Side-Channel Based Intrusion Detection for Industrial Control Systems

Conference paper (2018)

Authors

Pol Van Aubel Radboud Universiteit Nijmegen
Kostas Papagiannopoulos Radboud Universiteit Nijmegen
C. Dörr Cyber Security - EEMCS
Research Group
Cyber Security (EEMCS) (TU Delft)
EM Intrusion detection ICS Side-channel Industrial control system PLC Programmable logic controller
More Info
expand_more

Published Date

2018

Language

English

Reuse Rights

Other than for strictly personal use, it is not permitted to download, forward or distribute the text or part of it, without the consent of the author(s) and/or copyright holder(s), unless the work is under an open content license such as Creative Commons.

Faculty

Electrical Engineering, Mathematics and Computer Science

Department

Intelligent Systems

Research Group

Cyber Security

Abstract

Industrial Control Systems are under increased scrutiny. Their security is historically sub-par, and although measures are being taken by the manufacturers to remedy this, the large installed base of legacy systems cannot easily be updated with state-of-the-art security measures. We propose a system that uses electromagnetic side-channel measurements to detect behavioural changes of the software running on industrial control systems. To demonstrate the feasibility of this method, we show it is possible to profile and distinguish between even small changes in programs on Siemens S7-317 PLCs, using methods from cryptographic side-channel analysis.