Group:
Case Studies for the Cyber-Security of Industrial Automation and Control Systems
The main objective of this new Group for year 2014 is to verify with the industrial partners if there is a need or not for testing and certification of the cyber security attributes of IACS components, sub systems or systems. For this purpose, the group is producing case studies about typical "points of cyber vulnerability" within the IACS architecture where cyber-attacks could succeed. This activity seeks to evaluate, for each case, the need to test and "certify" (with all its nuances) the level of cyber-security of the elements to be incorporated into industrial systems. Five different key elements of a typical IACS architecture have been selected:
- SCADA systems that supervise entire industrial processes;
- Process automation and control equipment on the ground;
- Engineering / programming workstations staff connect to;
- Databases used for process control;
- Telecommunication links.