ICS security testbed with delay attack case study

Korkmaz, Emrah; Dolgikh, Andrey; Davis, Matthew; Skormin, Victor A.

doi:10.1109/milcom.2016.7795340

Cited by 15 publications

(4 citation statements)

References 20 publications

Supporting

Mentioning

Contrasting

Order By: Relevance

“…To this end, most industrial instruments are remote controllable. The most used instrumentation bus is the GPIB (IEEE 488), RS-232 and USB bus for the most modern devices [16].…”

Section: Test Methods Categorizationmentioning

confidence: 99%

Testing Cyber-Physical Production System: Test Methods Categorization and dataset

Oudina

Derdour

Bouhamed

2022

2022 4th International Conference on Pattern Analysis and Intelligent Systems (PAIS)

View full text Add to dashboard Cite

Developing High-confidence Cyber-Physical Production System (CPPS) is essential to ensure system efficacy and safety. Engineering requirements for CPPS is quite tricky because of system heterogeneity. Moreover, system bugs and malfunctions may occur, requiring a test to ensure the robustness of CPPSs. There are several kinds of CPPS test Methods in research. This work aims to categorize test methods of cyber-physical production systems in research. We follow a Systematic Literature Review (SLR) method to review existing research. We synthesize a dataset of 220 papers published from 2006 until 2021 seeking to survey and give structured research in the area of the CPPS test. We categorized CPPS test methods by presenting traditional methods of CPPS tests, such as formal techniques and simulation, in addition to the most used methods as testbed and containerization. We also presented used tools for testing CPPSs, and the objectives of testing CPPS.

show abstract

“…To this end, most industrial instruments are remote controllable. The most used instrumentation bus is the GPIB (IEEE 488), RS-232 and USB bus for the most modern devices [16].…”

Section: Test Methods Categorizationmentioning

confidence: 99%

Testing Cyber-Physical Production System: Test Methods Categorization and dataset

Oudina

Derdour

Bouhamed

2022

2022 4th International Conference on Pattern Analysis and Intelligent Systems (PAIS)

View full text Add to dashboard Cite

show abstract

“…These attacks regard different categories: 1) attacks on networks (i.e., MitM, DNS poisoning); 2) network congestions and delay (i.e., DoS); 3) attacks on controllers, sensors, and drivers (i.e., malicious software injection and firmware modification); and 4) attacks on HMI and programmable stations (malware injection). In another work [140], Korkmaz et al presented a similar testbed in which the vulnerability to time delay attacks has been evaluated. Results show the feasibility of such attacks, which can stop the power generation Fig.…”

Section: Physical Testbedmentioning

confidence: 99%

A Survey on Industrial Control System Testbeds and Datasets for Security Research

Conti,

Donadel,

Turrin

2021

Preprint

View full text Add to dashboard Cite

The increasing digitization and interconnection of legacy Industrial Control Systems (ICSs) open new vulnerability surfaces, exposing such systems to malicious attackers. Furthermore, since ICSs are often employed in critical infrastructures (e.g., nuclear plants) and manufacturing companies (e.g., chemical industries), attacks can lead to devastating physical damages. In dealing with this security requirement, the research community focuses on developing new security mechanisms such as Intrusion Detection Systems (IDSs), facilitated by leveraging modern machine learning techniques. However, these algorithms require a testing platform and a considerable amount of data to be trained and tested accurately. To satisfy this prerequisite, Academia, Industry, and Government are increasingly proposing testbed (i.e., scaled-down versions of ICSs or simulations) to test the performances of the IDSs. Furthermore, to enable researchers to cross-validate security systems (e.g., security-bydesign concepts or anomaly detectors), several datasets have been collected from testbeds and shared with the community.In this paper, we provide a deep and comprehensive overview of ICSs, presenting the architecture design, the employed devices, and the security protocols implemented. We then collect, compare, and describe testbeds and datasets in the literature, highlighting key challenges and design guidelines to keep in mind in the design phases. Furthermore, we enrich our work by reporting the best performing IDS algorithms tested on every dataset to create a baseline in state of the art for this field. Finally, driven by knowledge accumulated during this survey's development, we report advice and good practices on the development, the choice, and the utilization of testbeds, datasets, and IDSs.

show abstract

“…Also, this testbed is used to assess the impact of cyber threats against physical infrastructures and provides a repeatable assessment of the effect of cyber attacks [18,86]. In the same vein, an CP-SG testbed that creates an environment for testing the impact of various time delays cyber-attacks on SCADA systems was developed at the University of Binghamton [105]. The testbed has been used for various research projects to study the physical impact of such attacks on the ICS system [106,107].…”

mentioning

confidence: 99%

“…In the same vein, an CP-SG testbed that creates an environment for testing the impact of various time delays cyber-attacks on SCADA systems was developed at the University of Binghamton [105]. The testbed has been used for various research projects to study the physical impact of such attacks on the ICS system [106,107].…”

mentioning

confidence: 99%

A Comprehensive Survey on Cyber-Physical Smart Grid Testbed Architectures: Requirements and Challenges

et al. 2021

View full text Add to dashboard Cite

The integration of improved control techniques with advanced information technologies enables the rapid development of smart grids. The necessity of having an efficient, reliable, and flexible communication infrastructure is achieved by enabling real-time data exchange between numerous intelligent and traditional electrical grid elements. The performance and efficiency of the power grid are enhanced with the incorporation of communication networks, intelligent automation, advanced sensors, and information technologies. Although smart grid technologies bring about valuable economic, social, and environmental benefits, testing the combination of heterogeneous and co-existing Cyber-Physical-Smart Grids (CP-SGs) with conventional technologies presents many challenges. The examination for both hardware and software components of the Smart Grid (SG) system is essential prior to the deployment in real-time systems. This can take place by developing a prototype to mimic the real operational circumstances with adequate configurations and precision. Therefore, it is essential to summarize state-of-the-art technologies of industrial control system testbeds and evaluate new technologies and vulnerabilities with the motivation of stimulating discoveries and designs. In this paper, a comprehensive review of the advancement of CP-SGs with their corresponding testbeds including diverse testing paradigms has been performed. In particular, we broadly discuss CP-SG testbed architectures along with the associated functions and main vulnerabilities. The testbed requirements, constraints, and applications are also discussed. Finally, the trends and future research directions are highlighted and specified.

show abstract

ICS security testbed with delay attack case study

Cited by 15 publications

References 20 publications

Testing Cyber-Physical Production System: Test Methods Categorization and dataset

Testing Cyber-Physical Production System: Test Methods Categorization and dataset

A Survey on Industrial Control System Testbeds and Datasets for Security Research

A Comprehensive Survey on Cyber-Physical Smart Grid Testbed Architectures: Requirements and Challenges

Contact Info

Product

Resources

About