2 evolution of scada
TRANSCRIPT
-
8/8/2019 2 Evolution of Scada
1/34
-
8/8/2019 2 Evolution of Scada
2/34
-
8/8/2019 2 Evolution of Scada
3/34
-
8/8/2019 2 Evolution of Scada
4/34
-
8/8/2019 2 Evolution of Scada
5/34
-
8/8/2019 2 Evolution of Scada
6/34
-
8/8/2019 2 Evolution of Scada
7/34
-
8/8/2019 2 Evolution of Scada
8/34
-
8/8/2019 2 Evolution of Scada
9/34
-
8/8/2019 2 Evolution of Scada
10/34
-
8/8/2019 2 Evolution of Scada
11/34
-
8/8/2019 2 Evolution of Scada
12/34
-
8/8/2019 2 Evolution of Scada
13/34
-
8/8/2019 2 Evolution of Scada
14/34
Enbridge SCADA
Terminals
Transition from locally controlled on-site system to remote controlArcom Director RTU
MainlineRemote ControlledMicroVAX RTU
-
8/8/2019 2 Evolution of Scada
15/34
The RTU Replacement Project
-
8/8/2019 2 Evolution of Scada
16/34
LiveWIRE Design Issues
1. Achieving determinism using non-
deterministic networks2. Securing SCADA communications3. Maintaining connectivity in the face of network failures
-
8/8/2019 2 Evolution of Scada
17/34
1. Determinism
Why SCADA data is special
No steering now, is much better thanperfect steering at some random futuremoment.Reliable failure
-
8/8/2019 2 Evolution of Scada
18/34
Determinism - without a doubt
Operator needs a clear picture of the remote
process During absence of information - what
probably happened?
-
8/8/2019 2 Evolution of Scada
19/34
Determinism - without delay
TCP/IP inserts arbitrary buffering, retries,
and delays Ever been unsure of whether a web siteis responding?
-
8/8/2019 2 Evolution of Scada
20/34
Determinism - Best Effort
IP networks can be deterministic:
VOIP (Voice Over IP), RTP (Real TimeProtocol)Unfortunately, we couldnt find apackaged solution ...
-
8/8/2019 2 Evolution of Scada
21/34
Determinism - LiveWIRE
UDP packet ageing
stale windowBlock vs Stream Communication
efficient compression and encryption blocksGuaranteed Order vs Guaranteed Delivery
delivered in order, or not at all
-
8/8/2019 2 Evolution of Scada
22/34
2. Security
Networks allow higher level attacks
Firewalls - Avoid the Fortress mentalityAvoid software monoculturePrepare every node as if it is on the openInternet
-
8/8/2019 2 Evolution of Scada
23/34
Security - Authentication
Key exchange and session management
sshPublic key encryptionShared key encryption
AuthenticationReplay AttacksData Integrity
-
8/8/2019 2 Evolution of Scada
24/34
Security - LiveWIRE
Bandwidth Efficiency
Forward Error CorrectionEncoding for CorruptionInterleaving for Loss
-
8/8/2019 2 Evolution of Scada
25/34
Discard RS parity symbolsand Decrypt Message
A2eRg#g78
Message to send (& sequence )
AHello, World!Encrypted Message (Rijndael)
A*4Gh&3aq
Compressed (Zlib)
A2eRg#g78
Reed-Solomon Encoded
A*4Gh Z@&3aq R1
Interleaved &Packetized
A1 *&4A2 3Ga
A3 hq Z
A4 R@1
A5 * ZaA6 4 @q
Extras
A7 G&R
A8 h3 1
A9 *h @
Encrypt Headers(Rijndael) andTransmit
^7 *&4
(T 3GaUu hq Z
7@R@1
8* * Za
Tw 4 @q
HeadersDecrypted
A3 hq ZA2 3 Xa
A1 *&4
?? 4 @qA5 * Za
Packets De-interleaved
A*4 Xh Z_ &3a_ R1
RS Error Correction; Extrapackets requested!
A*4 Xh Z_ &3aq R1
Extra packets received
A*4 Xh Z@&3aq R1
RS Decoding succeeds
A*4Gh Z@&3aq R1 Uncompress original message
AHello, World!
Lose, corrupt,and reorder intransit
Uu hq Z(T 3 Xa
^7 *&4
Tq 4 @q8* * Za
7@R@1
Forward Error Correction
-
8/8/2019 2 Evolution of Scada
26/34
3. Connectivity
One-to-One
TCP/IPOne-to-Many
UDP/IP multicast
-
8/8/2019 2 Evolution of Scada
27/34
Connectivity - LiveWIRE
Connectionless Multicast
Peer-to-Peer LiveWIRE ApplicationsDynamic RoutingRedundancy
-
8/8/2019 2 Evolution of Scada
28/34
Scan Task
Scan Task
Procys Backups (Site 2)
Procys Primaries (Site 1)
Scan Task
Scan Task
Router
Router
Router
Frame Relay
Director
Router
Router
Command transmitted viaprimary route
Router
Router
Gig. Ethernet
ALARM()?
Dialer
Dialer
LiveWIRE Command
-
8/8/2019 2 Evolution of Scada
29/34
Scan Task
Scan Task
Procys Backups (Site 2)
Procys Primaries (Site 1)
Scan Task
Scan Task
Router
Router
Router
Frame Relay
Director
Router
Router
Router
Router
Gig. Ethernet
Dialer
Dialer
ALARM()OK
Command is retransmitted, andmulticast RBE data repeated,
only in case of Procys databasedetecting missing command
status!
Command transmitted viaprimary route
Router
LiveWIRE Reply
-
8/8/2019 2 Evolution of Scada
30/34
Scan Task
Scan Task
Procys Backups (Site 2)
Procys Primaries (Site 1)
Scan Task
Scan Task
Router
Router
Router
Frame Relay
Director
Router
Router
Router
Router
Gig. Ethernet
ALARM()?
Dialer
Dialer
Command transmitted viaprimary route is lost!
Command via WAN Route Lost
-
8/8/2019 2 Evolution of Scada
31/34
Scan Task
Scan Task
Procys Backups (Site 2)
Procys Primaries (Site 1)
Scan Task
Scan Task
Router
Router
Router
Frame Relay
Director
Router
Router
Router
Router
Gig. Ethernet
ALARM()?
Dialer
Dialer
After extra packets also lost,Dialup route activated, too
Command via Dialup Route
-
8/8/2019 2 Evolution of Scada
32/34
Scan Task
Scan Task
Procys Backups (Site 2)
Scan Task
Scan Task
Router
Router
Router
Frame Relay
Director
Router
Router
Router
Gig. Ethernet
ALARM()
Dialer
Dialer
After extra packets also lost,Dialup route activated, too
Commands and RBE data sentvia WAN and Dialup routes, until
Procys database alarmsautomatically detect when
outage ends.
Router
OK
RBE via Multiple Routes
-
8/8/2019 2 Evolution of Scada
33/34
Conclusions
A modular foundation is a key element of
developing a SCADA system that is capableof evolving.It is evident after implementing theLiveWIRE project that securityenhancements will continue to play a majorrole in defining the future direction of allSCADA systems.
-
8/8/2019 2 Evolution of Scada
34/34
Questions ?