CERN, Geneva
Virtually all modern accelerator control systems are nowadays based on commercial-off-the-shelf products (VME crates, PLCs, SCADA systems, etc.), on Windows or Linux PCs, and on communication infrastructures using Ethernet and TCP/IP. Despite the benefits coming with this (r)evolution, these "modern" control systems and infrastructures usually completely lack adequate levels of robustness, resilience and security. Even worse, new threats are inherited, too: Worms and viruses spread within seconds via the Ethernet cable, and attackers are becoming interested in breaking into control systems. This talk will discuss the initial security risks, what precautions are needed to protect control systems against cyber threats and how to provide a secure environment without sacrificing operability.
