Design Considerations for Building Credible Security Testbeds:A Systematic Study of Industrial Control System Use Cases

Ani, Uchenna D and Watson, Jeremy M and Green, Benjamin and Craggs, Barnaby and Nurse, Jason (2019) Design Considerations for Building Credible Security Testbeds:A Systematic Study of Industrial Control System Use Cases. arXiv.

[img]
Text (1911.01471v1)
1911.01471v1.pdf

Download (580kB)

Abstract

This paper presents a mapping framework for design factors and implementation process for building credible Industrial Control Systems (ICS) security testbeds. The resilience of ICSs has become a critical concern to operators and governments following widely publicised cyber security events. The inability to apply conventional Information Technology security practice to ICSs further compounds challenges in adequately securing critical systems. To overcome these challenges, and do so without impacting live environments, testbeds for the exploration, development and evaluation of security controls are widely used. However, how a testbed is designed and its attributes, can directly impact not only its viability but also its credibility as a whole. Through a combined systematic and thematic analysis and mapping of ICS security testbed design attributes, this paper suggests that the expertise of human experimenters, design objectives, the implementation approach, architectural coverage, core characteristics, and evaluation methods; are considerations that can help establish or enhance confidence, trustworthiness and acceptance; thus, credibility of ICS security testbeds.

Item Type:
Journal Article
Journal or Publication Title:
arXiv
Additional Information:
17 pages (including Appendix), 2 Figures, 4 Tables, A Research output from the Analytical Lenses for Internet of Things Threats (ALIoTT) project
Subjects:
ID Code:
145199
Deposited By:
Deposited On:
20 Aug 2020 14:15
Refereed?:
No
Published?:
Published
Last Modified:
26 Sep 2020 06:34