STOP-IT - Detail page

Home
FT
SP Wizard
- Risknought
Lists
- Measures
- Events
- Tools
- ST Procedures
Search
Login

Measure: RestrictedAccesToITSytem

Description

The company must to restrict the network control actions and information accesibility to particular actors inside the company using a particular protocol acces (double factor). A security level of accessibility should be defined according to the person or group in charge of specific tasks in the company.

Event source types

External attacker
Internal attacker
Human fault
Natural phenomena
External supplier
Interdependent CI

Event types

Destruction
Interruption
Manipulation
Pollution

Risk reduction mechanism

Frequency/Likelihood

Threat Types

Cyber
Physical
Cyber-Physical

Action characteristics

Proactive

Measure types

Cyber Barriers
Control System
Consequence Mitigation
Action and Crisis Management Plans and Training

event_ measures

Event Consequences

Quantity
Quality
Financial
Reputation

Asset types

Catchment Area
Drinking Water Network
Drinking Water Tanks
Pressure Boosting Station
Raw Water Bodies
Water Abstraction Points
Water Treatment Plants

Events

Basic Event 159 - Incorrect execution or failure of software acquired from an external party crashes WTP control system
Basic Event 221 - Internal person physically destroys WTP process system
Basic Event 69 - Internal person physically destroys WTP dosing system
Basic Event 196 - Man-in-the-Middle attack manipulates well sensor signal
Gate 114 - Staff operate disinfection process without WTP data
Gate 177 - Staff or PLC controlled processes run on altered WTP data
Gate 186 - Quality verification process runs on altered WTP data
Basic Event 46 - Internal person jams WTP sensor signal transmission
Gate 243 - Insufficient power supply
Basic Event 51 - Internal cyber manipulation of WTP sensor signal
Basic Event 53 - Biological, chemical or radioactive substance injected to water tank
Basic Event 156 - Man-in-the-Middle attack manipulates abstraction point quality sensors
Basic Event 149 - Biological, chemical or radioactive substance injected through pipe
Basic Event 37 - External person injects substance at sub-surface of monitoring site
Basic Event 82 - Organic matter present in consumers drinking water pipes
Gate 237 - Outflow valve of WDN tank closed
Basic Event 154 - External attacker destroyes absraction point quality sensors
Basic Event 29 - Sewer line overflow from blockage
Basic Event 70 - Natural phenomena alter reagent dosing system
Basic Event 77 - External person adds substance to WTP coagulant storage tank
Basic Event 258 - Malware DoS to local PBS PLC
Gate 111 - Insufficient disinfection due to loss of WTP control
Basic Event 71 - Contaminated floodwater mixed with treated water in WTP
Basic Event 269 - External person physically destroys WDN pipes
Gate 189 - Additives composition altered
Gate 96 - Contamination from farming activities
Basic Event 150 - No sensor or insufficient type of quality sensor in the tank
Basic Event 279 - Malware corrupts prediction model database
Basic Event 155 - External person physicaly manipulates abstraction point quality sensor readings
Basic Event 61 - External person breaks in to WTP and takes over SCADA undetected
Basic Event 44 - External person adds substance to WTP disinfectant storage tank
Basic Event 81 - Additive and/or disinfectant overdose from WTP staff error
Basic Event 60 - Flood control measures failure near monitoring site
Basic Event 48 - External person physically manipulates WTP sensor readings
Basic Event 32 - External person physically damages sewer line
Basic Event 66 - No back-up alternative for WTP dosing system PLC
Basic Event 36 - Seepage of Interdependent Industry CI waste to groundwater catchment
Basic Event 260 - Internal person silently takes over PBS SCADA control
Basic Event 263 - DoS attack on WDN valve
Gate 226 - Undetected WTP power transformer failure
Basic Event 73 - High biological load from improperly maintained WTP storage tank
Basic Event 218 - Accidental errors by authorized user while maintaining information system
Basic Event 161 - External person adds substance to WTP stored additives
Gate 182 - Seepage of contaminated floodwater through monitoring wells
Basic Event 251 - External person in situ manipulates PBS transmission devices
Basic Event 27 - Serious spill from inderedependent Industry CI accident
Basic Event 274 - Ransomeware denies access to the WDN control system
