Slashdot Mirror

← Back to Stories (view on slashdot.org)

New York City Pushes Plan To Prevent Cyberattacks On Elevators, Boilers

Posted by timothy on from the what-about-egg-poachers-and-escalators? dept.

coondoggie writes "Imagine what would happen if an attacker broke into the network for the industrial control systems for New York City's elevators and boiler systems and decided to disrupt them, imperiling the lives of hundreds of thousands of residents relying on them. Think it could never happen? Think again. 'You could increase the speed of how elevators go up or down,' says Steve Ramirez, business analyst, analysis and communications in the Office of the CIO of the New York City Housing Authority, which provides public housing for low- to moderate-income families in the five boroughs of the city. And if attackers ever successfully penetrated the network-based industrial control systems for the boilers, they could raise the heat levels for municipal boilers, causing them to explode." Maybe Bruce Schneier could run a new movie-scenario contest about ways this could play out.

29 of 171 comments (clear)

  1. DUMB by Anonymous Coward · · Score: 5, Insightful

    These systems shouldn't be network accessible anyway.
    !!!

    1. Re:DUMB by spazdor · · Score: 5, Insightful

      And even if they are, why on earth would they have software-configurable speeds or pressures that can range outside of safe parameters? The safety limits should be hard-coded.

      --
      DRM: Terminator crops for your mind!
    2. Re:DUMB by crashumbc · · Score: 5, Informative

      They aren't the writer is a idiot. Boiler's have MULTIPLE safeties that will just them down locally.

      Not to mention mechanically pressure release devices, at worst they would vent boiler water onto the boiler room floor...

    3. Re:DUMB by solidraven · · Score: 2

      Hard-coded isn't enough. Critical safety operations should NEVER be given to software. Remember what happened with the Therac-25 machines?

    4. Re:DUMB by tqk · · Score: 4, Interesting

      They aren't the writer is a idiot. Boiler's have MULTIPLE safeties that will just [shut] them down locally.

      Not to mention [mechanical] pressure release devices; at worst they would vent boiler water onto the boiler room floor...

      We hope. Far too many geeks just assume what's drop dead obvious to them is drop dead obvious to users/regular mortals. You guys should know by now that's not true.

      Then, add in moronic management. !@#$ generally wants to happen if it can. See Murphy's Law.

      --
      "Tongue tied and twisted, just an Earth bound misfit ..." -- Pink Floyd.
    5. Re:DUMB by Darinbob · · Score: 3, Insightful

      I hope users/regular mortals are not installing boilers instead of professionals.

    6. Re:DUMB by RalphTheWonderLlama · · Score: 2

      Yeah! Go the Battlestar Galactica route and un-network all of this stuff!

      --
      simple, fast homepage with your links: http://www.ngumbi.com/
    7. Re:DUMB by tqk · · Score: 2

      In your programming world, you make shit up to comply with made up requirements, and get shitty software as a result.

      Holmes Inspection is a TV series premised on the fact that home buyers have hired a professional to vet their intended buy, and have been screwed regardless. I've never been a great fan of so-called vetted professionals[*]. "MCSE" == "Must Call Somebody Else" or "Minesweeper Consultant and Solitaire Expert". :-P

      And no, in my world, I study the problem to death then design a solution that's tested to death to make the problem go away forever.

      [*] There are Sun Certified engineers out there who can't list a directory's contents. I can go on and on with other examples of this phenomenon (not necessarily involving Sun) until I put you to sleep, honest.

      --
      "Tongue tied and twisted, just an Earth bound misfit ..." -- Pink Floyd.
    8. Re:DUMB by GPierce · · Score: 3, Funny

      I remember the description of the ideal factory security system. It consisted of a computer console, a dog and one human being.

      The reason for computer console was to run the factory.
      The reason for the human being was to feed the dog.
      The reason for the dog was to keep the human being away from the computer console.

      --

      When you are dancing with wolves, never limp
    9. Re:DUMB by BlueStrat · · Score: 2

      FTFY. The general public may be assumed to be idiots, but the aforementioned specialists should not.

      I hope you're right (about the latter). I've met far too many people in IT who barely made the grade as far as I was concerned. Hopefully, those trades do better on that score.

      Don't worry too much. There are always outliers in any field, but things like elevator experts, journeymen boiler makers, master electricians, pipe-fitters, etc are tightly regulated and enjoy a very high degree of general professionalism and competence, particularly regarding safety.

      I've been employed in a couple of these trades as well, and between the redundant safeties built into everything, the facility safety inspections, the strict testing, licensing, and the very serious amount of training and then years of apprenticeship before you're allowed to do much of anything that's not triple-checked behind you, not to mention that trades companies have an *extremely* dim view of being put on the hook for perhaps many lives and millions and millions in legal liability, there are relatively extremely few ways for things to go bad on-site. In fact, very few things ever do, relatively speaking.

