An independent Pen test of HydroCord, FDB’s edge computing system for data capture and processing on the edge (edge computing)has recently been performed with top results.
The HydroCord edge computing system is designed with two main criteria:
- Adaptable data capture and processing. To make sure that HydroCord can meet demands and solve challenges, now and in the future.
- Guaranteed one-way data traffic for data capture in “safe zone” (OT). We would not be able to do the first point without doing the second point for critical infrastructure.
To achieve this the HydroCord architecture emphasizes:
- Only necessary functionality for critical data capture on hardware in «safe zone» (upstream diode). Critical data capture can be done by protocol communication with different levels of the process control system, copy existing signals/sensors, or add new sensors to adapt to the customer’s needs.
- Edge computing shall mainly be done on the hardware in the “less safe zone” (downstream diode). Data processing, analyses, temporary storage to mitigate data holes, and more. It is also possible to “non-critical" data capture from other power plant systems.
- All results from edge computing and captured data that the customer wants to improve decision support are sent to their data platform.
Architecture HydroCord Edge Processing
Objective for HydroCord Pentest:
- Verify one-way data transport and that a compromised receiver (the hardware in the “less-safe zone”) cannot communicate back.
Contents in HydroCord Pentest:
- Assume breach-scenario
- Focus on logical/data security, not physical sabotage.
- Realistic methodology for attack:
- Port scanning
- Data transport analysis
- Attempt replay and return of data transport
- Analysis of the heartbeat mechanism.
Result: «In short: Even with full control of the receiver, we did not find any technical mechanisms that are in breach with the one-way principle. The data diode does exactly what it is supposed to – and nothing else.”
