Internationally, especially in recent times, there has been an increase in the number of hacker attacks of the security structures of industrial control systems. Due to the consequences of such attacks, large attention needs to be devoted to information security. Successful attacks of this type can have serious consequences, they can affect people’s lives, cause adverse environmental impacts and lead to substantial financial losses.
This has caused rapid modernization of the architecture and business operations concepts at the Djerdap 2 HPP. System modernization has brought new quality into the generation supervision and control process. However, on the other hand, the use of Internet Protocols (IP) reduced information security levels. Assessment of information security risks indicated the lack of protection in terms of cyber-attacks.
This paper presents a solution of an attack detection and prevention system based on a firewall, IPS, IDS, VPN, while maintaining the existing traffic volumes between the monitoring and control system. Instead of a simple detection of malicious traffic, IPS focuses on prevention. It is able to recognize irregularities and identify them in real time, reset the connection towards the source of such traffic and block it until further notice. The system also has the ability to recognize CRC errors and correct them.
Djerdap 2 HPP has raised its security to a higher level, which should enable safe and secure operation of this hydroelectric power plant, transmits Serbia-energy.eu