@inproceedings{d0a1505a93584e67ac9222d2a4c06fb6,
title = "Attacking the IEC 61131 Logic Engine in Programmable Logic Controllers",
abstract = "Programmable logic controllers monitor and control physical processes in critical infrastructure assets, including nuclear power plants, gas pipelines and water treatment plants. They are equipped with control logic written in IEC 61131 languages such as ladder diagrams and structured text that define how the physical processes are monitored and controlled. Cyber attacks that seek to sabotage physical processes typically target the control logic of programmable logic controllers. Most of the attacks described in the literature inject malicious control logic into programmable logic controllers. This chapter presents a new type of attack that targets the control logic engine that is responsible for executing the control logic. It demonstrates that a control logic engine can be disabled by exploiting inherent features such as the program mode and starting/stopping the engine. Case studies involving control logic engine attacks on real programmable logic controllers are presented. The case studies present internal details of the logic engine attacks to enable industry and the research community to understand the control logic engine attack vector. Additionally, control engine attacks on power substation, conveyor belt and elevator testbeds are presented to demonstrate their impacts on physical systems.",
keywords = "IEC 61131 logic engine, Programmable logic controllers, attacks",
author = "Qasim, {Syed Ali} and Adeen Ayub and Jordan Johnson and Irfan Ahmed",
note = "Publisher Copyright: {\textcopyright} 2022, IFIP International Federation for Information Processing.; 15th IFIP WG 11.10 International Conference on Critical Infrastructure Protection, ICCIP 2021 ; Conference date: 15-03-2021 Through 16-03-2021",
year = "2022",
doi = "10.1007/978-3-030-93511-5_4",
language = "English",
isbn = "9783030935108",
series = "IFIP Advances in Information and Communication Technology",
publisher = "Springer Science and Business Media Deutschland GmbH",
pages = "73--95",
editor = "Jason Staggs and Sujeet Shenoi",
booktitle = "Critical Infrastructure Protection XV - 15th IFIP WG 11.10 International Conference, ICCIP 2021, Revised Selected Papers",
}