rootsoftrust

When nuclear plants were originally designed, they had to meet a number of strict health and safety criteria to protect the environment and the communities they serve. As with all plant types, electronics controlled a vast array of subsystems. Unlike most plants, a breakdown in a sub system such as the lowly HVAC (heating, ventilation and air-conditioning) can cause a national disaster. In a nuclear power plant the HVAC has a dual purpose; the maintenance of the environment of the main control room for personnel and more importantly the prevention of the build-up of explosive atmospheres in highly sensitive areas. It should be clear that hacking even the lowly HVAC system can have dire consequences.

The electronics controlling subsystems in a nuclear plant are usually interconnected through an I&C (instrumentation and control) system such as the Siemens Teleperm XS which was favoured by a number of energy providers. Internal (sub systems connected directly to the Teleperm) communicated using the Profibus field bus protocol whilst external systems used the Profinet protocol. Neither of these protocols use encryption and the contents of packets over the networks are visible in a tool such as Wireshark. There are also tools such as Ettercap which allow handcrafted communication packets to be created and potentially inserted into the data streams.