IDEAS home Printed from https://ideas.repec.org/a/aac/ijirss/v7y2024i4p1509-1517id3449.html
   My bibliography  Save this article

PLCBlox: Using blockchain-based audit trails to generate secure PLC commands

Author

Listed:
  • Andrew R Short
  • Τheofanis G Orfanoudakis
  • Helen C Leligou

Abstract

This research paper discusses security issues with current deployments of Programmable Logic Controllers (PLCs) and Supervisory Control and Data Acquisition Systems (SCADA) in the industry and proposes a solution that enables PLC devices to query a blockchain infrastructure for commands and setpoints. The blockchain assumes a dual role in this context: serving as an immutable audit trail database as well as a trusted source for critical commands and setpoints. In contrast to the conventional paradigm, this novel approach does not require write access at the PLC level, thus minimizes its attack surface and helping to protect against known and zero-day vulnerabilities often used in cyberwarfare, such as in the case of the notorious Stuxnet worm. Applications that enforce the logging of user operations for Good Manufacturing Practices (GMP) or compliance purposes use the blockchain network as an audit trail database for user actions. Any attempt to maliciously circumvent the logging operation would not affect the operation of a critical process. Additionally, a prototype implementation developed as part of this research finds that modern PLC devices are more than capable of interacting with private Ethereum blockchain nodes. The required libraries and user code consume a small percentage of available resources, while the duration of a complete request-response cycle measured around 22msec. The authors anticipate that PLCBlox can be used as a drop-in replacement for applications requiring higher security standards and logging enforcement, such as nuclear power plants or other critical infrastructure.

Suggested Citation

  • Andrew R Short & Τheofanis G Orfanoudakis & Helen C Leligou, 2024. "PLCBlox: Using blockchain-based audit trails to generate secure PLC commands," International Journal of Innovative Research and Scientific Studies, Innovative Research Publishing, vol. 7(4), pages 1509-1517.
    • Handle: RePEc:aac:ijirss:v:7:y:2024:i:4:p:1509-1517:id:3449
    as

    Download full text from publisher

    File URL: http://www.ijirss.com/index.php/ijirss/article/view/3449/547
    Download Restriction: no
    ---><---

    Corrections

    All material on this site has been provided by the respective publishers and authors. You can help correct errors and omissions. When requesting a correction, please mention this item's handle: RePEc:aac:ijirss:v:7:y:2024:i:4:p:1509-1517:id:3449. See general information about how to correct material in RePEc.

    If you have authored this item and are not yet registered with RePEc, we encourage you to do it here. This allows to link your profile to this item. It also allows you to accept potential citations to this item that we are uncertain about.

    We have no bibliographic references for this item. You can help adding them by using this form .

    If you know of missing items citing this one, you can help us creating those links by adding the relevant references in the same way as above, for each refering item. If you are a registered author of this item, you may also want to check the "citations" tab in your RePEc Author Service profile, as there may be some citations waiting for confirmation.

    For technical questions regarding this item, or to correct its authors, title, abstract, bibliographic or download information, contact: Natalie Jean (email available below). General contact details of provider: https://ijirss.com/index.php/ijirss/ .

    Please note that corrections may take a couple of weeks to filter through the various RePEc services.

    IDEAS is a RePEc service. RePEc uses bibliographic data supplied by the respective publishers.