A Dynamic Positioning MODU Critical Control Systems Communications and Software Reliability Assessment

摘要

Objectives/Scope: Deepwater drilling units utilize critical Industrial Control Systems (ICS) that mayrnbe vulnerable to malicious software attacks. These systems include Dynamic Positioning, Vessel Management,rnBOP and Drilling Control. Dynamic Positioning Systems are critical to deepwater operationsrnand many software failures pose a risk of environmental and/or economic impact. The objective is tornassess a Mobile Offshore Drilling Unit (MODU) systems architecture and communication connections forrnthe possibility of unauthorized access. A review of Software Management of Change (SMOC) proceduresrnas practiced on these vessels is included to determine adherence to any existing procedures or policies.rnMethods, Procedures, Processes: The vast majority of control systems contain dedicated embeddedrnprocessors. These processors use operating systems that have an extremely low risk with regard torncommon malicious software. However, many systems have operator Human Machine Interfaces (HMI)rnthat use Microsoft Windows or other vulnerable operating systems. These operating systems represent arnrisk of vulnerability if not managed appropriately. Newer processors or consoles have USB ports and/arernconnected via Ethernet or similar communication links that provide an entry point for unauthorizedrnsoftware. There are some systems that connect via remote communication links over the Internet forrnsystem data extraction and/or troubleshooting. If these communication links have not been validated asrnsecure, unauthorized access is possible.rnResults, Observations, Conclusions: This paper will present successes in other industries, how theyrnapply to offshore assets, and prioritized areas of a rig’s critical control systems. Demonstrated performancernof a rig assessment (case study) on one particular unit is presented and how United States (US) andrnInternational standards and methods were applied is addressed. Results of the assessment and the remedialrnactions taken are presented. Relevant standards or methods for conducting an audit are reviewed.rnNovel/Additive Information: Approaches to software reliability management including an “assessmentrntemplate” that may be applied to a similar unit or production facility are included.