      But, because all this training, testing, licensing, apprenticeships, etc make such highly-skilled workers very expensive, I'd bet labor cost is one of, if not the main, driving force behind why things that really shouldn't be networked to the internet are being pushed there by the "bottom-line" types.

      Why hire expensive tradesmen for every installation when you can have one set of guys run multiple sites remotely? Of course, most with experience in these trades can give you a list of reasons as long as your arm, but PHBs rarely listen to the "grunts" in the field. What self-respecting, Brook-Bros-suit-wearing upper-management-type is going to listen to some peons that have permanent grease-stains under their fingernails? They don't even have an MBA!!

      The designed-in fail-safes in equipment and systems will make up for a lot, but there still may be unforeseen ways to cause a disaster with things like boilers and elevators involved. Especially when many such boiler and elevator systems were designed back before any real automation, never mind control over the internet, was even a dream. Hard for an elevator system or boiler system designed in the '40s, '50s, or '60s to build in safeguards against a hostile off-site controller.

      So, many MBA/management types are tempted into thinking that even though putting all that infrastructure/mechanical control on the 'net might not be the safest idea, it sure saves money in skilled labor costs, though!

      Besides, nobody's made it a crime yet, right?

      I guess we'll have to wait for a disaster (or six) to happen first for that.

      Strat

      --
      Progressivism (aka US 'Liberalism'): Ideas so good they need a police/surveillance-state to enforce.
  2. Offline? by Nkwe · · Score: 3, Insightful

    Maybe these systems should be on isolated networks.

    1. Re:Offline? by cpu6502 · · Score: 3, Insightful

      They probably are. This guy is just trying to sell fear for personal gain (money or power). Ben Franklin was right when he said the greatest danger are those in power who are filled with avarice or ambition.

      --
      My AC stalker: " I personally agree with your posts most of the time, but that won't keep me from modding you troll"
  3. Does this guy even know anything about this? by h4rr4r · · Score: 5, Insightful

    Boilers have release valves for a reason. Even if you could turn the heat all the way up the safety release valves would let go. You would have to weld those shut to explode a boiler. If the "evil-doers" are welding those shut you have other problems

    1. Re:Does this guy even know anything about this? by sunderland56 · · Score: 2

      Elevators also have speed controls, and cannot go faster than a certain designed-in speed because of mechanical reasons, not CPU controlled ones.

      Besides, most elevators (and most boilers) in NYC predate the internet. On the elevators that are more modern, the average New Yorker would greatly appreciate it if you could speed them up somehow.....

    2. Re:Does this guy even know anything about this? by cyberchondriac · · Score: 4, Funny

      Elevators also have speed controls, and cannot go faster than a certain designed-in speed because of mechanical reasons, not CPU controlled ones.

      Aw crap, there goes my idea for a poor man's space elevator.

      --

      Look back up at my post, now look back down, you're on the Internet. Now look back up. I'm a signature.
    3. Re:Does this guy even know anything about this? by spikestabber · · Score: 2

      This "Accelerometer" is mechanical. If the elevator completely lost power and the hoist motor brakes for some reason failed to engage (rare as they're supposed to fail closed), the emergency brakes on the car itself would trigger.

    4. Re:Does this guy even know anything about this? by crashumbc · · Score: 2

      . And how many buildings actually have boilers? Don't most modern buildings use heat pumps? I don't know of any building that still uses steam, and those that do would be unlikely to have sophisticated networked controls.

      NO buildings of any size uses heat pumps, they are very inefficient...

      Pretty much every large building has a boiler or more likely several.

      as far as steam I'm not sure how many systems new systems are being installed but any older building that's been keep up has had its control systems modernized. Example the Empire State Building's system is completely computer controlled (its steam)

  4. hmmm by Anonymous Coward · · Score: 3, Insightful

    "business analyst, analysis and communications in the Office of the CIO of the New York City Housing Authority (NYCHA)"

    So a housing authority needs a full office for Information systems and in that office it needs a business analyst (because that is part of information systems)?

    Sound like a bureaucrat that needs to justify the job his dad got him.

  5. Re:Read only settings by h4rr4r · · Score: 4, Funny

    How else would the turbo button work?

  6. Movies eh? by decipher_saint · · Score: 2

    In a World where up isn't always the direction you're headed and going down will kill you, A hero will rise...

    TERRORVATOR

    *break*

    Ted Buttson wasn't exactly the best elevator repairman "Y'know normally the buttons don't do this" (empty elevator drops from sight, crashes). In fact you could say he was the worst elevator repairman "Why do they build these things with all these extra bolts?" (elevator doors fall in), but sometimes it doesn't matter who you are if you're on the right floor at the right time "H-hey! I think these guys wanna do something BAD to this elevator!". Coming this summer from the same studio that brought you predictable comedy before comes "TED: Going Down" (close up shot of actor making faces with sexy music playing)

    [NOT YET RATED]

    --
    crazy dynamite monkey
    1. Re:Movies eh? by decipher_saint · · Score: 2

      Ah, but this would be the American version, with dames, car chases, terrorists, plenty of one-liners and explosions!

