An experimental investigation of malware attacks on SCADA systems

NAI, FOVINO Igor; CARCANO, Andrea; MASERA, Marcelo; TROMBETTA, Alberto

doi:10.1016/j.ijcip.2009.10.001

Critical Infrastructures are nowadays exposed to new kind of threats. The cause of such threats is related to the large number of new vulnerabilities and architectural weaknesses introduced by the extensive use of ICT and Network technologies into complex critical systems. Of particular interest are the set of vulnerabilities related to the communication protocols normally known as \Supervisory Control and Data Acquisition" (SCADA) protocols, under which fall those used to remotely control the RTU devices of industrial systems. In this paper we present the results of our research on the e®ects of \traditional" ICT malwares on SCADA systems. Moreover, we present a proof of concept of the potential e®ects of a set of computer malware speci¯cally designed and created in order to impact, by taking advantage of some vulnerabilities of the ModBUS protocol, on a typical Supervisory Control and Data Acquisition system.

NAI FOVINO Igor; CARCANO Andrea; MASERA Marcelo; TROMBETTA Alberto;

2009-11-20

Elsevier

JRC48548

1874-5482,

http://www.elsevier.com/copyright, https://publications.jrc.ec.europa.eu/repository/handle/JRC48548,

10.1016/j.ijcip.2009.10.001,

Name	Country	City	Type

Datasets

ID	Title	Public URL

Dataset collections

ID	Acronym	Title	Public URL

Scripts / source codes

Description	Public URL

Additional supporting files

File name	Description	File type

Items published in the JRC Publications Repository are protected by copyright, with all rights reserved, unless otherwise indicated. Additional information: https://ec.europa.eu/info/legal-notice_en#copyright-notice