Home
FT
STOP-IT Quantity FT
STOP-IT Water Quality FT
Import
List
SP Wizard
Risknought
Lists
Measures
Events
Tools
ST Procedures
Search
Login
Measure: SecurityOfWirelessNetworks
Description
Defitinition of security measures for the implementation and use of wireless network connections. Thus attacks on wireless connections shall be prevented. The aim is to ensure the integrity, autenticity, confidentiality and operability of the wireless network and all connected devices.
Comments
Before the implementation of wireless networks it must be checked if any other wireless networks exist in the same area with similar configurations that could disturb the implemented network. Generally accepted standards for authentification and encryption have to be used. All information transferred via wireless networks has to be encrypted with up-to-date encryption technologies. Access points must be located at positions where no unauthorized personnel can reach them. Access points may not be operated in default configurations. A security barrier should exist between wireless and wired connections. Regular checks for security wholes should be ensured.
Event source types
External attacker
Internal attacker
Human fault
Event type
Manipulation
Risk reduction mechanism
Frequency/Likelihood
Threat Type
Cyber
Action characteristics
Proactive
Measure types
Cyber Barriers
Action and Crisis Management Plans and Training
event_ measures
Event-Measure: 98173
Event-Measure: 98253
Event-Measure: 98566
Event-Measure: 98680
Event-Measure: 98787
Event-Measure: 98892
Event-Measure: 99003
Event-Measure: 99226
Event-Measure: 99322
Event-Measure: 99442
Event-Measure: 99538
Event-Measure: 99857
Event-Measure: 100049
Event-Measure: 100226
Event-Measure: 100331
Event-Measure: 100438
Event-Measure: 100448
Event-Measure: 100502
Event-Measure: 100560
Event-Measure: 100620
Event-Measure: 100730
Event-Measure: 100773
Event-Measure: 101647
Event-Measure: 101699
Event-Measure: 101960
Event-Measure: 102002
Event-Measure: 102146
Event-Measure: 102151
Event-Measure: 102247
Event-Measure: 102448
Event-Measure: 102685
Event-Measure: 102716
Event-Measure: 102821
Event-Measure: 103062
Event-Measure: 103674
Event-Measure: 103703
Event-Measure: 104051
Event Consequences
Quantity
Quality
Financial
Asset types
Drinking Water Network
Drinking Water Tanks
Pressure Boosting Station
Water Abstraction Points
Water Treatment Plants
Events
Basic Event 215 - Man-in-the-Middle attack manipulates WTP control signals
Gate 239 - Mislead PLC controlled WDN tank refill process
Basic Event 236 - Man-in-the-Middle attack manipulates WDN tank level sensor signals
Basic Event 237 - Malware alters PLC statements that control WDN tank refill
Basic Event 275 - Malware alters WDN control statements
Gate 220 - Staff or PLC controlled hydraulic processes run on altered WTP data
Basic Event 156 - Man-in-the-Middle attack manipulates abstraction point quality sensors
Gate 111 - Insufficient disinfection due to loss of WTP control
Basic Event 276 - SQL injection to data used for demand prediction
Basic Event 277 - Malware tampers network topology characteristics on prediction models (e.g. tank volume curve)
Basic Event 157 - Man-in-the-Middle attack manipulates WDN quality sensor readings
Basic Event 219 - DoS attack to WTP process system PLC
Basic Event 152 - Man-in-the-Middle attack manipulates quality sensor signals
Basic Event 264 - Malware alters PLC statements that control valve
Basic Event 265 - Man-in-the-Middle attack manipulates WDN valve sensor signals
Basic Event 64 - Man-in-the-Middle attack manipulates WTP control signals
Gate 260 - WDN control system manipulated
Basic Event 195 - External person manipulates data transmission system of wells
Basic Event 267 - Man-in-the-Middle attack manipulates WDN valve control signals
Basic Event 196 - Man-in-the-Middle attack manipulates well sensor signal
Basic Event 211 - External attacker manipulates WTP transmission devices
Gate 177 - Staff or PLC controlled processes run on altered WTP data
Basic Event 201 - Malware performs DoS attack on abstraction well PLCs
Basic Event 50 - Man-in-the-Middle attack manipulates WTP sensor signal
Gate 186 - Quality verification process runs on altered WTP data
Basic Event 227 - Fake news about contamination in WTP using manipulated water company public communication
Basic Event 169 - Man-in-the-Middle attack manipulates surface water system sensor signal
Basic Event 240 - Upadate of OS causes false positive alarms from Event Detection System
Basic Event 51 - Internal cyber manipulation of WTP sensor signal
Basic Event 189 - Man-in-the-Middle attack manipulates groundwater quality sensor signal
Basic Event 210 - Man-in-the-Middle attack manipulates WTP sensor signal
Basic Event 170 - External attacker manipulates surface water system transmission devices
Basic Event 252 - Man-in-the-Middle attack manipulates WDN PBS sensor signals
Basic Event 261 - Undetected SCADA hijacking software takes control of PBS operation
Gate 193 - Surface water management system functions on altered data
Basic Event 250 - Malware alters PLC statements that control pump
Basic Event 65 - DoS attack to dosing system PLC
Specific Assets
Control System
Sensor
Server
Transferred Information
Transmission Devices
Measure ID
M59
Name
SecurityOfWirelessNetworks
Risk reduction mechanism
Frequency/Likelihood
Action characteristics
Proactive