Progress is, however, often accompanied by unintended consequences. In the case of automation, the computers that make production smarter also make it more vulnerable to external interference. The possibility of infection by the malicious code that infests the internet is one thing: the Stuxnet worm that appeared in 2010 was one memorable example of a virus that targeted industrial control systems. Since then we have also had a sophisticated attack on a German steel mill that crippled a blast furnace, as well as many day-to-day attacks that don’t make the headlines, but which also cause damage and delay.
As our experts design these cutting-edge control systems, we also know how to make them as resilient as possible. To this end, our expert team has formulated a set of measures aimed at protecting their reliability, integrity and availability. The general idea is to set up a “defence in depth”, an important part of which is played by ABB’s distributed control system, 800xA.
ABB knows how to protect your system - from the very beginning
We at ABB recognize the importance of integrating cyber protection into our products (more than half of which relate to software). This starts at the earliest design and development stages and runs through testing, commissioning and lifecycle support.
Among the services we can offer our clients are those that continuously scrutinize IT systems. For example, the list below gives some of our standard protections:
- Beyond the usual back-up, audit and encryption functionality, 800xA’s Cyber Security Fingerprint can analyze a system’s configuration, together with the computers of key personnel, and identify potential weaknesses.
- ABB’s Cyber Security Monitoring Service offers continuous, remote monitoring of the control system, as well as periodic reviews of its performance.
- “White-listing” is an option for clients with enhanced security needs. This prevents any unauthorized changes being made to applications, and it can operate in conjunction with solutions such as Industrial Defender Automation Systems Manager™, which monitors changes to registries, processes and the number of devices on the network.
- Enhanced access control for critical operations, such as altering the control system, batch operations or configuration changes. This can include asking the user to prove their identity, or requiring a second user to “vouch” for them.
How to protect high demanding metals equipment?
Another key service to metals customers in addition to our cyber security is ABB’s remote diagnostic service. This collects data from equipment such as mill drives and sends it to a remote ABB control center. The center acts as a knowledge bank, a control room and a communication hub: if a problem occurs, our expertise in automated control together with our understanding of the metals processes mean it can be solved before it causes an unplanned shutdown. All of these communications are handled by a secure remote platform, so that the integrity of the overall control system is not affected; indeed, security is designed into every layer of the platform, eliminating the need for virtual private networks or cumbersome changes to security procedures.
But why is all this so important for you as a metals operator?
The answer is that you cannot afford to take the risk of unauthorized interference with your operations, such as the virus that wrecked the German blast furnace.
In the future, the operation of mines will rely less and less on site staff and more and more on digital systems that optimize productivity and minimize health and safety risks. And as distributed control systems become ever more critical to the operation of a metals manufacturer, so does the need to protect these systems from interference. This makes our unique combination of metals experience and our suite of security measures an indispensable partner for the metals company of the future.