Cyberattacks targeting industrial control systems(ICS)are becoming more sophisticated and advanced than in the past.A programmable logic controller(PLC),a core component of ICS,controls and monitors sensors and actuat...Cyberattacks targeting industrial control systems(ICS)are becoming more sophisticated and advanced than in the past.A programmable logic controller(PLC),a core component of ICS,controls and monitors sensors and actuators in the field.However,PLC has memory attack threats such as program injection and manipulation,which has long been a major target for attackers,and it is important to detect these attacks for ICS security.To detect PLC memory attacks,a security system is required to acquire and monitor PLC memory directly.In addition,the performance impact of the security system on the PLC makes it difficult to apply to the ICS.To address these challenges,this paper proposes a system to detect PLC memory attacks by continuously acquiring and monitoring PLC memory.The proposed system detects PLC memory attacks by acquiring the program blocks and block information directly from the same layer as the PLC and then comparing them in bytes with previous data.Experiments with Siemens S7-300 and S7-400 PLC were conducted to evaluate the PLC memory detection performance and performance impact on PLC.The experimental results demonstrate that the proposed system detects all malicious organization block(OB)injection and data block(DB)manipulation,and the increment of PLC cycle time,the impact on PLC performance,was less than 1 ms.The proposed system detects PLC memory attacks with a simpler detection method than earlier studies.Furthermore,the proposed system can be applied to ICS with a small performance impact on PLC.展开更多
An intelligent fuzzy logic inference pipeline for the control of a dc-dc buck-boost converter was designed and built using a semi-custom VLSI chip. The fuzzy linguistics describing the switching topologies of the conv...An intelligent fuzzy logic inference pipeline for the control of a dc-dc buck-boost converter was designed and built using a semi-custom VLSI chip. The fuzzy linguistics describing the switching topologies of the converter was mapped into a look-up table that was synthesized into a set of Boolean equations. A VLSI chip–a field programmable gate array (FPGA) was used to implement the Boolean equations. Features include the size of RAM chip independent of number of rules in the knowledge base, on-chip fuzzification and defuzzification, faster response with speeds over giga fuzzy logic inferences per sec (FLIPS), and an inexpensive VLSI chip. The key application areas are: 1) on-chip integrated controllers;and 2) on-chip co-integration for entire system of sensors, circuits, controllers, and detectors for building complete instrument systems.展开更多
This paper mainly represents the realization of synchro controller based on the programmable logic devices FPGA by request of HF ground wave radar synchro controller under the instance of making the best of the virtue...This paper mainly represents the realization of synchro controller based on the programmable logic devices FPGA by request of HF ground wave radar synchro controller under the instance of making the best of the virtues of FPGA. This design introduces the data communication between PC and synchro controller by PC Bus, which can carry the synchronous signals parameters to RAM of synchro controller, then according to the theory that the result of comparing counter value with signals parameters is the needed wave, we produce all waves HF ground wave radar needs, moreover all waves are produced time-sharing in order to save resources.展开更多
Different programming languages can be used for discrete, abstract and process-oriented programming. Depending on the application, there exist additional requirements, which are not fulfilled by every programming lang...Different programming languages can be used for discrete, abstract and process-oriented programming. Depending on the application, there exist additional requirements, which are not fulfilled by every programming language. Flexible programming and maintainability are especially important requirements for process engineers. In this paper, the programming languages Activity Diagram, State Chart Diagram and Sequential Function Chart are compared and evaluated with regard to these requirements. This evaluation is based on the principles of cognitive effectiveness and cognitive dimensions. The aim of this paper is to identify the programming language suited best for controlling sequential processes, e.g. thermomechanical or batch processes.展开更多
Targeting at the high expense and inflexibility to realize VMEbus bridge controller by professional Integrated Circuit (IC), this paper presents a scheme of adopting CPLD/FPGA (Complicated Programmable Logic Device/Fi...Targeting at the high expense and inflexibility to realize VMEbus bridge controller by professional Integrated Circuit (IC), this paper presents a scheme of adopting CPLD/FPGA (Complicated Programmable Logic Device/Field Programmable Gate Array) to design bridge controller between VMEbus and local bus. SHARC DSP (Digital Signal Processor) bus is an example. It has functions of nearly entire master/slave interface of VMEbus, and can act as DMA (Direct Memory Access) controller and perform block transfer in DMA or master processor initiative way without length limit. External circuit of the design is very simple. In comparison with special ICs, it has high performance to price ratio and can be easily applied to local buses of other processors with quite a little modification.展开更多
