About the Journal Editorial Board For authors Publication ethics Archive Abstracting & Indexing Contact us
Introduction
Online submission

№2, 2020

SECURITY ISSUES IN CLOUD-BASED SCADA SYSTEM

Rashid G. Alakbarov, Mammad A. Hashimov

t.direktor_muavini@iit.science.az, mamedhashimov@gmail.com

The article discusses the security issues of cloud-based SCADA (Supervisory Control and Data Acquisition) systems, which are widely used in monitoring and management of the oil and gas industry. Since the traditional SCADA systems are very expensive, inflexible, and difficult to scale, numerous problems related to data collection, transmission and processing occur. The migration of SCADA system applications to the cloud environment allows for cost reduction, improved scalability, efficient system management, increased reliability, and solution of resource related problems. The article highlights the existing vulnerabilities that could hinder the security of cloud-based SCADA systems. Implementing security measures and risk assessment in cloud-based SCADA systems is a topical issue. In this regard, security problems and risks in the use of cloud-based SCADA systems are analyzed and recommendations are provided to solve them to some extent (pp.3-12).

Keywords: Oil and gas industry, cloud-based SCADA systems, cloud computing, cloud services, cloud models, security.
DOI : 10.25045/jpit.v11.i2.01
References
  • Is Moving Your SCADA System to the Cloud Right For Your Company, Cloud-Based SCADA Systems: The Benefits & Risks, White Paper, 2011. https://www.controlglobal.com/
  • Shahzad A., Musa S., Aborujilah A., Ismail M.N., Irfan M. Conceptual Model of Real Time Infrastructure Within Cloud Computing Environment // International Journal of Computer Networks, 2013, vol.5, issue 1, pp.18–24.
  • Liu M., Yuan M., Wang F., Sun C. The Oil and Gas Pipeline Clouding SCADA System and Multiple Data Centers Storage System Design / International Conference on Manufacturing Construction and Energy Engineering, 2016, pp.293–297.
  • Honeywell Process SolutionsSecuring SCADA in the cloud, 2019. https://www.processonline.com.au/content/software-it/article/securing-scada-in-the-cloud-417777075
  • Mrabet Z.E, Kaabouch N., Ghazi H.E., Ghazi H.E. Cyber-Security in Smart Grid: Survey and Challenges // Computers & Electrical Engineering, 2018, vol.67, pp.469–482.
  • Soufiane S., Halima B. SaaS Cloud Security: Attacks and Proposed Solutions // Transactions on Machine Learning and Artificial Intelligence, 2017, vol.5, no.4, pp.291–301.
  • Stojanović M.D., Boštjanĉiĉ Rakas S.V., Marković-PetroviC J.D. Scada systems ın the cloud and fog envıronments: mıgratıon scenarıos and securıty ıssues // Electronics and Energetics, 2019, vol.32, no.3, pp.345–358.
  • Yosra B.D., Yacine D., Slim R., Noureddine B. A Novel Sensor Cloud Based SCADA infrastructure for Monitoring and Attack prevention / MoMM '16: Proceedings of the 14th International Conference on Advances in Mobile Computing and Multi Media, November 2016, pp.45–49. https://doi.org/10.1145/3007120.3007169
  • Yadav G., Paul K. Archıtecture and Securıty of Scada Systems: a Revıew // 2020. https://arxiv.org/abs/2001.02925
  • Baker T., Mackay M., Shaheed A., Aldawsari B. Security-oriented cloud platform for SOA-based SCADA / 15th IEEE/ACM International Symposium on Cluster, Cloud and Grid Computing May 2015, pp.961–970.
  • HyungJun K. Security and Vulnerability of SCADA Systems over IP-Based Wireless Sensor Networks // International Journal of Distributed Sensor Networks, 2012, doi:10.1155/2012/268478
