 |
 Rohde Schwarz CMU200v30 COMMUNICATIONS TEST SET  US $17,950.00
|
 Rohde Schwarz CMU200 Communications Test Set US $15,500.00
|
 Agilent E6601A 27GHz Wireless Communications test set US $14,700.00
|
| Powered by phpBay Pro |
What is SCADA Penetration Testing?
The cyber world is full of acronyms and one of the most important is SCADA. SCADA is short for “supervisory control and data acquisition” and refers to a computer system that collects and analyses a constant flow of data. A SCADA system is used to monitor and control some of the most essential systems in the world. SCADA systems are used in plants and on sensitive equipment that handles energy, oil, water, gas, waste treatment, nuclear power, transportation, and/or telecommunications at the business or national level.
A SCADA system is the “brains” of these mission critical operations. The computer system gathers real time data and provides information about the status of the utility and transportation systems at every point. It reports on leaks, flows, environmental conditions, and breeches. Computer systems today are designed to eliminate as much vulnerability to outside breeches as possible, and to report when a system has been hacked, modified, or even when new exposures have been created.
Yet reports emerge regularly about SCADA systems that have been penetrated. As recently as April 2009, there was a report by the Wall Street Journal that hackers in China and Russia were attempting to hack into the US electric grid. What is truly interesting about this situation is the fact the hacking was not detected by the companies controlling the grids. It was uncovered by US intelligence agencies.
Penetration Closes the Windows
This very recent case of SCADA system hacking is a prime example of the need for regular system penetration testing. Securing essential infrastructures from internal and external hackers is a matter of constant diligence and assessment and that is why continual system monitoring is always required to be in place on a SCADA system.
SCADA penetration testing performs two major functions. First the continual security analysis assesses and monitors the system within its internal environment. This testing alerts operators to hacking originating within the organisation. It will also report on vulnerabilities that are system weaknesses creating windows for hackers to enter through.
The SCADA penetration testing also monitors the system externally. The purpose of this testing is to prevent hackers from outside the organisation from entering the SCADA system. As the US electric grid example clearly indicates, critical systems such as utility systems have exposure to a range of criminal intrusions, from the hackers looking for a challenge to their computer skills, to terrorists hoping to cause chaos.
SCADA penetration testing will mirror the connections of the SCADA system to all external systems. This is essential for replicating the kind of hacking activity that defines external attempts to access a computer system. The penetration testing will include analysis and assessment of existing interfaces such as the following.
* All connections including to internet and servers
* Connections to Remote Terminal Units (RTUs)
* Firewall systems
* Intrusion detections systems (IDS)
The assessment of vulnerabilities conducted as part of SCADA penetration testing involves a number of activities.
* Recreation of system architecture for creating and testing malicious code
* Check for vulnerable open ports on network and insure unknown ports are instantly identified when created
* Monitor backup operations
* Perform ongoing security checks and provided warnings and fixes
* Analyse and monitor all software vulnerabilities at all levels including registry, servers, and production terminals
* Analyse and monitor inter-computer communications
* Test for attacks on networks employed through content or code filtering and changing
* Test for security holes created by problems such as unsecured code or buffer overflows
SCADA penetration testing is comprehensive and tests the system both internally and externally. Hacking can originate on-site or remotely, occur within or without the system, be initiated by employees or non-employees, and occur through software or hardware vulnerabilities. SCADA penetration testing will review and assess current system operations and that provides the framework for continual protection strategies and tactics.
About the Author
Pure Hacking helps protect your Internet security by providing world-class penetration testing and ethical hacking risk management services. For a free consultation, please visit Ethical Hacking.
|
|
Rohde Schwarz CMU200v30 COMMUNICATIONS TEST SET US $17,950.00
|
Rohde Schwarz CMU200 Communications Test Set US $15,500.00
|
Agilent E6601A 27GHz Wireless Communications test set US $14,700.00
|
 Anritsu MT8815A RF Communication Test Set HSDPA US $14,000.00
|
 HP Agilent E6601A Wireless Communications Test Set US $13,000.00
|
 Rohde Schwarz CMU200 Radio Communications Test Set US $12,500.00
|
 Agilent 8960 Series 10 Wireless Communications Test Set US $12,500.00
|
 Agilent 8960 003 Series 10 Wireless Communications Test Set US $12,500.00
|
 Agilent E5515C Wireless Communications Test Set US $12,500.00
|
 ANRITSU MT 8820A DIGITAL COMMUNICATION TEST SET W CDMA US $10,950.00
|
 JDSU 2310 Communications Test Set US $8,000.00
|
 Willtek 4202S RF Communications Test Set US $7,495.00
|
 Agilent 8920B Communications Test Set 30 MHz to 1 GHz US $6,250.00
|
 Agilent HP 8920B RF Communications Test Set US $5,795.00
|
 Rohde Schwarz CMD55 Communication Test Set US $5,495.00
|
 IFR Aeroflex 500A 1GHz Radio Communications Test Set US $5,349.00
|
 HP Agilent 8920B RF Communication Test Set w Options US $5,195.00
|
 IFR 1200 Super S Communication Service Monitor TESTED US $5,000.00
|
 Rohde Schwarz RS CMD55 Communication Test Set US $2,280.00
|
 Agilent E6601A Wireless Communications Test Set US $2,199.00
|
 ANRITSU MT8801C DIGITAL ANALOG RADIO COMMUNICATION TEST US $2,095.00 |
 Agilent HP 8922G 001 005 GSM Communications Test Set US $1,795.00
|
 Marconi 2955B radio communication service monitor test set US $1,899.99
|
 ASE2000 COM Communication Test Set by Applied Systems US $1,500.00
|
 T Com 440B T ACE Digital Communications Test Set 52B US $1,499.99
|
 FANUC A20B 8001 0120 COMMUNICATION BOARD TESTED US $1,499.00
|
 HP Agilent E2625A Communications Mask Test Kit Option US $1,300.00
|
 HARRIS MODEL 7003 DIGITAL COMMUNICATION TEST SET US $995.95
|
 Sage 930A Communication Test Set US $995.00
|
 Schlumberger SI 4031 STABILOCK communications test set 01 1000Mhz need repair US $988.00
|
 Oxygen hose and communications test set TTU 489 E PERFECT US $799.99
|
 TEKELEC TELECOM TE 861 SDH PDH TEST SET COMMUNICATION US $799.20
|
 SAGE 930A Communications Test Set V407 03 w OPTS US $749.99
|
 Rare ANDO AE 5104B Data Communication Analyzer Test Equipment Powers ON US $649.99
|
 Trend Communications Trend Aurora Prism ISDN Test Set US $645.00
|
| Powered by phpBay Pro |