11:41 Reflections on safety at work | |
| Read the article Why I love Microsoft. Notes zombies left a comment and I wanted to write an article about the organization of secure infrastructure management. Not the enterprise, but directly to Productions. I want to warn you in advance that the topic of terrorism, this article has nothing to do. And the picture tells is not about that. The reality of our lives are such that the majority (around 100% more than half the world market DCS-systems according to Wikipedia, but in reality, and maybe more will be) advanced process control funtsikliruyut running on Microsoft . It's no secret that they are crammed with vulnerabilities. My nightmare is as follows: Declare unknown, shattering all the protection the virus that destroys all WINDOWS Single-moment. As a result, we obtain a complete shutdown of the enterprise, at least a day. If the automation done sensibly (so far all the contingencies were in a very even normal mode), then nothing will explode, but just happen correctly stops the process. During the day, "candle factory produces output by 1.5 million green notes. Cost of resources spent on stopping and starting - still the same. Example: something like this looks like an emergency stop. Resets the pressure of the products being in shop equipment and pipelines (natural gas, ammonia gas, synthesis gas) and burning them to flare. Then white smoke. This excess steam is discharged through that the same flare. After the reset, shop stopped completely. If you start at the same flare for a few days off natural gas at a rate of $ 200 per minute. Workshop on the plan is working nonstop 1-2 years. Then, overhaul, and again in battle. Please note, the question: Can a company make a complaint to Microsoft and to repay the loss? Direction, where the plant should go with the claims, written in the license agreement: 23. LIMITATION ON AND EXCLUSION OF LIABILITY FOR DAMAGES. Except for monetary compensation, which can provide the manufacturer or installer, you can not recover any other damages, including indirect, special, indirect or incidental damages, or damages for lost profits. This limitation applies to: any issues with software, services, content Web sites of third parties (including area code), as well as third party programs; claims for breach of contract, guarantee or condition, strict liability, negligence or other tort to the extent permitted by applicable law. This applies even if: repair, replacement software or a refund will not compensate for any losses or manufacturer, installer, or Microsoft knew or should have known of the possibility of such damages. Some states do not allow the exclusion or limitation of liability for incidental or consequential damages. In this case, the above limitation or exclusion may not apply to you. They also may not apply to you, if your country does not allow the exclusion or limitation of incidental, consequential or other damages. About the same as written in the licensing agreements of software that manages the technical process, although it has a bunch of certificates of safety and other blah blah blah. Provide the same security of such systems - a single headache. Neighborhood with an antivirus on one computer, they are experiencing an extremely painful. In my practice even has an example of process control systems, collapsed due to a bug in Microsoft Office. In this picture (please do not take advertising) it is shown that may be from a fancy control system. In practice, all this greatly reduces the overall system reliability, mainly due to disorderly relationship of users to computer security. To avoid the hassles we have to use all available methods of contraception:
In principle, the controllers are able to manage the system, but if the top management level is still passed out, and switched back to give up, will pull the cord and squeeze a glass to press the emergency stop. It is always realized in hardware, and acts directly on the lower level. Button to select more specific examples:When a product is out of the tap is dripping properly, Scanwords last for an hour as filled, and the head will not come soon, there is an overwhelming desire something to entertain yourself darling. A handy a computer used for such a primitive activities such as maintaining a boring process technology. That's where the search begins crawling restrictions imposed by caring administrators. Using different combinations of keys and mouse-pointing are sometimes quite unexpected ways to start an unnecessary software. And then there are flash drives, and live-cd. Reliable protection against this manipulation is only locked in a cabinet system unit. On a case of suffering, regardless of the obstacles still get to the coveted scarves, waiting for him nice surprise. The printer prints a sheet of A4, to read: Oh, I forgot to specify the printer to print it will be located in the office of the head shop. If someone has a question: "Why such a leaky system?", The answer is simple - what to buy, in order and work. Prevent physical access to equipment is very important:servers and controllers are protected from subsidence voltage as follows: redundant servers, redundant controllers, the duplication of power from the two inlets, 2 UPS to 30 kW. But it happened 4 "small" miscalculation:
Special thanks to want to pass vnedritelyam that provided each user on the network a small portion of Win32.Neshta. Usually means that a computer control system is pretty empty, and it may be safely plugged into any network. What is the moral of this fable? Yes, actually, it's not. More precisely there: Do not skimp on too much at first glance, the equipment.
I, for one, has made every effort to ensure the reliability of control systems. For example, when the network rioted viruses, I learned about it only when the admins to prevent cut off Internet gateway. UPD: explain what is meant by the PCS. This set of equipment controllers + visualization system with whistles and stuff. Controller - this is such a piece of iron, stable job that can prevent just a blast. SCADA - supervisory control and data collection. May fail from any inadvertent sneeze. Here are the statistics for the last 2 years: Average uptime windows machines - 1 year. During the repair components free from dust. Server running Windows Server 2003 uptime 2 years. No case of unauthorized access. To come to this took time, reflection and some cones. Until the pile had to get rid of the crutches and props left by its predecessor. Now, about the OS. I do not care under what operating system will spin SCADA, if only to stable. RTOS such as QNX - a few more. Their main niche - embedded systems. Here are options for systems that are used in chemical manufacturing: Experion PKS - windows Experion TPS - windows Emerson Delta-V - windows Foxboro - unix or windows an emulator (which is much more) Siemens SIMATIC - windows ABB System 800xA - windows YOKOGAWA CENTUM - Windows IFix - windows Intouch - windows If possible, I want to have a controller and a system of one manufacturer with a handy tool. I do not Hai RTOS, Linux and Unix. Simply the world's major players in the market of automation mainly promote distributed control systems, working under windows. | |
|
| |
| Total comments: 0 | |