Basic Event 237 - Malware alters PLC statements that control WDN tank refill
Basic Event 152 - Man-in-the-Middle attack manipulates quality sensor signals
Basic Event 281 - Incorrect execution or failure of software acquired from an external party crashes WDN control system
Basic Event 63 - Undetected SCADA hijacking software takes control of WTP operation
Gate 259 - Insufficient power supply
Gate 234 - Contamination of WDN tank
Basic Event 43 - External person jams WTP sensor signal transmission
Basic Event 27 - Serious spill from inderedependent Industry CI accident
Basic Event 36 - Seepage of Interdependent Industry CI waste to groundwater catchment
Basic Event 68 - External person physically destroys WTP dosing system
Gate 220 - Staff or PLC controlled hydraulic processes run on altered WTP data
Basic Event 187 - External person physically manipulates groundwater quality sensor readings
Basic Event 262 - External person physically destroys valve
Basic Event 39 - External person adds substance through monitoring well
Basic Event 265 - Man-in-the-Middle attack manipulates WDN valve sensor signals
Basic Event 53 - Biological, chemical or radioactive substance injected to water tank
Basic Event 272 - WDN control center destroyed by intentional flood
Basic Event 208 - External attacker blocks WDN sensor signals to reach WTP
Basic Event 257 - Incorrect execution or failure of software acquired from an external party crashes PBS control system
Basic Event 240 - Upadate of OS causes false positive alarms from Event Detection System
Basic Event 276 - SQL injection to data used for demand prediction
Basic Event 239 - Subcontractor physically disconnects local PLC
Basic Event 167 - External person physically manipulates surface water system sensor readings
Basic Event 227 - Fake news about contamination in WTP using manipulated water company public communication
Basic Event 241 - No alternative power supply available
Basic Event 178 - Internal person silently takes over reservoir SCADA control
Basic Event 193 - External person jams data transmission of wells
Basic Event 163 - External person attacks surface water system management party e.g. water board
Basic Event 169 - Man-in-the-Middle attack manipulates surface water system sensor signal
Basic Event 39 - External person adds substance through monitoring well
Basic Event 189 - Man-in-the-Middle attack manipulates groundwater quality sensor signal
Gate 95 - Surface water contamination
Basic Event 267 - Man-in-the-Middle attack manipulates WDN valve control signals
Basic Event 152 - Man-in-the-Middle attack manipulates quality sensor signals
Basic Event 224 - External person destroys data transmission system of WTP power transformers
Basic Event 250 - Malware alters PLC statements that control pump
Basic Event 278 - Ransomware wipes out WDN control system files
Basic Event 245 - DoS attack on WDN pump
Basic Event 243 - External power supply provider failure
Basic Event 177 - External person breaks in to reservoir control area taking over SCADA
Basic Event 205 - External person physically destroys WTP sensors
Basic Event 180 - Incorrect execution or failure of software acquired from an external party crashes reservoir control system
Basic Event 37 - External person injects substance at sub-surface of monitoring site
Basic Event 164 - External person physically destroys surface water system sensors
Basic Event 198 - External person breaks in to well control area and takes over SCADA
Basic Event 214 - Undetected SCADA hijacking software takes control of WTP operation
Gate 146 - Free chlorine residual in WDN
Basic Event 190 - External person physically destroys observation well sensors
Gate 225 - Inability to perform WTP process due to enegy supply failure
Basic Event 219 - DoS attack to WTP process system PLC
Basic Event 235 - External person in situ manipulates WDN tank level sensor
Gate 178 - Dosing system disabled
Gate 122 - THM by-product formation in WTP
Basic Event 253 - External person in situ destroys PBS sensors
Gate 182 - Seepage of contaminated floodwater through monitoring wells
Basic Event 54 - Biological, chemical or radioactive substance pumped through hydrant
Basic Event 166 - External person jams surface water system sensor signal transmission
Basic Event 200 - Incorrect execution or failure of software acquired from an external party crashes abstraction well control system
Basic Event 216 - Incorrect execution or failure of software acquired from an external party crashes WTP control system
