High-Fidelity Cyber and Physical Simulation of Water Distribution Systems. I: Models and Data

Murillo, Andrés; Taormina, Riccardo; Tippenhauer, Nils Ole; Salaorni, Davide; Dijk, Robert van; Jonker, Luc; Vos, S.; Weyns, Maarten; Galelli, Stefano

doi:10.1061/jwrmd5.wreng-5853

Cited by 5 publications

(7 citation statements)

References 48 publications

Supporting

Mentioning

Contrasting

Order By: Relevance

“…Here, we have provided a detailed explanation of the modules used to launch events and attacks and illustrate how to configure experiments with device attacks, network attacks, or network events. Additional details about DHALSIM are provided in (Murillo et al 2022).…”

Section: Digital Hydraulic Simulatormentioning

confidence: 99%

“…The experiment configuration file defines the global options for a DHALSIM experiment; the EPANET input file is a "standard" EPANET .inp file; and the PLC configuration file indicates how many PLCs are present in the smart water network and which variable they handle. Additional information regarding these files can be found in (Murillo et al 2022) and in the website documentation: https://github.com /afmurillo/DHALSIM/blob/master/doc/configuration.rst. To launch network attacks or events, the following optional files must be provided:…”

Section: Framework For Launching Cyber-security Experimentsmentioning

confidence: 99%

“…For our analysis we use the case study of Anytown, which is adopted in Murillo et al (2022) to illustrate the key functionalities of DHALSIM and to study the value of network and process data under a broad range of normal operating conditions. Here, we complement that analysis by unveiling the information that the same type of data can provide for a system undergoing cyber-physical attacks.…”

Section: Case Studymentioning

confidence: 99%

“…In particular, we show that the availability of high-resolution cyber and physical data enables us to pinpoint the root cause of cyber-attacks and other observed anomalies. For our analysis, we leverage a dataset generated by digital hydraulic simulator (DHALSIM)-a numerical modelling platform built on a two-way interaction between EPANET and a network emulation tool (Murillo et al 2022)-whose functionalities are expanded here to include a framework for launching cyber-security experiments as well as automated scripts for processing the network traffic data. Our analysis is complemented by an introduction to the most common vulnerabilities affecting the industrial communication networks commonly adopted in automated water distribution systems.…”

Section: Introductionmentioning

confidence: 99%

“…As we shall see, it is necessary to understand the relationship between an industrial communication network and a physical system being controlled by an ICS. Readers can gain more in depth detail of ICS and industrial communication networks from the background section of the companion paper (Murillo et al 2022).…”

Section: Introductionmentioning

confidence: 99%

See 4 more Smart Citations

High-Fidelity Cyber and Physical Simulation of Water Distribution Systems. II: Enabling Cyber-Physical Attack Localization

Murillo

Taormina

Tippenhauer

et al. 2023

J. Water Resour. Plann. Manage.

Self Cite

View full text Add to dashboard Cite

A fundamental problem in the realm of cyber-physical security of smart water networks is attack detection, a key step towards designing adequate countermeasures. This task is typically carried out by algorithms that analyze time series of process data. However, the nature of the data available to develop these algorithms limits their capabilities: by relying on process data only, one cannot distinguish a cyber-attack from the failure of a system's component or identify the root cause of an attack. Here, we show that these limitations can be addressed through the joint analysis of process and network data-with the latter representing the information exchanged between the components constituting the Industrial Control System, such as sensors and Programmable Logic Controllers (PLCs). For this purpose, we utilize a dataset generated by digital hydraulic simulator (DHALSIM)-a numerical modelling platform built on a two-way interaction between EPANET version 2.2 and a network emulation tool-which is extended here to include a framework for launching cyber-physical attacks. This paper presents a dataset with realistic network information of a smart water network under cyber-physical attacks and presents an analysis of how that information can enable the development of better intrusion detection systems that can localize and identify attacks. Through this analysis, the dataset provided here, and the open-source availability of DHALSIM, our work paves the way to a novel class of analytics for actionable detection.

show abstract

Section: Digital Hydraulic Simulatormentioning

confidence: 99%

Section: Framework For Launching Cyber-security Experimentsmentioning

confidence: 99%

Section: Case Studymentioning

confidence: 99%

Section: Introductionmentioning

confidence: 99%

Section: Introductionmentioning

confidence: 99%

See 3 more Smart Citations