Title :
Survivable SCADA Via Intrusion-Tolerant Replication
Author :
Kirsch, Jonathan ; Goose, Stuart ; Amir, Yair ; Dong Wei ; Skare, Paul
Author_Institution :
Siemens Technol.-To-Bus. Center, Berkeley, CA, USA
Abstract :
Providers of critical infrastructure services strive to maintain the high availability of their SCADA systems. This paper reports on our experience designing, architecting, and evaluating the first survivable SCADA system-one that is able to ensure correct behavior with minimal performance degradation even during cyber attacks that compromise part of the system. We describe the challenges we faced when integrating modern intrusion-tolerant protocols with a conventional SCADA architecture and present the techniques we developed to overcome these challenges. The results illustrate that our survivable SCADA system not only functions correctly in the face of a cyber attack, but that it also processes in excess of 20 000 messages per second with a latency of less than 30 ms, making it suitable for even large-scale deployments managing thousands of remote terminal units.
Keywords :
SCADA systems; fault tolerance; production engineering computing; security of data; SCADA architecture; cyber attacks; intrusion-tolerant protocols; intrusion-tolerant replication; performance degradation; survivable SCADA system; Clocks; Libraries; Monitoring; Protocols; SCADA systems; Servers; Synchronization; Cyber attack; SCADA systems; fault tolerance; reliability; resilience; survivability;
Journal_Title :
Smart Grid, IEEE Transactions on
DOI :
10.1109/TSG.2013.2269541
