Simulated false data injections attacks on emulated and hardware programmable logic controllers of the pressurizer in a representative pressurized water reactor plant. Issue 4 (2nd October 2022)
- Record Type:
- Journal Article
- Title:
- Simulated false data injections attacks on emulated and hardware programmable logic controllers of the pressurizer in a representative pressurized water reactor plant. Issue 4 (2nd October 2022)
- Main Title:
- Simulated false data injections attacks on emulated and hardware programmable logic controllers of the pressurizer in a representative pressurized water reactor plant
- Authors:
- El-Genk, Mohamed S.
Schriener, Timothy - Abstract:
- ABSTRACT: Manipulating sensors data and/or Programmable Logic Controllers (PLCs) in Instrumentation and Control (I&C) systems could potentially compromise operation and safety of nuclear reactor power plants. This work utilizes the LOBO Nuclear CyberSecurity (LOBO NCS) Platform, developed recently at the University of New Mexico's Institute for Space and Nuclear Power Studies, to investigate and contrast responses of an emulated PLC with OpenPLC and a commercial Allen-Bradley PLC. This is during nominal operation and simulated surge-in and surge-out transients of the pressurizer in a representative PWR plant. Investigations evaluate the effect of manipulating the control of linked PLCs to a physics-based Simulink model of the pressurizer on its operation during simulated transients. Simulated FDIAs introduced during the surge-in transient manipulate either input pressure or the rate of water spray into the pressurizer, to increase system pressure beyond nominal. Simulated FDIAs inconsistently overwrite holding registers of the PLCs during the duration of the attack. As a result, the immersed heaters and the water droplets spray nozzle switch off and on repeatedly, to reduce the pressure rise within the pressurizer. Manipulating a commercial Allen-Bradley PLC is more consistent than emulated OpenPLC and percentage of FDIAs' successful overwrites increased with increasing input scan time of the PLC. Despite noted response differences iof emulated and hardware PLCs, resultsABSTRACT: Manipulating sensors data and/or Programmable Logic Controllers (PLCs) in Instrumentation and Control (I&C) systems could potentially compromise operation and safety of nuclear reactor power plants. This work utilizes the LOBO Nuclear CyberSecurity (LOBO NCS) Platform, developed recently at the University of New Mexico's Institute for Space and Nuclear Power Studies, to investigate and contrast responses of an emulated PLC with OpenPLC and a commercial Allen-Bradley PLC. This is during nominal operation and simulated surge-in and surge-out transients of the pressurizer in a representative PWR plant. Investigations evaluate the effect of manipulating the control of linked PLCs to a physics-based Simulink model of the pressurizer on its operation during simulated transients. Simulated FDIAs introduced during the surge-in transient manipulate either input pressure or the rate of water spray into the pressurizer, to increase system pressure beyond nominal. Simulated FDIAs inconsistently overwrite holding registers of the PLCs during the duration of the attack. As a result, the immersed heaters and the water droplets spray nozzle switch off and on repeatedly, to reduce the pressure rise within the pressurizer. Manipulating a commercial Allen-Bradley PLC is more consistent than emulated OpenPLC and percentage of FDIAs' successful overwrites increased with increasing input scan time of the PLC. Despite noted response differences iof emulated and hardware PLCs, results demonstrate using emulated PLCs in the LOBO NCS platform is suitable for current and future cybersecurity investigations. … (more)
- Is Part Of:
- Journal of cyber security technology. Volume 6:Issue 4(2022)
- Journal:
- Journal of cyber security technology
- Issue:
- Volume 6:Issue 4(2022)
- Issue Display:
- Volume 6, Issue 4 (2022)
- Year:
- 2022
- Volume:
- 6
- Issue:
- 4
- Issue Sort Value:
- 2022-0006-0004-0000
- Page Start:
- 216
- Page End:
- 241
- Publication Date:
- 2022-10-02
- Subjects:
- PWR pressurizer -- digital instrumentation and control -- false data injection attack -- programmable logic controllers -- LOBO NCS platform -- PLC scan time -- water surge-in and surge-out
Computer security -- Periodicals
Data encryption (Computer science) -- Periodicals
005.805 - Journal URLs:
- http://www.tandfonline.com/ ↗
- DOI:
- 10.1080/23742917.2022.2123191 ↗
- Languages:
- English
- ISSNs:
- 2374-2917
- Deposit Type:
- Legaldeposit
- View Content:
- Available online (eLD content is only available in our Reading Rooms) ↗
- Physical Locations:
- British Library DSC - BLDSS-3PM
British Library HMNTS - ELD Digital store - Ingest File:
- 24269.xml