      IN (unconvincing) 3D!!

      --
      crazy dynamite monkey
  7. Derp, meet Herp by girlintraining · · Score: 4, Insightful

    "Imagine what would happen if an attacker broke into the network for the industrial control systems for New York City's elevators and boiler systems."

    Some people would have to take the stairs and others would take cold showers. A truly terrifying prospect. Elevators and hot water are conveniences; People don't die from the lack of them.

    --
    #fuckbeta #iamslashdot #dicemustdie
    1. Re:Derp, meet Herp by PPH · · Score: 2

      Think of downing the boilers in the middle of a bad winter, timed to coincide with a snow storm to hamper emergency response.

      OK, I'm thinking of it. I'm thinking of it for a week long outage.

      Welcome to PSE service territory.

      --
      Have gnu, will travel.
  8. Re:So much hype over hackers by Dr_Barnowl · · Score: 4, Insightful

    Just try to get into any big bilding without a security guard on your ass.

    Get a boilerman's uniform. Wave your visitors pass. If the guard insists on accompanying you, look busy until he goes to pinch a loaf.

    Half the reason Kevin Mitnick was notorious was not because he was a stone cold hacker - he was a good social engineer.

  9. Re:So much hype over hackers by X0563511 · · Score: 2

    Kevin Mitnick might disagree. Replace curiosity with malice... the techniques still work.

    --
    For large sets, this will be our guide even unto death, for the LORD will work for each type of data it is applied to...
  10. Just jumping on the "Cyberwarfare" bandwagon by Dr_Barnowl · · Score: 2

    Cyberwarfare means money. As most of the preceding posters have identified, most of the perceived threat is total horseshit. But because computers are full of magic smoke and fairies, muggles presume that a computer hooked up to a machine is a terrible threat. Haven't you seen the famous historical documentary, "Terminator" ???

    It's just like the TSA - because there hasn't been a compumatronically induced apocalypse, we're doing a good job, right? Hell yeah, line up another raft of Cyberwarfare Funding Bills, and we need some more staff to hotswap the drives in our pr0n^W evidence storage RAID array.

  11. Re:So much hype over hackers by WankersRevenge · · Score: 2

    good point .. but my real concern ... how the hell did the expression 'pinch a loaf' get coined?

  12. Fear-mongering for fun & profit by quarkscat · · Score: 2

    Fear-mongering for fun & profit seems to be the new & improved USA business model, especially for governments at every level. Afraid of terrorists? Obviously, they are everywhere, and can strike at any time. Be afraid. Surrender all your rights & liberties, and (especially) your money to the government. The "war on terror" will save you, even from yourself. The DHS has spent over $1 Trillion fighting "terrorism" since its' founding. Is life without any risks whatsoever really living? And can one even prove that the benefit outweighs the cost, when success is only proven with a negative result? And the only positive results, aka real terrorism, for the past 25 years have been government promulgated?

    The "war on terror" is a black hole the USA throws money into, without actually making anyone safer. In fact, just the opposite is the case. Vastly increased sovereign debt threatens those very government programs & infrastructure that do help to keep us safe, healthy, and happy. Our infrastructure, like bridges, public health system, national power grid, water purification plants all suffer from competition with the "war on terror". OMG, man-made carbon dioxide is threatening us with global warming -- quick, let's ship all our industries overseas. OMG, there are religious fundamentalists half a world away that hate us for our freedoms -- quick, let's spend $4.5 Trillion in 10 years on perpetual warfare against these people. Surely they will not hate us any more if we drop money-bombs on them along with bloody expensive military ordinance, including their wedding parties and funerals. OMG, someone smuggled the equivalent of an M-80 firecracker in their pants onto a USA-bound plane -- quick, let's spend $250 Billion on terahertz-wave body scanners and place them everywhere, not just airports. Before we surrender more of our individual rights & liberties or more blood & treasure, let's get the answer to "Who benefits, and why?"

    The truth is, if you feel personally at risk of bodily harm due to acts of terrorism, go out and buy even 1 lottery ticket because the odds against you winning are only 1 in 175 Million, while an act of terrorism (a real act of terrorism not fabricated by government) is closer to 1 in 1,000 Million. Feeling "lucky" -- buy that lottery ticket. Ignore things like auto accidents with uninsured drunken drivers, or getting struck by lightening four weekends in a row when you go play golf.

    Industrial Control Systems have no business with internet access to operational processes, rather than merely an alarm or data monitoring channel, in any case.

  13. Re:Read only settings by denobug · · Score: 4, Insightful

    Perhaps compliance with new regulations? A service company could theoretically roll an update out accross a country or state without having to visit each elevator.

    No you do that ON-SITE. This is not web services or video games. You have someone there locally to confirm it is working in real life when making parameter changes like this.