PLC-SEIFF: A programmable logic controller security incident forensics framework based on automatic construction of security constraints. Issue 92 (May 2020)
- Record Type:
- Journal Article
- Title:
- PLC-SEIFF: A programmable logic controller security incident forensics framework based on automatic construction of security constraints. Issue 92 (May 2020)
- Main Title:
- PLC-SEIFF: A programmable logic controller security incident forensics framework based on automatic construction of security constraints
- Authors:
- Xu, Lijuan
Wang, Bailing
Wang, Lianhai
Zhao, Dawei
Han, Xiaohui
Yang, Shumian - Abstract:
- Abstract: Over the past two decades, with the SCADA systems connected to corporate networks or the Internet, the programmable logic controller (PLC) have suffered a large-scale and catastrophic network attacks for the controlling and monitoring physical industrial and infrastructure processes in the industrial control networks, due to their crucial character and safe characteristic. However, the PLC's inferior computing power, restricted storage capacity, "scan-cycle" operating mode, and client's violent private demand has made it challenging to find forensics framework with the capacity to depress the storage requirement and enhance practicality and robustness strikingly. In an effort to address these challenges, through the establishing the attack model against PLC in a view of the security incident forensics, this paper proposed a PLC security incident forensics framework named PLC-SEIFF . This framework implemented the automatic construction of security constraints rules from PLC control logic STL program, filtering and identifying of irrelevant incident records according by correlation analysis on the basis of multi-sources data.
- Is Part Of:
- Computers & security. Issue 92(2020)
- Journal:
- Computers & security
- Issue:
- Issue 92(2020)
- Issue Display:
- Volume 92, Issue 92 (2020)
- Year:
- 2020
- Volume:
- 92
- Issue:
- 92
- Issue Sort Value:
- 2020-0092-0092-0000
- Page Start:
- Page End:
- Publication Date:
- 2020-05
- Subjects:
- PLC -- Security incidents -- Security constraints -- Control logic program -- Forensics
Computer security -- Periodicals
Electronic data processing departments -- Security measures -- Periodicals
005.805 - Journal URLs:
- http://www.sciencedirect.com/science/journal/01674048 ↗
http://www.elsevier.com/journals ↗ - DOI:
- 10.1016/j.cose.2020.101749 ↗
- Languages:
- English
- ISSNs:
- 0167-4048
- Deposit Type:
- Legaldeposit
- View Content:
- Available online (eLD content is only available in our Reading Rooms) ↗
- Physical Locations:
- British Library DSC - 3394.781000
British Library DSC - BLDSS-3PM
British Library HMNTS - ELD Digital store - Ingest File:
- 13519.xml