Logs Integrity and Backup Using Blockchain

Honeywell has engaged iTrust in an R&D project that utilises blockchain technology to create a platform to ensure data in operational technology (OT) systems are tamper proof. The motivation for this project arises from the following problem statements:

In the event of a cyber-attack, if the central log repository is down, responders are unable to trace the actions resulting in delayed investigations
In the event of an insider attack, actions performed can be erased or altered and hence forensic investigation becomes more difficult.

This project will record important transactions in an OT system on the blockchain. Doing so helps create a nonrepudiation audit trail, which is especially important when operators issue commands for tracing and validating during a forensic investigation. Information such as command issue, time, operator name, source IP, destination IP and status of command could be hashed and stored in the blockchain. The blockchain’s immutable property ensures that such information cannot easily be tampered with unknowingly.