Testbed diversity as a fundamental principle for effective ICS security research

Green, Benjamin and Frey, Sylvain Andre Francis and Rashid, Awais and Hutchison, David (2016) Testbed diversity as a fundamental principle for effective ICS security research. In: SERECIN, 2016-04-06 - 2016-04-06, Royal Holloway.

[thumbnail of New Submitted Version]
Preview
PDF (New Submitted Version)
New_Submitted_Version.pdf - Published Version
Available under License None.

Download (583kB)

Abstract

The implementation of diversity in testbeds is essential to understanding and improving the security and resilience of Industrial Control Systems (ICS). Employing a wide spec- trum of equipment, diverse networks, and business processes, as deployed in real-life infrastructures, is particularly diffi- cult in experimental conditions. However, this level of di- versity is key from a security perspective, as attackers can exploit system particularities and process intricacies to their advantage. This paper presents an ICS testbed with specific focus on infrastructure diversity, and end-to-end business process replication. These qualities are illustrated through a case study mapping data flow/processing, user interactions, and two example attack scenarios.

Item Type:
Contribution to Conference (Paper)
Journal or Publication Title:
SERECIN : International Workshop on Security and Resilience of Cyber-Physical Infrastructures
ID Code:
79044
Deposited By:
Deposited On:
12 Apr 2016 13:26
Refereed?:
Yes
Published?:
Published
Last Modified:
15 Dec 2024 01:15