From 054ff69990ed2d611a3c4c8537eb72d114044be7 Mon Sep 17 00:00:00 2001 From: Dane Sabo Date: Mon, 25 Nov 2024 16:46:16 -0500 Subject: [PATCH] vault backup: 2024-11-25 16:46:16 --- .../Project and Presentation.md | 19 +++++++++++++++++-- 1 file changed, 17 insertions(+), 2 deletions(-) diff --git a/300s School/NUCE 2100 - Fundamentals of Nuclear Engineering/Project and Presentation.md b/300s School/NUCE 2100 - Fundamentals of Nuclear Engineering/Project and Presentation.md index 44b62970..d99e4568 100644 --- a/300s School/NUCE 2100 - Fundamentals of Nuclear Engineering/Project and Presentation.md +++ b/300s School/NUCE 2100 - Fundamentals of Nuclear Engineering/Project and Presentation.md @@ -78,9 +78,24 @@ The fundamental reason cybersecurity is a concern for nuclear power is the intro ### What is the future of control? - Digital controllers (computers) - Can be more efficient, more involved control solutions -- Can easily update +- Can easily update systems as components age and wear to ensure optimality. +- Can easily update to new technology in pieces or in whole system +- Remote monitoring is a thing +- Security is much more complex than restricting access. Instead, cyberattacks are a whole new frontier of vulnerabilities ## Cybersecurity Threats to Digital Control Systems +- Cybersecurity threats on digital control systems happen all the time and are a big deal. +- talk about what cyberphysical systems are +- CPS is important because a cyber attack on a cps translates digital harm into physical consequences. +- On less critical systems this has been an issue. +- German Steel Mill was an attack that caused severe financial losses to a german steel mill and blew open a blast furnace +- What about nuclear? As far as we know no attacks on NPP but there has been cyberattacks in the nuclear industry. +- Stuxnet was specifically designed to target Iran's nuclear enrichment program, and destroyed a lot of their progress. +- Their control systems weren't iranian made however, they're industry standard. (CHECK!) +- Digital control systems introduce vulnerbailities by their nature because they can carry vulnerabilities that are not easily traceable from the supply chain too. +- Pager attack is a supply chain example. How can you check code correctness? ## Regulatory Challenges in Digital Systems -Measuring protection is extremely difficult +- Huge problem with digital control systems. You really can't know because the onus of cybersecurity right now is on the user (THIS IS CITEABLE) +- This is a push for regulators to instead put the blame of vulnerability removal onto the manufacturers. +- This is one thing that has to happen ## Strategies for Robustness to Cyberattacks ## Conclusion