Protecting the Digital Oil Field from Emerging Cyber Threats
- Ayman Al-Issa (ADMA-OPCO)
- Document ID
- Society of Petroleum Engineers
- Abu Dhabi International Petroleum Conference and Exhibition, 11-14 November , Abu Dhabi, UAE
- Publication Date
- Document Type
- Conference Paper
- 2012. Society of Petroleum Engineers
- 4.4.2 SCADA, 4.1.4 Gas Processing, 4.1.5 Processing Equipment, 1.6.9 Coring, Fishing, 6.4.2 Security of Operating Facilities, 1.6 Drilling Operations, 4.9 Facilities Operations, 4.2 Pipelines, Flowlines and Risers, 4.1.2 Separation and Treating
- 2 in the last 30 days
- 159 since 2007
- Show more detail
- View rights & permissions
|SPE Member Price:||USD 8.50|
|SPE Non-Member Price:||USD 25.00|
Whilst best-in-class automation has been put place in industrial plants during the past few years, brought about by the developments in Industrial Control Systems (ICS), the industry has become vulnerable to new types of industrial risks. The Distributed Control Systems (DCS), Safety Instrumented Systems (SIS), Fire and Gas Systems (F&G), SCADA Systems, etc that were put in place are essentially computer systems and became the source of concern as these have become intentional targets to hackers, espionage and blackmailers. The cyber security threat to process control networks and systems was also increasing with successful industrial attacks taking place.
Integrated operations in exploration, drilling, processing, refining and almost all oil and gas process operations are using such systems. The Digital Oil Field (DOF) vision materialized as a result of the advances in the application of automation, remote control, real-time data acquisition, and the enablement of collaborative work environments. This vision essentially raised the need to integrate the process control systems with corporate business networks. This has led to the vital need to put in place a robust industrial cyber security infrastructure. This paper will discuss:
• A first of its kind cyber defense infrastructure design for protecting the Digital Oil Fields and Critical Infrastructures from Cyber attacks.
• The importance of developing the integrated systems design concepts incorporating at its core the ICS Security by design.
• The value of engaging digital security specialists at the Front End Engineering Development (FEED) stage in Digital Oil Field projects.
"The Digital Oil Field & the Emerging Cyber Threats??
Whether it is called a Digital Oil Field (DOF), Smart Field or the Field of the Future, DOF is all about how we operate oil fields achieving better decisions, reducing risks to health, improving HSE, lowering operational costs, attaining more oil recovery, increasing production by connecting remote sites in real-time or near real-time way to enable collaborative working.
DOF wouldn't have been a reality without the use of smart field devices, integrating industrial automation systems with each other, integrating the ICS with corporate networks/systems, and achieving real-time data acquisition.
Automation systems used within DOF are of a similar nature to the IT systems used in enterprise networks, and also became subject to similar cyber threats that target the enterprise systems. Today's Cyber Security threats transformed beyond the nature of simple virus spread, computer or data damage, and data theft to the nature of ones that have the capabilities of changing the process plant operations, for example :
- Increasing pressure in a pipeline
- Changing field device parameter settings
- Closing/Opening a motorized valve
- Causing a Denial of Service(DoS) Attack within ICS
- Increasing/Decreasing Motor Speed
- Displaying Fake Process Diagrams & alarms to the operators' Human Machine Interfaces (HMI).
|File Size||310 KB||Number of Pages||6|