How blockchain can help prevent cyberattacks like the Colonial Pipeline hack
- Given the increasing popularity of the use of internet-based SCADA systems to monitor industrial processes, companies are vulnerable to denial-of-service, spoof or spam attacks, among many others
- A blockchain framework could help prevent such attacks, especially if it encompasses internet-of-things, 5G and other emerging technologies
Currently, many industrial control systems are run by supervisory control and data acquisition (SCADA) systems, which are a mixture of software and hardware components that enable the control of facilities like production plants. Companies typically use industrial control systems, and by extension SCADA systems, to gather real-time data on all aspects of industrial production, ranging from the refining of oil to the control of waste disposal and even coordinating the transportation of goods.
SCADA systems currently have several key components needed for a system to function, such as the SCADA display unit, remote terminal units, a control unit, and some sort of communication link to tie the network together.
The SCADA display unit allows for the monitoring of the entire industrial control system, while remote terminal units help to monitor the specific process being managed. The control unit passes data between the display unit and remote terminal units, with communication links being primarily industry-dependent, including Ethernet, internet-based wide-area network (WAN) links, and even radio waves.
This makes protecting SCADA systems especially important for public and private organisations alike, with these systems often being the key to monitoring and protecting critical infrastructure throughout the world.
How blockchain and QR codes can help to revive international travel
By employing blockchain between SCADA display units and remote terminal units, threat actors would be unable to conduct cyberattacks such as spoofing. Blockchain’s verifiable credentials would ensure that only industrial control system and SCADA-approved devices could effectively function on such a network, with threat actors immediately breaking the chain, preventing any specific action.
Additionally, using blockchain to protect and verify firmware and software updates for system components would add another layer of protection to SCADA systems. Such blockchain-based registration of firmware and software could prevent situations like the 2014 Havex attack, when malware posing as legitimate software downloads for industrial control system software affected a variety of organisations in the US and Europe.
In a private network, only authenticated users and devices would be able to access that specific network. Additionally, an on-premise solution deployed by an organisation with its own base stations and core would further remove system vulnerabilities from SCADA systems. An additional layer of security would be added by the private network through its local processing of company data, ensuring security and data privacy for industrial purposes.
Ultimately, blockchain and emerging technologies like private networks can help increase security for SCADA systems as the world becomes increasingly digitised. This type of security against cyber threats is especially vital to safeguard countries’ critical infrastructure, whether that be an oil pipeline, water plant or even air conditioning unit.
However, regardless of the type of blockchain security or private network, a system is only as secure as the employees trained to operate it. Human error will remain a potential avenue of approach for threat actors looking to damage industrial systems, no matter how secure those networks may seem from the outside.
Hugh Harsono writes regularly for multiple publications about cyberspace, economics, foreign affairs and technology