DQ6 100-150 words
Explain the security implication of using open source operating systems for SCADA and DCS systems. Does this increase or decrease the risk of attacks? Why?
Reply to responses 75-100 words
A Jose Juarez
Hello class,
Let’s understand the properties between SCADA and DCS so we get a better grip on what their functions are. SCADA is the assortment of software and hardware that allow monitoring and control, remotely or locally. This allows data to be collected and presented to operators and help in the aid of decision making. DCS, in reality is no different than SCADA which is based on the same architecture or format. SCADA was known for being an obscured and isolation infrastructure since they weren’t connected to the internet. But do to networking and the development of GUI operation and control, it has allowed attackers infiltrate the process and disrupt or disable operations. Common key features to enhance security measures are implementing stronger authentication and getting rid of extra services and options. Attacks can be minimized by the increase of security tactics, that means, setting wireless, server, router, switches, firewall, software/hardware and monitorization protocols measurements up.
B Natalie Martinez
The SCADA systems constitute a huge region of sensor operations and function quite similarly to a central management system. On the other hand, DCS requires some form of centralized management system since it acts as a local representation of the systems’ ability for independence. it should also be noted that simple problems like stack and buffer overflows, as well as information leakage and other vulnerabilities, continue to regularly be present in SCADA software. Attackers can access confidential data, run arbitrary code (RCE), or result in a denial of service by taking advantage of these flaws. The industrial control systems (ICS), often referred to as supervisory control and data acquisition systems (SCADA), are a subset of these systems, while distributed control systems (DCS) are one of the ICS subtypes. In certain ways, SCADA systems serve as a central management system and represent a wide range of sensor activities, whereas DCS systems serve as local representations of systems with autonomous capability and demand the usage of a central management system. This increases the attack surface as there is no way to verify authentication when working around or in these areas. These systems are known for getting attacked daily. Especially a ransomware attack at these host the major functionality for warehouses and business operations.