Basic Event 186 - Quality sensor transmission wires of observation wells manipulated
Basic Event 220 - External person physically destroys WTP process system
Basic Event 195 - External person manipulates data transmission system of wells
Gate 118 - Disinfectant composition altered
Gate 179 - Dosing system destroyed
Gate 176 - Staff controlled processes run without WTP data
Gate 185 - Undetected contamination of WTP chemical solutions
Gate 97 - Industrial activities and waste disposal failure
Basic Event 50 - Man-in-the-Middle attack manipulates WTP sensor signal
Basic Event 52 - Restricted area authorization procedure failure
Basic Event 56 - Wrong connection of drinking water pipes with non-potable water pipes
Basic Event 34 - Nutrient pollution of groundwater catchment
Basic Event 148 - PRESSURE DIFFICIENCY CONDITIONS
Gate 236 - Outflow of WDN tank is interrupted
Basic Event 160 - Failure to regulate the temperature, humidity and air quality in environments where information systems are located
Basic Event 30 - Sewer line accidental break
Basic Event 222 - A valve is opened and floods equipment
Basic Event 76 - External person physically damages WTP coagulation system
Gate 117 - Staff or PLC controlled disinfection processes run on altered WTP data
Gate 187 - Contamination of WTP chemical solutions
Basic Event 47 - Internal person physically destroys WTP sensors
Basic Event 153 - External attacker manipulates WTP transmission devices
Basic Event 157 - Man-in-the-Middle attack manipulates WDN quality sensor readings
Basic Event 57 - Contamination source present around pipe
Basic Event 41 - Disinfectant missdosage from WTP from operational staff error
Basic Event 75 - Chlorination disinfection process in WTP
Gate 239 - Mislead PLC controlled WDN tank refill process
Basic Event 14 - Heavy rain
Basic Event 158 - External attacker blocks WDN sensor reading to reach WTP
Basic Event 31 - Combined sewer line overflow from flooding
Basic Event 65 - DoS attack to dosing system PLC
Basic Event 78 - Internal person adds substance to WTP coagulant storage tank
Basic Event 259 - External person physically damages PBS PLC
Gate 119 - Insufficient disinfection process controlled by intruder
Basic Event 72 - External person induces biological substances to treated water tank
Basic Event 210 - Man-in-the-Middle attack manipulates WTP sensor signal
Basic Event 80 - External person induces chemical or radioactive substance to treated water tank
Basic Event 270 - Control center destroyed by accidental fire
Basic Event 26 - Serious spill from Interdependent Industry CI from cyber-physical attack
Basic Event 151 - External person physicaly manipulates tank quality sensor readings
Basic Event 280 - External person physically destroys WDN servers
Basic Event 62 - Internal person silently takes over SCADA control
Gate 258 - WDN control center power supply failure
Basic Event 45 - Internal person adds substance to WTP disinfectant storage tank
Basic Event 42 - External person physically destroys WTP sensors
Basic Event 26 - Serious spill from Interdependent Industry CI from cyber-physical attack
Basic Event 67 - Natural phenomena destroy dosing system
Gate 219 - Staff controlled hydraulic processes run without WTP data
Basic Event 33 - Pesticide seepage to groundwater catchment
Basic Event 261 - Undetected SCADA hijacking software takes control of PBS operation
Basic Event 38 - External person adds substance at the topsoil of monitoring site
Basic Event 264 - Malware alters PLC statements that control valve
Basic Event 52 - Restricted area authorization procedure failure
Basic Event 79 - Contaminated air from Industry reaches WTP and seeps into treated water
Basic Event 271 - WDN Control center destroyed by accidental flood
Basic Event 162 - Internal person adds substance to WTP stored additives
Basic Event 207 - External person destroys WTP transmission wires
Basic Event 256 - External person jams PBS communications
Basic Event 28 - Illegal disposal practices from interdependent Industry CI
Basic Event 275 - Malware alters WDN control statements
Basic Event 238 - External person in situ manipulates WDN tank transmission system
Basic Event 282 - Failure to regulate the temperature, humidity and air quality in environments where information systems are located
Basic Event 64 - Man-in-the-Middle attack manipulates WTP control signals
Gate 260 - WDN control system manipulated
Basic Event 192 - External person physically destroys data transmission wires of wells
