The Siemens digital plant will introduce urban infrastructure digitalization in Taiwan, and programmable logic controller (PLC) is an important device in modern industrial control systems (ICS), specifically for monitoring and data collection (SCADA) systems. It is convenient for the user to manage the remote device of the application. However, if the information security is not good, it may affect the normal operation of the PLC, which may cause significant damage. If it is slight, the function of the factory equipment may be broken. If it is serious, it will affect the serious People's normal life. Although there are many SCADA system safety documents mentioned, most of the existing industrial control system operations are concentrated on the communication between PLC and field devices. Therefore, this paper will propose the communication security analysis between PLC and SCADA system. In detail, the attack case discusses the internal security of the PLC, and proposes various defense methods and comparisons to protect the security of the SCADA system.