STOP-IT - Detail page

Home
FT
SP Wizard
- Risknought
Lists
- Measures
- Events
- Tools
- ST Procedures
Search
Login

Measure: CameraSurveillance

Description

Surveillance of sensitive sites, buildings or assets with camera systems. Thus intruders are detected by the staff that is surveilling the monitors. The aim is to be able to react quickly to occuring intrusions or intrusion attempts and to be able to identify the attacker after an occuring attack.

Event source types

External attacker
Internal attacker
Human fault

Event types

Destruction
Manipulation
Pollution

Risk reduction mechanism

Consequences

Threat Types

Physical
Cyber-Physical

Action characteristics

Proactive & Reactive

Measure types

Control System
Consequence Mitigation

event_ measures

Event Consequences

Quantity
Quality
Financial
Reputation

Asset types

Drinking Water Tanks
Pressure Boosting Station
Water Abstraction Points
Water Treatment Plants

Events

Basic Event 250 - Malware alters PLC statements that control pump
Gate 219 - Staff controlled hydraulic processes run without WTP data
Basic Event 261 - Undetected SCADA hijacking software takes control of PBS operation
Basic Event 63 - Undetected SCADA hijacking software takes control of WTP operation
Basic Event 180 - Incorrect execution or failure of software acquired from an external party crashes reservoir control system
Gate 142 - Chemical overdosing due to loss of WTP control
Basic Event 198 - External person breaks in to well control area and takes over SCADA
Basic Event 68 - External person physically destroys WTP dosing system
Basic Event 219 - DoS attack to WTP process system PLC
Basic Event 45 - Internal person adds substance to WTP disinfectant storage tank
Gate 118 - Disinfectant composition altered
Basic Event 213 - Internal person silently takes over WTP SCADA control
Basic Event 225 - External person destroys WTP power transformer
Basic Event 52 - Restricted area authorization procedure failure
Gate 143 - External contamination of WTP
Basic Event 159 - Incorrect execution or failure of software acquired from an external party crashes WTP control system
Basic Event 69 - Internal person physically destroys WTP dosing system
Basic Event 200 - Incorrect execution or failure of software acquired from an external party crashes abstraction well control system
Basic Event 220 - External person physically destroys WTP process system
Basic Event 80 - External person induces chemical or radioactive substance to treated water tank
Gate 116 - Chemical overdosing due to misled WTP operation
Basic Event 65 - DoS attack to dosing system PLC
Basic Event 279 - Malware corrupts prediction model database
Gate 117 - Staff or PLC controlled disinfection processes run on altered WTP data
Basic Event 77 - External person adds substance to WTP coagulant storage tank
Gate 186 - Quality verification process runs on altered WTP data
Basic Event 162 - Internal person adds substance to WTP stored additives
Basic Event 255 - Man-in-the-Middle attack manipulates local power transformer signals
Basic Event 260 - Internal person silently takes over PBS SCADA control
Basic Event 62 - Internal person silently takes over SCADA control
Basic Event 179 - Man-in-the-Middle attack manipulates reservoir control signals
Basic Event 218 - Accidental errors by authorized user while maintaining information system
Gate 177 - Staff or PLC controlled processes run on altered WTP data
Gate 119 - Insufficient disinfection process controlled by intruder
Basic Event 217 - Failure to regulate the temperature, humidity and air quality in environments where information systems are located
Basic Event 44 - External person adds substance to WTP disinfectant storage tank
Basic Event 232 - External person physically interrupts WDN tank outflow
Basic Event 73 - High biological load from improperly maintained WTP storage tank
Basic Event 53 - Biological, chemical or radioactive substance injected to water tank
Basic Event 171 - Human error in operating/using surface water management system
Gate 189 - Additives composition altered
Gate 113 - Lower efficiency of WTP disinfectant undetected
Basic Event 64 - Man-in-the-Middle attack manipulates WTP control signals
Basic Event 199 - Internal person silently takes over abstraction well SCADA control
Gate 122 - THM by-product formation in WTP
Basic Event 233 - External person damages WDN tank
Gate 220 - Staff or PLC controlled hydraulic processes run on altered WTP data
Basic Event 257 - Incorrect execution or failure of software acquired from an external party crashes PBS control system
Gate 193 - Surface water management system functions on altered data
Gate 114 - Staff operate disinfection process without WTP data
Basic Event 214 - Undetected SCADA hijacking software takes control of WTP operation
Basic Event 76 - External person physically damages WTP coagulation system
Basic Event 53 - Biological, chemical or radioactive substance injected to water tank
Basic Event 221 - Internal person physically destroys WTP process system
Basic Event 177 - External person breaks in to reservoir control area taking over SCADA
Gate 185 - Undetected contamination of WTP chemical solutions
Basic Event 161 - External person adds substance to WTP stored additives
Basic Event 160 - Failure to regulate the temperature, humidity and air quality in environments where information systems are located
Basic Event 201 - Malware performs DoS attack on abstraction well PLCs
Basic Event 61 - External person breaks in to WTP and takes over SCADA undetected
Gate 179 - Dosing system destroyed
Gate 176 - Staff controlled processes run without WTP data
Basic Event 66 - No back-up alternative for WTP dosing system PLC
Basic Event 216 - Incorrect execution or failure of software acquired from an external party crashes WTP control system
Gate 239 - Mislead PLC controlled WDN tank refill process
Basic Event 240 - Upadate of OS causes false positive alarms from Event Detection System
Basic Event 259 - External person physically damages PBS PLC
Basic Event 72 - External person induces biological substances to treated water tank
Basic Event 178 - Internal person silently takes over reservoir SCADA control
Basic Event 81 - Additive and/or disinfectant overdose from WTP staff error
Basic Event 163 - External person attacks surface water system management party e.g. water board
Basic Event 39 - External person adds substance through monitoring well
Gate 111 - Insufficient disinfection due to loss of WTP control
Basic Event 41 - Disinfectant missdosage from WTP from operational staff error
Basic Event 276 - SQL injection to data used for demand prediction
Basic Event 202 - External person destroys abstraction wells
Basic Event 78 - Internal person adds substance to WTP coagulant storage tank
Gate 234 - Contamination of WDN tank
Gate 187 - Contamination of WTP chemical solutions

Specific Assets

Additives
Control Center
Control System
Dosing System
Drinking Water Tanks
Power Transformer
Pressure Boosting Station
Pump
Server
Water under treatment
Well

Measure ID

M03

Name

CameraSurveillance

Risk reduction mechanism

Consequences

Action characteristics

Proactive & Reactive

This project has received funding from the European Union's Horizon 2020 research and innovation programme under grant agreement No. 740610. The publication reflects only the authors' views and the European Union is not liable for any use that may be made of the information contained therein. All illustrations in the homepage are attributed to rudall30/Shutterstock.com.