Basic Event 28 - Illegal disposal practices from interdependent Industry CI
Basic Event 33 - Pesticide seepage to groundwater catchment
Basic Event 202 - External person destroys abstraction wells
Basic Event 188 - Internal person physically manipulates groundwater quality sensor readings
Basic Event 35 - Infiltration of contaminated floodwater to groundwater catchment
Basic Event 266 - External person jams WDN valve communications
Gate 184 - Suspended exploitation of groundwater from authorities
Basic Event 273 - External person attacks WDN control room
Basic Event 255 - Man-in-the-Middle attack manipulates local power transformer signals
Basic Event 211 - External attacker manipulates WTP transmission devices
Basic Event 232 - External person physically interrupts WDN tank outflow
Basic Event 277 - Malware tampers network topology characteristics on prediction models (e.g. tank volume curve)
Basic Event 244 - External person physically destroys pumps
Basic Event 168 - External person physically manipulates surface water system sensor readings
Basic Event 209 - External person physically manipulates WTP sensor readings
Basic Event 242 - External person destroys WDN power transformer
Basic Event 179 - Man-in-the-Middle attack manipulates reservoir control signals
Basic Event 34 - Nutrient pollution of groundwater catchment
Basic Event 171 - Human error in operating/using surface water management system
Basic Event 197 - External person physically manipulates well sensor signal
Basic Event 170 - External attacker manipulates surface water system transmission devices
Basic Event 213 - Internal person silently takes over WTP SCADA control
Gate 193 - Surface water management system functions on altered data
Basic Event 35 - Infiltration of contaminated floodwater to groundwater catchment
Basic Event 203 - Mine drainage
Gate 97 - Industrial activities and waste disposal failure
Basic Event 217 - Failure to regulate the temperature, humidity and air quality in environments where information systems are located
Gate 142 - Chemical overdosing due to loss of WTP control
Basic Event 151 - External person physicaly manipulates tank quality sensor readings
Basic Event 225 - External person destroys WTP power transformer
Gate 96 - Contamination from farming activities
Basic Event 233 - External person damages WDN tank
Gate 123 - Contamination at WDN water tank
Basic Event 252 - Man-in-the-Middle attack manipulates WDN PBS sensor signals
Basic Event 206 - External person jams WTP sensor signal transmission
Basic Event 183 - Raw water pump energy supply failure
Basic Event 38 - External person adds substance at the topsoil of monitoring site
Basic Event 165 - External person jams surface water system sensor signal transmission
Basic Event 199 - Internal person silently takes over abstraction well SCADA control
Basic Event 215 - Man-in-the-Middle attack manipulates WTP control signals
Basic Event 191 - External person physically destroys data transmission system of wells
Basic Event 194 - External person manipulates transmission wires of wells
Gate 113 - Lower efficiency of WTP disinfectant undetected
Basic Event 236 - Man-in-the-Middle attack manipulates WDN tank level sensor signals
Gate 116 - Chemical overdosing due to misled WTP operation
Gate 143 - External contamination of WTP
Basic Event 254 - External person physically destroys PBS data transmission wires
Basic Event 49 - Internal person physically manipulates WTP sensor readings
Basic Event 55 - Biological, chemical or radioactive substance pumped through tap
Basic Event 201 - Malware performs DoS attack on abstraction well PLCs

Specific Assets

Additives
Control Center
Control System
Dosing System
Drinking Water Pipes
Drinking Water Tanks
Drinking Water Taps
Fire Hydrants
Groundwater
Media Channels
Power Transformer
Pressure Boosting Station
Pump
Sensor
Server
Spring Water
Surface Water
Transferred Information
Transmission Devices
Valve
Water under treatment
Well

Measure ID

M46

Name

RestrictedAccesToITSytem

Risk reduction mechanism

Frequency/Likelihood

Action characteristics

Proactive

This project has received funding from the European Union's Horizon 2020 research and innovation programme under grant agreement No. 740610. The publication reflects only the authors' views and the European Union is not liable for any use that may be made of the information contained therein. All illustrations in the homepage are attributed to rudall30/Shutterstock.com.