Industrial Control Systems are under increased scrutiny. Their security ishistorically sub-par, and although measures are being taken by themanufacturers to remedy this, the large installed base of legacy systems cannoteasily be updated with state-of-the-art security measures. We propose a systemthat uses electromagnetic side-channel measurements to detect behaviouralchanges of the software running on industrial control systems. To demonstratethe feasibility of this method, we show it is possible to profile anddistinguish between even small changes in programs on Siemens S7-317 PLCs,using methods from cryptographic side-channel analysis.
展开▼