Electronic Science and Technology ›› 2021, Vol. 34 ›› Issue (2): 33-37.doi: 10.16180/j.cnki.issn1007-7820.2021.02.006

Previous Articles     Next Articles

Research on Security Vulnerabilities and Control Flow Integrity of PLC in Industrial Control System

CHEN Dawei,XU Ruzhi   

  1. School of Control and Computer Engineering,North China Electric Power University,Beijing 102206,China
  • Received:2019-11-26 Online:2021-02-15 Published:2021-01-22
  • Supported by:
    Natural Science Foundation of Beijing(4182060)


PLC plays an important role in industrial control systems. However, the security vulnerability of PLC disclosed in recent years has increased year by year. Carrying out the research on defense technology of vulnerability for PLC is of great significance for improving the security of industrial control system. Based on the control-flow integrity, this study proposes a defense mechanism using control-flow integrity for PLC to protect PLC from vulnerability hijacking. This defense mechanism protects the PLC from being hijacked by attackers through checking the control transfer instruction in the PLC program and inserting check instruction based on pile technology to ensure that the program is executed according to the original control-flow graph. In order to effectively guarantee the real-time performance of the PLC, a cyclic shadow stack is introduced. The proposed scheme effectively protects the PLC from vulnerability hijacking, and the performance overhead of the defense mechanism is only about 3.6% on average.

Key words: PLC, vulnerabilities, control-flow hijacking, control-flow integrity, industrial control system, security of industrial control system

CLC Number: 

  • TP309