Eng-Tips is the largest engineering community on the Internet

Intelligent Work Forums for Engineering Professionals

Register Log in

How to retrieve data from a scada-PLC system without infecting it with virus? 2

Status
Not open for further replies.
SA07

SA07

Electrical
Feb 22, 2018
365
0
0
MU
Hi

Often we have to retrieve data, alarms, trends, print screens of process values and share. Is there a way of doing this without infecting the system with virus if we use a pen drive between our office laptop and the system?

Initially we were using a CD. Nowadays most laptop do not have a CD drive and the personnel find this tedious.

Is there any anti-virus installed on a scada-PLC system e.g Siemens PLC 400 for a power plant? Does Siemens, ABB, Schneider recommend to install anti-virus on their system?
Are there examples of power plant shutdown of scada-PLC due to virus in the past? Thks
 
Replies continue below

Recommended for you

Sort by date Sort by votes
Please make sure to keep your control system updated and protected with validated Microsoft security updates and verified 3rd party Antivirus files. You may also wish to make sure with your service provider that common antivirus software's like McAfee and Symantec updates are verified for relevance and system compatibility with your control system software.
Esperantes
 
Upvote 0 Downvote
I don't believe there are any specific security issues that are particular to automation equipment that wouldn't also apply to a business enterprise system. Whatever IT security procedures and processes are employed should be used everywhere in your business.

You may find some interesting and helpful discussions here- Link

Brad Waybright

The more you know, the more you know you don't know.
 
Upvote 0 Downvote
thebard3 has the answer.

And if you want an example of shutdowns, all one has to do is Google StuxNet... that will put the fear of God into any SCADA/PLC maintenance tech.

Dan - Owner
Footwell%20Animation%20Tiny.gif
 
Upvote 0 Downvote
The short answer is that if you're using USB drives to transfer such data, you're doing it wrong.

The long answer, as an augment of what thebard3 has said, is that the system should be configured such that access to such equipment via things like USB sticks for data retrieval is never required.
Access to some sort of historian, only via authenticated users, would be one of the ideal cases. It used to be the case that such access was at least partially obfuscated via use of serial communications, but with ethernet, most equipment is effectively wide open should anyone look hard enough for it.

I am only too well aware, however, of the general issues in getting both IT and OT to agree on what is needed, how to implement it, and who is to support it.

EDMS Australia
 
Upvote 0 Downvote
The system needs to write the data to a table and the historian reads the data from the table. No direct interaction between the process system and the historian.

I’ll see your silver lining and raise you two black clouds. - Protection Operations
 
Upvote 0 Downvote
If the process device is only pushing out data and never receives anything it can't be infected. The data in the table could become compromised before the historian reads it, but there shouldn't be a path into the process equipment.

I’ll see your silver lining and raise you two black clouds. - Protection Operations
 
Upvote 0 Downvote
Status
Not open for further replies.

Similar threads

Peter85
  • Question
Vantage System Issues - Where to Repair? 1
Replies
4
Views
33
Peter85
Peter85
Grizlyadams
  • Locked
  • Question
VFD to up from 50 to 60Hz 3
2
Replies
29
Views
39
Grizlyadams
Grizlyadams
KGisME
  • Locked
  • Question
Modifying an NEMA 4 box. How to ensure it stays watertight? 4
Replies
17
Views
22
FacEngrPE
FacEngrPE
Hafzkk
  • Locked
  • Question
how to calculate total Load using Current 3
Replies
12
Views
32
ST982
ST982
dmac123
  • Locked
  • Question
Rig Collision Detection System
Replies
6
Views
19
waross
waross
Back
Top