Design and Implementation of Full-Scale Industrial Control System Test Bed for Assessing Cyber-Security Defenses

Robert E. Gillen, Laura Ann Anderson, Christopher Craig, Jordan Johnson, Adam Columbia, Rachel Anderson, Andrew Craig, Stephen L. Scott

Research output: Chapter in Book/Report/Conference proceedingConference contributionpeer-review

8 Scopus citations

Abstract

In response to the increasing awareness of the Ethernet-based threat surface of industrial control systems (ICS), both the research and commercial communities are responding with ICS-specific security solutions. Unfortunately, many of the properties of ICS environments that contribute to the extent of this threat surface (e.g. age of devices, inability or unwillingness to patch, criticality of the system) similarly prevent the proper testing and evaluation of these security solutions. Production environments are often too fragile to introduce unvetted technology and most organizations lack test environments that are sufficiently consistent with production to yield actionable results. Cost and space requirements prevent the creation of mirrored physical environments leading many to look towards simulation or virtualization. Examples in literature provide various approaches to building ICS test beds, though most of these suffer from a lack of realism due to contrived scenarios, synthetic data and other compromises. In this paper, we provide a design methodology for building highly realistic ICS test beds for validating cybersecurity defenses. We then apply that methodology to the design and building of a specific test bed and describe the results and experimental use cases.

Original languageEnglish
Title of host publicationProceedings - 21st IEEE International Symposium on a World of Wireless, Mobile and Multimedia Networks, WoWMoM 2020
PublisherInstitute of Electrical and Electronics Engineers Inc.
Pages341-346
Number of pages6
ISBN (Electronic)9781728173740
DOIs
StatePublished - Aug 2020
Event21st IEEE International Symposium on a World of Wireless, Mobile and Multimedia Networks, WoWMoM 2020 - Virtual, Cork, Ireland
Duration: Aug 31 2020Sep 3 2020

Publication series

NameProceedings - 21st IEEE International Symposium on a World of Wireless, Mobile and Multimedia Networks, WoWMoM 2020

Conference

Conference21st IEEE International Symposium on a World of Wireless, Mobile and Multimedia Networks, WoWMoM 2020
Country/TerritoryIreland
CityVirtual, Cork
Period08/31/2009/3/20

Funding

This material is based on research sponsored by the Laboratory Directed Research and Development Program of Oak Ridge National Laboratory, managed by UT-Battelle, LLC, for the U. S. Department of Energy. Additionally, this research used resources of the Oak Ridge Leadership Computing Facility, which is a DOE Office of Science User Facility supported under Contract DE-AC05-00OR22725. Thank you, D. Grant, J. Carter, M. Rice and reviewers whose support and comments helped to ensure this document was both accurate and intelligible. This material is based on research sponsored by the Laboratory Directed Research and Development Program of Oak Ridge National Laboratory, managed by UT-Battelle, LLC, for the U. S. Department of Energy. Additionally, this research used resources of the Oak Ridge Leadership Computing Facility, which is a DOE Office of Science User Facility supported under Contract DE-AC05-00OR22725. This manuscript has been co-authored by UT-Battelle, LLC under Contract No. DE-AC05-00OR22725 with the US DOE. The United States Government retains and the publisher, by accepting the article for publication, acknowledges that the United States Government retains a non-exclusive, paid-up, irrevocable, world-wide license to publish or reproduce the published form of this manuscript, or allow others to do so, for United States Government purposes. The DOE will provide public access to these results of federally sponsored research in accordance with the DOE Public Access Plan (http://energy.gov/downloads/doe-public-access-plan).

FundersFunder number
U. S. Department of Energy
U.S. Department of Energy
Office of ScienceDE-AC05-00OR22725
Oak Ridge National Laboratory
UT-Battelle

    Keywords

    • cyber security
    • industrial control systems
    • test beds

    Fingerprint

    Dive into the research topics of 'Design and Implementation of Full-Scale Industrial Control System Test Bed for Assessing Cyber-Security Defenses'. Together they form a unique fingerprint.

    Cite this