IT-related vulnerabilities in fuel distribution - a pilot study

This report presents the results of a pilot study performed by the Swedish Defence Research Institute by order of the Swedish Energy Agency. The aim of the study was to survey the IT-systems used in the distribution of fuel from the fuel depot to the petrol pump and to discuss what components and processes are vulnerable with respect to IT related threats. The pilot study resulted in a schematic model of the IT-systems supporting the fuel distribution. The model analyses the IT-solutions chosen by different actors in the distribution chain, the fuel depot, the carriers, the petrol stations and the main office, and the communication between these actors. The benefits and vulnerabilities are briefly discussed. The interviewees´of primarily IT-related risks and threats and the future development in the area are also presented. The conclusion from this pilot study is that the fuel distribution, due to the heterogeneous choice of systems are relatively high human presence, is not very vulnerable to IT-related threats. The most vulnerable part of the chain are the fuel depots. The predicted development with more automation and higher connectivity, between different systems can change this in the future.