Industrial control systems (ICSs) are widely used in critical infrastructures, making them popular targets for attacks to cause catastrophic physical damage. As one of the most critical components in ICSs, the progr...Industrial control systems (ICSs) are widely used in critical infrastructures, making them popular targets for attacks to cause catastrophic physical damage. As one of the most critical components in ICSs, the programmable logic controller (PLC) controls the actuators directly. A PLC executing a malicious program can cause significant property loss or even casualties. The number of attacks targeted at PLCs has increased noticeably over the last few years, exposing the vulnerability of the PLC and the importance of PLC protection. Unfortunately, PLCs cannot be protected by traditional intrusion detection systems or antivirus software. Thus, an effective method for PLC protection is yet to be designed. Motivated by these concerns, we propose a non-invasive power- based anomaly detection scheme for PLCs. The basic idea is to detect malicious software execution in a PLC through analyzing its power consumption, which is measured by inserting a shunt resistor in series with the CPU in a PLC while it is executing instructions. To analyze the power measurements, we extract a discriminative feature set from the power trace, and then train a long short-term memory (LSTM) neural network with the features of normal samples to predict the next time step of a normal sample. Finally, an abnormal sample is identified through comparing the predicted sample and the actual sample. The advantages of our method are that it requires no software modification on the original system and is able to detect unknown attacks effectively. The method is evaluated on a lab testbed, and for a trojan attack whose difference from the normal program is around 0.63%, the detection accuracy reaches 99.83%.展开更多
Programmable logic controllers(PLCs)play a critical role in many industrial control systems,yet face increasingly serious cyber threats.In this paper,we propose a novel PLC-compatible software-based defense mechanism,...Programmable logic controllers(PLCs)play a critical role in many industrial control systems,yet face increasingly serious cyber threats.In this paper,we propose a novel PLC-compatible software-based defense mechanism,called Heterogeneous Redundant Proactive Defense Framework(HRPDF).We propose a heterogeneous PLC architecture in HRPDF,including multiple heterogeneous,equivalent,and synchronous runtimes,which can thwart multiple types of attacks against PLC without the need of external devices.To ensure the availability of PLC,we also design an inter-process communication algorithm that minimizes the overhead of HRPDF.We implement a prototype system of HRPDF and test it in a real-world PLC and an OpenPLC-based device,respectively.The results show that HRPDF can defend against multiple types of attacks with 10.22%additional CPU and 5.56%additional memory overhead,and about 0.6 ms additional time overhead.展开更多
The control method of rubber tyre gantry (RTG) spreader in Qingdao Port Container Terminal is logic board control,which has many shortcomings such as expensive spare parts and high faults.This paper designs a new co...The control method of rubber tyre gantry (RTG) spreader in Qingdao Port Container Terminal is logic board control,which has many shortcomings such as expensive spare parts and high faults.This paper designs a new control system using programmable logic controller (PLC) centralized control to replace the original logic board control.The new system mainly contains complete ELME spreader control scheme design,hardware selection and PLC control program development.Its field application shows that the system has characteristics of high efficiency,low running cost,easy maintenance.展开更多
Servo pressure pulse testing equipment uses servo-hydraulic technology to build the model of hydraulic system. By improving measurement and control system, the equipment accomplishes signal acquisition, data processin...Servo pressure pulse testing equipment uses servo-hydraulic technology to build the model of hydraulic system. By improving measurement and control system, the equipment accomplishes signal acquisition, data processing and process con- trol. LabVIEW and programmable logic controller (PLC) are used to carry out the hardware configuration and software de- velopment. The system can communicate between LabVIEW and PLC by virtual instrumentation software architecture (VI- SA) and run automatically in accordance with setting commands. Therefore, accuracy and performance of the equipment are improved.展开更多
Deep-water jacket skirt pile grouting is a critical step in ocean platform construction. Because of the complexity of the skirt pile structure and grouting pipeline, the calculation of grouting pressure and the contro...Deep-water jacket skirt pile grouting is a critical step in ocean platform construction. Because of the complexity of the skirt pile structure and grouting pipeline, the calculation of grouting pressure and the control of output pressure are involved. Beginning with the jacket skirt pile grouting construction scheme, grouting pressure is estimated on the basis of engineering fluid mechanics theory and variable frequency control technique. Programmable logic controller is the center of grouting pressure control system, which accomplishes the flow control of cement buffer tank, water buffer tank, additive buffer tank, cement metering tank, water metering tank, additive metering tank, mixer and agitator. Based on PROFIBUS-DP network, the output pressure of the slurry pump is controlled by the inverter. This method has been applied successfully in JZ20-2 Nor. high spot jacket platform construction.展开更多
