Most critical sectors worldwide rely on operational technology (OT) whose cybersecurity, due to the primary need of availability, results to be obsolete and inadequate. Episodes like Stuxnet, Irongate, BlackEnergy3, etc., showed that cyberattacks causing kinetic effects have become a concrete threat. This is particularly concerning in relation to the chemical process industry (CPI) as disruptions could involve the release of hazardous materials and result in catastrophic effects. So far, OT-targeted cyber-attacks are considered so complex that only sophisticated teams with significant technical and organisational resources are likely to succeed. This paper provides a critical review of the most relevant elements with a focus on the petrol-chemical sector. It will first discuss why OT is inherently insecure. It will then analyse how the cyber-threat has evolved and it will review relevant OT-targeted cyberattacks. Finally, it will introduce the concept of advanced persistent threats (APT) and discuss their characterisation and modus operandi.
Cyber threats for operational technologies
Faramondi L;Oliva G;Setola R
2020-01-01
Abstract
Most critical sectors worldwide rely on operational technology (OT) whose cybersecurity, due to the primary need of availability, results to be obsolete and inadequate. Episodes like Stuxnet, Irongate, BlackEnergy3, etc., showed that cyberattacks causing kinetic effects have become a concrete threat. This is particularly concerning in relation to the chemical process industry (CPI) as disruptions could involve the release of hazardous materials and result in catastrophic effects. So far, OT-targeted cyber-attacks are considered so complex that only sophisticated teams with significant technical and organisational resources are likely to succeed. This paper provides a critical review of the most relevant elements with a focus on the petrol-chemical sector. It will first discuss why OT is inherently insecure. It will then analyse how the cyber-threat has evolved and it will review relevant OT-targeted cyberattacks. Finally, it will introduce the concept of advanced persistent threats (APT) and discuss their characterisation and modus operandi.I documenti in IRIS sono protetti da copyright e tutti i diritti sono riservati, salvo diversa indicazione.
