anthony Joseph,  Shankar Sastry (2011)
        Article 0 comments Cited 29 times – based on 0 reviews     Review now
          Bookmark
          • Record: found
          • Abstract: not found
          • Article: not found

          SCADA security in the light of Cyber-Warfare

           A. Nicholson,  S Webber,  S. Dyer (2012)
          Article 0 comments Cited 22 times – based on 0 reviews     Review now
            Bookmark
            • Record: found
            • Abstract: not found
            • Article: not found

            SCADA Systems: Challenges for Forensic Investigators

             Irfan Ahmed,  Sebastian Obermeier,  Martin Naedele (2012)
            Article 0 comments Cited 6 times – based on 0 reviews     Review now
              Bookmark
              All references

              Author and article information

              Affiliations
              EADS Innovation Works Quadrant House Celtic Springs

              Coedkernew, Newport NP10 8FZ UK
              Contributors
              Tina Wu
              Jules Ferdinand Pagna Disso
              Kevin Jones
              Adrian Campos
              Conference
              Publication date: September 2013
              Publication date (Print): September 2013
              Pages: 12-21
              ID: 10.14236/ewic/ICSCSR2013.2
              Copyright statement: © Tina Wu et al. Published by BCS Learning and Development Ltd. 1st International Symposium for ICS & SCADA Cyber Security Research 2013 (ICS-CSR 2013), Leicester, UK

              License:

              This work is licensed under a Creative Commons Attribution 4.0 Unported License. To view a copy of this license, visit http://creativecommons.org/licenses/by/4.0/

              Conference name: 1st International Symposium for ICS & SCADA Cyber Security Research 2013 (ICS-CSR 2013)
              Conference acronym: ICSCSR
              Conference number: 1
              Conference location: Leicester, UK
              Conference date: 16-17 September 2013
              Conference sponsor: Electronic Workshops in Computing (eWiC)
              Conference theme: ICS & SCADA Cyber Security Research 2013
              Product
              Product Information: 1477-9358 BCS Learning & Development
              Self URI (journal page): https://ewic.bcs.org/
              Categories
              Series title: Electronic Workshops in Computing

              Link to data:

              ScienceOpen disciplines: Applied computer science, Computer science, Security & Cryptology, Graphics & Multimedia design, General computer science, Human-computer-interaction

              Keywords: Forensic Architecture, EnCase, Digital Forensics, SCADA Forensics, Critical Infrastructures, PLC, Process Control

              Comments

              Comment on this article