In the field of industrial process control,a fast-development platform for programmable logic controller(PLC)systems is designed in order to solve two main problems of rapid development of PLC control system and progr...In the field of industrial process control,a fast-development platform for programmable logic controller(PLC)systems is designed in order to solve two main problems of rapid development of PLC control system and programmability of controlling software.In the aspect of design,the platform is composed of hardware controlling and software monitoring and is taking industrial computer as the core.Under the Windows environment,the platform establishes the control instruction set,develops the configuration function and visual programming function of the monitoring software and it integrates PLC controller based on Visual Basic software.In order to achieve the function of data monitoring,it has realized the serial communication between computer and PLC by using RS-485 and RS-232 serial ports line communication.The platform designs the intelligent instruction scheduling strategy by studying the encoding and decoding rules of the communication instruction set.It proposes a method for rapidly developing control programs by adopting the expert control mode,which enables clients to develop and modify programs conveniently by importing instructions in a non-coded manner.After experimental testing,the platform is proved successful achieving both the rapid development of PLC control system and the rapid modification of monitoring software.展开更多
The Ethernet and field-bus communications are used in the machine control system (MCS) of HL-2A. The control net, with a programmable logic controller (PLC) as its logic control master, an engineering control mana...The Ethernet and field-bus communications are used in the machine control system (MCS) of HL-2A. The control net, with a programmable logic controller (PLC) as its logic control master, an engineering control management station as its net server, and a timing control PC connected to a number of terminals, flexibly and freely transfers information among the nodes on it with the Ethernet transmission techniques. The PLC masters the field bus, which carries small pieces of information between PLC and the field sites reliably and quickly. The control net is connected into the data net, where Internet access and sharing of more experimental data are enabled. The communication in the MCS guarantees the digitalization, automation and centralization. Also provided are a satisfactory degree of safety, reliability, stability, expandability and flexibility for maintenance.展开更多
The design of a control system for the material transport as used in gear-box flexible manufacturing system is presented in this paper. The scope of investigation covers material transport control, automatic vehicle, ...The design of a control system for the material transport as used in gear-box flexible manufacturing system is presented in this paper. The scope of investigation covers material transport control, automatic vehicle, material exchange station, multi-storeyed warehouse system, NC and CNC machines and host computer etc. The paper describes the transport control system and its design, and briefly describes the communication among devices and warehouse access principles.展开更多
基金supported by the Korea WESTERN POWER(KOWEPO)(2022-Commissioned Research-11,Development of Cyberattack Detection Technology for New and Renewable Energy Control System Using AI(Artificial Intelligence),50%)the Institute of Information&Communications Technology Planning&Evaluation(IITP)grant funded by the Korea government(MSIT)(No.2021-0-01806,Development of Security by Design and Security Management Technology in Smart Factory,40%)the Gachon University Research Fund of 2023(GCU-202110280001,10%).
文摘Cyberattacks targeting industrial control systems(ICS)are becoming more sophisticated and advanced than in the past.A programmable logic controller(PLC),a core component of ICS,controls and monitors sensors and actuators in the field.However,PLC has memory attack threats such as program injection and manipulation,which has long been a major target for attackers,and it is important to detect these attacks for ICS security.To detect PLC memory attacks,a security system is required to acquire and monitor PLC memory directly.In addition,the performance impact of the security system on the PLC makes it difficult to apply to the ICS.To address these challenges,this paper proposes a system to detect PLC memory attacks by continuously acquiring and monitoring PLC memory.The proposed system detects PLC memory attacks by acquiring the program blocks and block information directly from the same layer as the PLC and then comparing them in bytes with previous data.Experiments with Siemens S7-300 and S7-400 PLC were conducted to evaluate the PLC memory detection performance and performance impact on PLC.The experimental results demonstrate that the proposed system detects all malicious organization block(OB)injection and data block(DB)manipulation,and the increment of PLC cycle time,the impact on PLC performance,was less than 1 ms.The proposed system detects PLC memory attacks with a simpler detection method than earlier studies.Furthermore,the proposed system can be applied to ICS with a small performance impact on PLC.
