skip to main content
OSTI.GOV title logo U.S. Department of Energy
Office of Scientific and Technical Information

Title: Design and Implementation of Full-Scale Industrial Control System Test Bed for Assessing Cyber-Security Defenses

Conference ·
ORCiD logo [1]; ORCiD logo [1]; ORCiD logo [1];  [1];  [1];  [2];  [3];  [4]
  1. ORNL
  2. University of Texas at San Antonio (UTSA)
  3. Massachusetts Institute of Technology (MIT)
  4. Tennessee Technological University (TTU)
+ Show Author Affiliations

In response to the increasing awareness of the Ethernet-based threat surface of industrial control systems (ICS), both the research and commercial communities are responding with ICS-specific security solutions. Unfortunately, many of the properties of ICS environments that contribute to the extent of this threat surface (e.g. age of devices, inability or unwillingness to patch, criticality of the system) similarly prevent the proper testing and evaluation of these security solutions. Production environments are often too fragile to introduce unvetted technology and most organizations lack test environments that are sufficiently consistent with production to yield actionable results. Cost and space requirements prevent the creation of mirrored physical environments leading many to look towards simulation or virtualization. Examples in literature provide various approaches to building ICS test beds, though most of these suffer from a lack of realism due to contrived scenarios, synthetic data and other compromises. In this paper, we provide a design methodology for building highly realistic ICS test beds for validating cybersecurity defenses. We then apply that methodology to the design and building of a specific test bed and describe the results and experimental use cases.

Research Organization:
Oak Ridge National Laboratory (ORNL), Oak Ridge, TN (United States)
Sponsoring Organization:
USDOE
DOE Contract Number:
AC05-00OR22725
OSTI ID:
1684697
Resource Relation:
Conference: 6th IEEE International workshop on Communication Computing and Networking in Cyber Physical Systems - Cork, , Ireland - 6/15/2020 8:00:00 AM-6/18/2020 8:00:00 AM
Country of Publication:
United States
Language:
English

Similar Records

The CYBER security – Competency Health and Maturity Progression (CYBER-CHAMP) model: Extending the National Initiative for Cybersecurity Education (NICE) Framework Across Organizational Security
Journal Article · Mon Nov 16 00:00:00 EST 2020 · Cybersecurity Skills Journal: Practice and Research · OSTI ID:1684697
+1 more
Cyber risk assessment and investment optimization using game theory and ML-based anomaly detection and mitigation for wide-area control in smart grids
Other · Mon Aug 01 00:00:00 EDT 2022 · OSTI ID:1684697
Autonomous System Inference, Trojan, and Adversarial Reprogramming Attack and Defense (Final)
Technical Report · Fri Sep 01 00:00:00 EDT 2023 · OSTI ID:1684697

Related Subjects