Article: Cyber threats for operational technologies Journal: International Journal of System of Systems Engineering (IJSSE) 2020 Vol.10 No.2 pp.128 - 142 Abstract: Most critical sectors worldwide rely on operational technology (OT) whose cybersecurity, due to the primary need of availability, results to be obsolete and inadequate. Episodes like Stuxnet, Irongate, BlackEnergy3, etc., showed that cyberattacks causing kinetic effects have become a concrete threat. This is particularly concerning in relation to the chemical process industry (CPI) as disruptions could involve the release of hazardous materials and result in catastrophic effects. So far, OT-targeted cyber-attacks are considered so complex that only sophisticated teams with significant technical and organisational resources are likely to succeed. This paper provides a critical review of the most relevant elements with a focus on the petrol-chemical sector. It will first discuss why OT is inherently insecure. It will then analyse how the cyber-threat has evolved and it will review relevant OT-targeted cyberattacks. Finally, it will introduce the concept of advanced persistent threats (APT) and discuss their characterisation and modus operandi. Inderscience Publishers - linking academia, business and industry through research

Title: Cyber threats for operational technologies

Authors: Giacomo Assenza; Luca Faramondi; Gabriele Oliva; Roberto Setola

Addresses: Complex System and Security Lab, University Campus Bio-Medico of Rome, Rome, 00128, Italy ' Complex System and Security Lab, University Campus Bio-Medico of Rome, Rome, 00128, Italy ' Complex System and Security Lab, University Campus Bio-Medico of Rome, Rome, 00128, Italy ' Complex System and Security Lab, University Campus Bio-Medico of Rome, Rome, 00128, Italy

Abstract: Most critical sectors worldwide rely on operational technology (OT) whose cybersecurity, due to the primary need of availability, results to be obsolete and inadequate. Episodes like Stuxnet, Irongate, BlackEnergy3, etc., showed that cyberattacks causing kinetic effects have become a concrete threat. This is particularly concerning in relation to the chemical process industry (CPI) as disruptions could involve the release of hazardous materials and result in catastrophic effects. So far, OT-targeted cyber-attacks are considered so complex that only sophisticated teams with significant technical and organisational resources are likely to succeed. This paper provides a critical review of the most relevant elements with a focus on the petrol-chemical sector. It will first discuss why OT is inherently insecure. It will then analyse how the cyber-threat has evolved and it will review relevant OT-targeted cyberattacks. Finally, it will introduce the concept of advanced persistent threats (APT) and discuss their characterisation and modus operandi.

Keywords: cyber-security; operational technology; cyber-threat; chemical industry; process security; SCADA; supervisory control and data acquisition; APT; advanced persistent threats; critical infrastructure; ICS; industrial control systems.

DOI: 10.1504/IJSSE.2020.109127

International Journal of System of Systems Engineering, 2020 Vol.10 No.2, pp.128 - 142

Received: 21 May 2019
Accepted: 04 Dec 2019
Published online: 21 Aug 2020 *

Full-text access for editors Full-text access for subscribers Purchase this article Comment on this article

Title: Cyber threats for operational technologies

Keep up-to-date