文摘An intelligent fuzzy logic inference pipeline for the control of a dc-dc buck-boost converter was designed and built using a semi-custom VLSI chip. The fuzzy linguistics describing the switching topologies of the converter was mapped into a look-up table that was synthesized into a set of Boolean equations. A VLSI chip–a field programmable gate array (FPGA) was used to implement the Boolean equations. Features include the size of RAM chip independent of number of rules in the knowledge base, on-chip fuzzification and defuzzification, faster response with speeds over giga fuzzy logic inferences per sec (FLIPS), and an inexpensive VLSI chip. The key application areas are: 1) on-chip integrated controllers;and 2) on-chip co-integration for entire system of sensors, circuits, controllers, and detectors for building complete instrument systems.
基金the National High Technology Development of China(863-818-01-02)
文摘This paper mainly represents the realization of synchro controller based on the programmable logic devices FPGA by request of HF ground wave radar synchro controller under the instance of making the best of the virtues of FPGA. This design introduces the data communication between PC and synchro controller by PC Bus, which can carry the synchronous signals parameters to RAM of synchro controller, then according to the theory that the result of comparing counter value with signals parameters is the needed wave, we produce all waves HF ground wave radar needs, moreover all waves are produced time-sharing in order to save resources.
文摘Different programming languages can be used for discrete, abstract and process-oriented programming. Depending on the application, there exist additional requirements, which are not fulfilled by every programming language. Flexible programming and maintainability are especially important requirements for process engineers. In this paper, the programming languages Activity Diagram, State Chart Diagram and Sequential Function Chart are compared and evaluated with regard to these requirements. This evaluation is based on the principles of cognitive effectiveness and cognitive dimensions. The aim of this paper is to identify the programming language suited best for controlling sequential processes, e.g. thermomechanical or batch processes.
文摘Targeting at the high expense and inflexibility to realize VMEbus bridge controller by professional Integrated Circuit (IC), this paper presents a scheme of adopting CPLD/FPGA (Complicated Programmable Logic Device/Field Programmable Gate Array) to design bridge controller between VMEbus and local bus. SHARC DSP (Digital Signal Processor) bus is an example. It has functions of nearly entire master/slave interface of VMEbus, and can act as DMA (Direct Memory Access) controller and perform block transfer in DMA or master processor initiative way without length limit. External circuit of the design is very simple. In comparison with special ICs, it has high performance to price ratio and can be easily applied to local buses of other processors with quite a little modification.
基金Project supported by the National Basic Research Program(973)of China(No.2015AA050202)
文摘Industrial control systems (ICSs) are widely used in critical infrastructures, making them popular targets for attacks to cause catastrophic physical damage. As one of the most critical components in ICSs, the programmable logic controller (PLC) controls the actuators directly. A PLC executing a malicious program can cause significant property loss or even casualties. The number of attacks targeted at PLCs has increased noticeably over the last few years, exposing the vulnerability of the PLC and the importance of PLC protection. Unfortunately, PLCs cannot be protected by traditional intrusion detection systems or antivirus software. Thus, an effective method for PLC protection is yet to be designed. Motivated by these concerns, we propose a non-invasive power- based anomaly detection scheme for PLCs. The basic idea is to detect malicious software execution in a PLC through analyzing its power consumption, which is measured by inserting a shunt resistor in series with the CPU in a PLC while it is executing instructions. To analyze the power measurements, we extract a discriminative feature set from the power trace, and then train a long short-term memory (LSTM) neural network with the features of normal samples to predict the next time step of a normal sample. Finally, an abnormal sample is identified through comparing the predicted sample and the actual sample. The advantages of our method are that it requires no software modification on the original system and is able to detect unknown attacks effectively. The method is evaluated on a lab testbed, and for a trojan attack whose difference from the normal program is around 0.63%, the detection accuracy reaches 99.83%.
基金supported by the National Key Research and Development Program of China under Grant No.2020YFB2010900the Fundamental Research Funds for the Central Universities(Zhejiang University NGICS Platform)of China under Grant No.TC190A449.
文摘Programmable logic controllers(PLCs)play a critical role in many industrial control systems,yet face increasingly serious cyber threats.In this paper,we propose a novel PLC-compatible software-based defense mechanism,called Heterogeneous Redundant Proactive Defense Framework(HRPDF).We propose a heterogeneous PLC architecture in HRPDF,including multiple heterogeneous,equivalent,and synchronous runtimes,which can thwart multiple types of attacks against PLC without the need of external devices.To ensure the availability of PLC,we also design an inter-process communication algorithm that minimizes the overhead of HRPDF.We implement a prototype system of HRPDF and test it in a real-world PLC and an OpenPLC-based device,respectively.The results show that HRPDF can defend against multiple types of attacks with 10.22%additional CPU and 5.56%additional memory overhead,and about 0.6 ms additional time overhead.
