A Survey on Industrial Control System Testbeds and Datasets for Security Research

Conti, Mauro; Donadel, Denis; Turrin, Federico

doi:10.48550/arxiv.2102.05631

Cited by 4 publications

(8 citation statements)

References 102 publications

(163 reference statements)

Supporting

Mentioning

Contrasting

Order By: Relevance

“…Modbus is the most commonly used communication protocol in ICS and BAS [9]. It lacks proper authentication and authorization mechanism.…”

Section: Related Workmentioning

confidence: 99%

“…These devices are connected by communication medium which can be serial lines, Ethernet links, cellular networks and various types of radio signals. In 2021, Conti M et al [9] provided a comprehensive survey of ICS. The also focused on architecture, employed devices, used protocols, testbeds and ICS datasets.…”

Section: Related Workmentioning

confidence: 99%

“…The also focused on architecture, employed devices, used protocols, testbeds and ICS datasets. They also categorized testbeds as Physical, Virtual, or Hybrid and they also discussed the current challenges of ICS [9].…”

Section: Related Workmentioning

confidence: 99%

See 2 more Smart Citations

Industrial Control and Building Automation System Penetrating Testing using Modbus TCP Testbed

Ali,

Akhtar,

Durad

2022

VFAST trans. softw. eng.

View full text Add to dashboard Cite

Industrial Control System (ICS) plays a vital role in industries as it controls industrial processes such as power plants, food production, transportation, water and gas distribution etc. Similarly Building Automation System (BAS) is utilized for control, energy efficiency and conservation of modern buildings. As both BAS and ICS systems are becoming increasingly interconnected with networking technologies and becoming a lucrative target for attacks thus pose a serious threat to the infrastructure they control. ICS and BAS networks have been using legacy protocols with implementation of ICT protocols and technologies to be connected with modern networks. Thus, they have lack of security implementation. This paper presented a test-bed for testing vulnerabilities in Modbus protocol on HVAC control system. Two MITM attack scenarios were discussed and performed to demonstrate the weakness in the Modbus TCP protocol. The proposed system was tested using EasyIO-FS-32 server class controller having Modbus RTU, TCP and BACnet MSTP, TCP.

show abstract

“…Modbus is the most commonly used communication protocol in ICS and BAS [9]. It lacks proper authentication and authorization mechanism.…”

Section: Related Workmentioning

confidence: 99%

Section: Related Workmentioning

confidence: 99%

See 1 more Smart Citation

Industrial Control and Building Automation System Penetrating Testing using Modbus TCP Testbed

Ali,

Akhtar,

Durad

2022

VFAST trans. softw. eng.

View full text Add to dashboard Cite

show abstract

“…However, depending on public datasets, in contrast to getting access to relevant use case-specific data from collaborators, introduces its own caveats. For instance, the number of available datasets for cybersecurity research of industrial systems is limited, and the available datasets are usually either not a perfect fit for the use case at hand or only contain poor documentation of the underlying setup [30]. The scarcity of datasets partially follows from the fact that the behavior of CPS is best captured by physical testbeds that are expensive to setup and maintain, and partially from the mindset that the generation of a high-quality dataset is not very rewarding for researchers and practitioners alike when weighing the required effort [30], [80].…”

Section: ) Bootstrappingmentioning

confidence: 99%

“…For instance, the number of available datasets for cybersecurity research of industrial systems is limited, and the available datasets are usually either not a perfect fit for the use case at hand or only contain poor documentation of the underlying setup [30]. The scarcity of datasets partially follows from the fact that the behavior of CPS is best captured by physical testbeds that are expensive to setup and maintain, and partially from the mindset that the generation of a high-quality dataset is not very rewarding for researchers and practitioners alike when weighing the required effort [30], [80]. Finally, scaled-down testbeds are also not necessarily representative of larger, real-world systems, which they intend to mimic, further limiting the credibility of these datasets [2].…”

Section: ) Bootstrappingmentioning

confidence: 99%

Collaboration is not Evil: A Systematic Look at Security Research for Industrial Use

Pennekamp¹,

Buchholz²,

Dahlmanns³

et al. 2020

Proceedings 2020 Learning From Authoritative Security Experiment Results Workshop

View full text Add to dashboard Cite

Following the recent Internet of Things-induced trends on digitization in general, industrial applications will further evolve as well. With a focus on the domains of manufacturing and production, the Internet of Production pursues the vision of a digitized, globally interconnected, yet secure environment by establishing a distributed knowledge base. Background. As part of our collaborative research of advancing the scope of industrial applications through cybersecurity and privacy, we identified a set of common challenges and pitfalls that surface in such applied interdisciplinary collaborations. Aim. Our goal with this paper is to support researchers in the emerging field of cybersecurity in industrial settings by formalizing our experiences as reference for other research efforts, in industry and academia alike. Method. Based on our experience, we derived a process cycle of performing such interdisciplinary research, from the initial idea to the eventual dissemination and paper writing. This presented methodology strives to successfully bootstrap further research and to encourage further work in this emerging area. Results. Apart from our newly proposed process cycle, we report on our experiences and conduct a case study applying this methodology, raising awareness for challenges in cybersecurity research for industrial applications. We further detail the interplay between our process cycle and the data lifecycle in applied research data management. Finally, we augment our discussion with an industrial as well as an academic view on this research area and highlight that both areas still have to overcome significant challenges to sustainably and securely advance industrial applications. Conclusions. With our proposed process cycle for interdisciplinary research in the intersection of cybersecurity and industrial application, we provide a foundation for further research. We look forward to promising research initiatives, projects, and directions that emerge based on our methodological work.

show abstract

Smart Substation Communications and Cybersecurity: A Comprehensive Survey

Gaspar

Cruz

Lam

et al. 2023

IEEE Commun. Surv. Tutorials

View full text Add to dashboard Cite

Electrical grids generate, transport, distribute and deliver electrical power to consumers through a complex Critical Infrastructure which progressively shifted from an air-gaped to a connected architecture. Specifically, Smart Substations are important parts of Smart Grids, providing switching, transforming, monitoring, metering and protection functions to offer a safe, efficient and reliable distribution of electrical power to consumers. The evolution of electrical power grids was closely followed by the digitization of all its parts and improvements in communication and computing infrastructures, leading to an evolution towards digital smart substations with improved connectivity. However, connected smart substations are exposed to cyber threats which can result in blackouts and faults which may propagate in a chain reaction and damage electrical appliances connected across the electrical grid. This work organizes and offers a comprehensive review of architectural, communications and cybersecurity standards for smart substations, complemented by a threat landscape analysis and the presentation of a Defense-in-Depth strategy blueprint. Furthermore, this work examines several defense mechanisms documented in the literature, existing datasets, testbeds and evaluation methodologies, identifying the most relevant open issues which may guide and inspire future research work.

show abstract

A Survey on Industrial Control System Testbeds and Datasets for Security Research

Cited by 4 publications

References 102 publications

Industrial Control and Building Automation System Penetrating Testing using Modbus TCP Testbed

Industrial Control and Building Automation System Penetrating Testing using Modbus TCP Testbed

Collaboration is not Evil: A Systematic Look at Security Research for Industrial Use

Smart Substation Communications and Cybersecurity: A Comprehensive Survey

Contact Info

Product

Resources

About