  • Zakuan F., Norziana J., Qais S.Q., Mohd E.R., Norhamadi J., Maslina D., HafizahChe H. A Study on Security Vulnerabilities Assessment and Quantification in SCADA // Journal of Engineering and Applied Sciences, 2018, vol.13, no.6, pp.1338–1346.
  • Fataliyev T.Kh., Mehdiyev Sh.A. Analysis and New Approaches to the Solution of Problems of Operation of Oil and Gas Complex as Cyber-Physical System // International Journal of Information Technology and Computer Science, vol.10, no.11, 2018, pp.67–76.
  • Zhifeng Y., Fei H., Xuehui F., Qi F.,  Zhen C., Yidan Z. Cloud Computing and Big Data for Oil and Gas Industry Application China // Journal of Computers, 2019, vol.14, no.4, pp.268–
  • Keith S., Joe F., Karen K. Guide to Supervisory Control and Data Acquisition (SCADA) and Industrial Control Systems // National Institute of Standards and Technology Special Publication 800-82, 164 p.
  • Slay J., Miller M. A Security Architecture for SCADA Networks / 17th Australasian Conference on Information Systems, 2006.
  • Liu , Yuan M., Li G. Design Private Cloud of Oil and Gas SCADA System // EAI Endorsed Transactions on Scalable Information Systems, 2014, vol.1, issue 3, pp.1–5.
  • Alguliyev R., Alekperov R. Cloud Computing: Modern State, Problems and Prospects // Telecommunications and Radio Engineering, 2013, vol.73, no.3. pp.255-266.
  • Diaby T., Rad B.B. Cloud Computing: A review of the Concepts and Deployment Models // International Journal of Information Technology and Computer Science, 2017, 9, no.6, pp.50–58.
  • Zhang Q., Cheng L., Boutaba R. Cloud computing: state-of-the-art and research challenges // Journal of Internet Services and Applications, 2010, vol.1, pp.7–18.
  • Ələkbərov R.Q., Həşimov M.A. Bulud texnologiyaları: xidmətlər, problemlər və tətbiq sahələri // İnformasiya texnologiyaları problemləri, 2016, №1, s.3–10.
  • Combs L. Cloud Computing for SCADA, moving all or part of SCADA applications to the cloud can cut costs, significantly while dramatically increasing reliability and scalability. http://www.indusoft.com/Documentation/White-Papers/ArtMID/1198/ArticleID/430/Cloud-Computing-for-SCADA
  • Tomáš L., Iveta Z. Improvement of Human-Plant Interactivity via Industrial Cloud-Based Supervisory Control and Data Acquisition System. / International Conference on Advances in Production Management Systems (APMS), 2014, pp.83–90.
  • Sajid A., Abbas H., Saleem K. Cloud-Assisted IoT-Based SCADA Systems Security: A Review of the State of the Art and Future Challenges //IEEE Access, 2016, vol.4,                   1375–1385.
  • Piggin R.S.H. Securing scada in the cloud: managing the risks to avoid the perfect storm / IET & ISA 60th International Instrumentation Symposium, 2014.
  • Kyle W. SCADA in the Cloud A Security Conundrum? Trend Micro Incorporated Research Paper 2013, https://blog.trendmicro.com/trendlabs-security-intelligence/scada-in-the-cloud-a-security-conundrum/
  • Wang Y. sSCADA: Securing SCADA infrastructure communications // International Journal of Communication Networks and Distributed Systems, 2012, vol.6, no.1, pp.59–78.
  • Patrıck D.H. A security checklist for SCADA systems in the cloud, https://gcn.com/articles/2015/06/29/scada-cloud.aspx
  • John D. F., Andres E. F. SCADA systems: vulnerabilities and remediation // Journal of Computing Sciences in Colleges, 2005, vol.20, no.4, pp.160–168.
© Institute of Information Technology, 2024 www.ict.az |  secretary@iit.ab.az |  info@science.az
Creative Commons License
This work is licensed under a Creative Commons Attribution 4.0 International License.