Change search
CiteExportLink to record
Permanent link

Direct link
Cite
Citation style
  • apa
  • harvard1
  • ieee
  • modern-language-association-8th-edition
  • vancouver
  • Other style
More styles
Language
  • de-DE
  • en-GB
  • en-US
  • fi-FI
  • nn-NO
  • nn-NB
  • sv-SE
  • Other locale
More languages
Output format
  • html
  • text
  • asciidoc
  • rtf
Increasing the security awareness in the water sector is a choice of color - Will you take the blue pill or the red pill?
KTH, School of Electrical Engineering (EES), Industrial Information and Control Systems.
2009 (English)In: Water Security Congress 2009, 2009, 403-417 p.Conference paper, Published paper (Refereed)
Abstract [en]

This paper is based upon experiences from security assessments of SCADA-systems, including assessment performed at one of Sweden's larger water facility. The paper highlights findings and examines state-of-the-practice control system models. These models are commonly employed in the water sector and provide an abstract representation of the system architecture. These kinds of models are indeed a powerful tool for the facility owners and other stakeholders that needs to understand the system configuration. However, these abstract representations are seldom aligned with the reality. They are more like a choice of blissful ignorance. This paper is like a "red pill" for your organization since it point out the sometimes painful truth about reality. It takes a closer look on some abstract representations and reveals some cases where they actually makes the world look "nicer" than it is from a security perspective. It looks nicer merely because the deficient abstract representations don't really show system weaknesses that could have critical consequences. The overall consequence is that the operator of a water facility can be deceived to believe that the security level is far better than it is in reality, simply because details of the system are not scrutinized enough in his models.

Place, publisher, year, edition, pages
2009. 403-417 p.
Keyword [en]
Abstract representation, Control system models, Facility owners, Security assessment, Security awareness, Security level, System architectures, System configurations, Water facility, Water sector, SCADA systems, Water supply
National Category
Water Engineering
Identifiers
URN: urn:nbn:se:kth:diva-152017Scopus ID: 2-s2.0-84873353124ISBN: 978-161567237-0 (print)OAI: oai:DiVA.org:kth-152017DiVA: diva2:749068
Conference
Water Security Congress 2009, 8 April 2009 through 10 April 2009, Washington, DC, United States
Note

QC 20140923

Available from: 2014-09-23 Created: 2014-09-23 Last updated: 2014-09-23Bibliographically approved

Open Access in DiVA

No full text

Scopus

Search in DiVA

By author/editor
Johansson, Erik
By organisation
Industrial Information and Control Systems
Water Engineering

Search outside of DiVA

GoogleGoogle Scholar

isbn
urn-nbn

Altmetric score

isbn
urn-nbn
Total: 102 hits
CiteExportLink to record
Permanent link

Direct link
Cite
Citation style
  • apa
  • harvard1
  • ieee
  • modern-language-association-8th-edition
  • vancouver
  • Other style
More styles
Language
  • de-DE
  • en-GB
  • en-US
  • fi-FI
  • nn-NO
  • nn-NB
  • sv-SE
  • Other locale
More languages
Output format
  • html
  • text
  • asciidoc
  • rtf