On prediction of QoS of SCADA accounting cyber attacks

E. Ciancamerla, M. Minichino, S. Palmieri

Research output: Contribution to conferencePaper

1 Citation (Scopus)

Abstract

There is an increasing concern over the cyber security of Critical Infrastructures (CI) due to the increasing ability of cyber attackers to cause even catastrophic failures. It is mainly due to the pervasiveness of ICT (Information and Communication Technologies) and to the consequent de isolation of SCADA (Supervision, Control and Data Acquisition) system, which represents the nervous system of most CIs. Cyber attacks could block the connection between SCADA Control Centre and its remote devices or insert fake commands/ measurements in the equipment communications as happened with STUXNET worm. Here, we discuss an ICT&SCADA model which represents the occurrence of a cyber attack targeted at a specific ICT device, the infection spreading throughout SCADA and ICT devices, up to disconnect the communication between SCADA Control Centre and its remote devices, with the consequence of loss of power grid observability by SCADA operator. In the model, implemented by NETLOGO, SCADA and ICT elements are considered to be in one of the three states: Susceptible, Infected, Recovered. Model parameters include the probability of infection of a node, the virus spread rate, the intrusion detection rate of corrupted SCADA/ICT servers or remote devices and keep into account the potentiality of the attacks, the vulnerabilities and security policies of each SCADA and ICT devices. The infection spreading degrades the Quality of Service (QoS) of SCADA and in turn the quality of the electrical power to grid customers. The service under consideration is named FISR (Fault Isolation and System Restoration) that detects and isolates faults in Power distribution grid and then reconfigures the grid to supply again the isolated customers. The degradation of SCADA QoS and in turn the degradation of quality of electrical power to grid customers is computed by means of a QoS prediction model implemented by NS2 simulator.

Conference

Conference11th International Probabilistic Safety Assessment and Management Conference and the Annual European Safety and Reliability Conference 2012, PSAM11 ESREL 2012
CountryFinland
Period1/1/12 → …

    Fingerprint

All Science Journal Classification (ASJC) codes

  • Safety, Risk, Reliability and Quality

Cite this

Ciancamerla, E., Minichino, M., & Palmieri, S. (2012). On prediction of QoS of SCADA accounting cyber attacks. Paper presented at 11th International Probabilistic Safety Assessment and Management Conference and the Annual European Safety and Reliability Conference 2012, PSAM11 ESREL 2012, Finland.