disadvantage to operators and their customers. They could even take control of a large number of devices simultaneously in order to destabilise the power grid, causing blackouts.
Unfortunately, this is no longer just a remote possibility as the energy sector has now become a primary target for cyberattacks. What’ s more, there has been a notable change in the use of cyberattacks to cause physical consequence [ 1 ]. This was seen evidenced by incidents like the disruption of power distribution in Ukraine in 2015, 2016 and 2022. The number of reported attacks in recent years is also continuing to increase, especially in the building automation and energy sectors [ 2 ] – which had the potential to result in injuries or even loss of life [ 3 ]. The manufacturing sector is not immune either, as evidenced by the 2014 German steel plant attack, which caused the improper shut down of a blast furnace and extremely costly damage.
IoT security vulnerabilities present significant issues that could affect the safety and reliability of the systems where the devices are operating. It is vital to clearly identify vulnerabilities in IoT systems
starting from the design stage, rather than having to retrofit. In order to make full use of the technology and mitigate the associated risks, we must understand novel potential security and safety risks. It is then essential to define novel strategies to make our systems resilient. A holistic approach must be taken, which takes into account all components of the IoT system, from the design through to the operation.
Cyber security is no longer just a concern for computer scientists. Engineers and field experts have a vital role to play too. As our world becomes ever more interconnected, a systems perspective is required for ensuring security, safety and resilience. This is essential to protect the future of connected automation.
[ 1 ] US CISA 2020 report
[ 2 ] Kaspersky, Threat landscape for the ICS engineering and integration sector, 2021
[ 3 ] 2020( CS)² AI- KPMG Control Systems Cyber Security Report.
AUTOMATION, CONTROL & ENGINEERING 59