Logo
ScienceStack
Table of Contents
Fetching ...
Sign In

Investigation of Cyber Attacks on a Water Distribution System

Sridhar Adepu, Venkata Reddy Palleti, Gyanendra Mishra, Aditya Mathur

TL;DR

A study to investigate the impact of cyber attacks on a water distribution (WADI) system using a specially designed tool that enables the launch of single and multi-point attacks where the latter are designed to specifically hide one or more attacks.

Abstract

A Cyber Physical System (CPS) consists of cyber components for computation and communication, and physical components such as sensors and actuators for process control. These components are networked and interact in a feedback loop. CPS are found in critical infrastructure such as water distribution, power grid, and mass transportation. Often these systems are vulnerable to attacks as the cyber components such as Supervisory Control and Data Acquisition workstations, Human Machine Interface and Programmable Logic Controllers are potential targets for attackers. In this work, we report a study to investigate the impact of cyber attacks on a water distribution (WADI) system. Attacks were designed to meet attacker objectives and launched on WADI using a specially designed tool. This tool enables the launch of single and multi-point attacks where the latter are designed to specifically hide one or more attacks. The outcome of the experiments led to a better understanding of attack propagation and behavior of WADI in response to the attacks as well as to the design of an attack detection mechanism for water distribution system.

Investigation of Cyber Attacks on a Water Distribution System

TL;DR

A study to investigate the impact of cyber attacks on a water distribution (WADI) system using a specially designed tool that enables the launch of single and multi-point attacks where the latter are designed to specifically hide one or more attacks.

Abstract

A Cyber Physical System (CPS) consists of cyber components for computation and communication, and physical components such as sensors and actuators for process control. These components are networked and interact in a feedback loop. CPS are found in critical infrastructure such as water distribution, power grid, and mass transportation. Often these systems are vulnerable to attacks as the cyber components such as Supervisory Control and Data Acquisition workstations, Human Machine Interface and Programmable Logic Controllers are potential targets for attackers. In this work, we report a study to investigate the impact of cyber attacks on a water distribution (WADI) system. Attacks were designed to meet attacker objectives and launched on WADI using a specially designed tool. This tool enables the launch of single and multi-point attacks where the latter are designed to specifically hide one or more attacks. The outcome of the experiments led to a better understanding of attack propagation and behavior of WADI in response to the attacks as well as to the design of an attack detection mechanism for water distribution system.

Paper Structure

This paper contains 25 sections, 2 equations, 15 figures, 2 tables.

Table of Contents

  1. Introduction
  2. Preliminaries and background
  3. Industrial Control Systems
  4. Vulnerability Assessment
  5. Context: WADI Testbed
  6. Architecture of the WADI
  7. Vulnerability Assessment in WADI
  8. Attacking WADI
  9. Attack Investigation on WADI
  10. Attack Design
  11. Execution of attacks
  12. Attack 1: Attack on 1_LT_001
  13. Attack 2: Attack on 2_LT_002
  14. Attack 3: Attack on Motorized Valve 1_MV_002
  15. Attack 4: Attack on Motorized Valve 1_MV_001
  16. ...and 10 more sections

Figures (15)

  • Figure 1: Key components in a CPS. State transformation of a CPS in a feedback control loop.
  • Figure 2: Architecture of the control portion of a CPS. P1, P2,…,Pn denote PLCs. Each PLC communicates with its sensors and actuators through a local network at Level 0. PLCs communicate among themselves via another network at Level 1. Communication with SCADA and other computers is not shown here.
  • Figure 3: Three stages in WADI are shown. Solid arrows indicate flow of water and sequence of processes. S: set of sensors; A: set of actuators. LT-Level Transmitter, AIT-Analyzer Indication Transmitter, FIT-Flow Indication Transmitter, PIT-Pressure Indication Transmitter, LS-Level Switch. Actuators: P-Pump, MV-Motorized valve, MCV-Modulating Control Valve, SV-Solenoid Valve. Tag name of the instrument is indicated as XXX_YYY_ZZZ, where XXX, YYY and ZZZ represent stage number, instrument type and instrument index, respectively.
  • Figure 4: Attack 1: Water level readings of three stages. Attacker brings the level of 1_LT_001 to 40%.
  • Figure 5: Attack 1: Flow to the consumer tanks and consumers are cut-off from water supply from little over 3500 seconds onwards.
  • ...and 10 more figures