基金Shandong University of Science and Technology Spring Buds Program(No.2010AZZ170)
文摘The control method of rubber tyre gantry (RTG) spreader in Qingdao Port Container Terminal is logic board control,which has many shortcomings such as expensive spare parts and high faults.This paper designs a new control system using programmable logic controller (PLC) centralized control to replace the original logic board control.The new system mainly contains complete ELME spreader control scheme design,hardware selection and PLC control program development.Its field application shows that the system has characteristics of high efficiency,low running cost,easy maintenance.
基金High Level Talented Person Funded Project of Hebei Province(No.C2013005003)Excellent Experts for Going Abroad Training Program of Hebei Province(No.10215601D)
文摘Servo pressure pulse testing equipment uses servo-hydraulic technology to build the model of hydraulic system. By improving measurement and control system, the equipment accomplishes signal acquisition, data processing and process con- trol. LabVIEW and programmable logic controller (PLC) are used to carry out the hardware configuration and software de- velopment. The system can communicate between LabVIEW and PLC by virtual instrumentation software architecture (VI- SA) and run automatically in accordance with setting commands. Therefore, accuracy and performance of the equipment are improved.
基金Supported by Key Research Project of China Offshore Oil Engineering Co,Ltd.
文摘Deep-water jacket skirt pile grouting is a critical step in ocean platform construction. Because of the complexity of the skirt pile structure and grouting pipeline, the calculation of grouting pressure and the control of output pressure are involved. Beginning with the jacket skirt pile grouting construction scheme, grouting pressure is estimated on the basis of engineering fluid mechanics theory and variable frequency control technique. Programmable logic controller is the center of grouting pressure control system, which accomplishes the flow control of cement buffer tank, water buffer tank, additive buffer tank, cement metering tank, water metering tank, additive metering tank, mixer and agitator. Based on PROFIBUS-DP network, the output pressure of the slurry pump is controlled by the inverter. This method has been applied successfully in JZ20-2 Nor. high spot jacket platform construction.
基金Supported by the International S&T Cooperation Program of China(No.2014DFR70280)Key Research and Development Project of Shanxi Province(No.201903D321012)+1 种基金Key Research and Development Project of Shanxi Province(No.201903D121023)Patent Promotion and Implementation Funding Research Project of Shanxi Province(No.20210521).
文摘In the field of industrial process control,a fast-development platform for programmable logic controller(PLC)systems is designed in order to solve two main problems of rapid development of PLC control system and programmability of controlling software.In the aspect of design,the platform is composed of hardware controlling and software monitoring and is taking industrial computer as the core.Under the Windows environment,the platform establishes the control instruction set,develops the configuration function and visual programming function of the monitoring software and it integrates PLC controller based on Visual Basic software.In order to achieve the function of data monitoring,it has realized the serial communication between computer and PLC by using RS-485 and RS-232 serial ports line communication.The platform designs the intelligent instruction scheduling strategy by studying the encoding and decoding rules of the communication instruction set.It proposes a method for rapidly developing control programs by adopting the expert control mode,which enables clients to develop and modify programs conveniently by importing instructions in a non-coded manner.After experimental testing,the platform is proved successful achieving both the rapid development of PLC control system and the rapid modification of monitoring software.
基金The project supported by National Natural Science Foundation of China (No. 10175022) and Sichuan Provincial Youth Foundation
文摘The Ethernet and field-bus communications are used in the machine control system (MCS) of HL-2A. The control net, with a programmable logic controller (PLC) as its logic control master, an engineering control management station as its net server, and a timing control PC connected to a number of terminals, flexibly and freely transfers information among the nodes on it with the Ethernet transmission techniques. The PLC masters the field bus, which carries small pieces of information between PLC and the field sites reliably and quickly. The control net is connected into the data net, where Internet access and sharing of more experimental data are enabled. The communication in the MCS guarantees the digitalization, automation and centralization. Also provided are a satisfactory degree of safety, reliability, stability, expandability and flexibility for maintenance.
文摘The design of a control system for the material transport as used in gear-box flexible manufacturing system is presented in this paper. The scope of investigation covers material transport control, automatic vehicle, material exchange station, multi-storeyed warehouse system, NC and CNC machines and host computer etc. The paper describes the transport control system and its design, and briefly describes the communication among devices and warehouse access principles.
