On Practical Threat Scenario Testing in an Electric Power ICS Testbed

Proceedings of the 4th ACM Workshop on Cyber-Physical System Security Pub Date : 2018-05-22 DOI:10.1145/3198458.3198461

Ahnaf Siddiqi, Nils Ole Tippenhauer, D. Mashima, Binbin Chen

{"title":"On Practical Threat Scenario Testing in an Electric Power ICS Testbed","authors":"Ahnaf Siddiqi, Nils Ole Tippenhauer, D. Mashima, Binbin Chen","doi":"10.1145/3198458.3198461","DOIUrl":null,"url":null,"abstract":"Industrial control system networks in real world usually require a complex composition of many different devices, protocols, and services. Unfortunately, such practical setups are rarely documented publicly in sufficient technical detail to allow third parties to use the system as reference for their research. As a result, security researchers often have to work with abstract and simplified system assumptions, which might not translate well to practice. In this work, we provide a comprehensive overview of the network services provided by industrial devices found in the EPIC (Electric Power and Intelligent Control) system at SUTD. We provide a detailed network topology of the different network segments, enumerate hosts, models, protocols, and services provided. We argue that such a detailed system description can serve as an enabler for more practical security research. In particular, we discuss how the reported information can be used for emulating a diverse set of important threat scenarios in the smart grid domain. In addition, the provided details allow other researchers to build more detailed models or simulations.","PeriodicalId":296635,"journal":{"name":"Proceedings of the 4th ACM Workshop on Cyber-Physical System Security","volume":"1 1","pages":"0"},"PeriodicalIF":0.0000,"publicationDate":"2018-05-22","publicationTypes":"Journal Article","fieldsOfStudy":null,"isOpenAccess":false,"openAccessPdf":"","citationCount":"23","resultStr":null,"platform":"Semanticscholar","paperid":null,"PeriodicalName":"Proceedings of the 4th ACM Workshop on Cyber-Physical System Security","FirstCategoryId":"1085","ListUrlMain":"https://doi.org/10.1145/3198458.3198461","RegionNum":0,"RegionCategory":null,"ArticlePicture":[],"TitleCN":null,"AbstractTextCN":null,"PMCID":null,"EPubDate":"","PubModel":"","JCR":"","JCRName":"","Score":null,"Total":0}

引用次数: 23

Abstract

Industrial control system networks in real world usually require a complex composition of many different devices, protocols, and services. Unfortunately, such practical setups are rarely documented publicly in sufficient technical detail to allow third parties to use the system as reference for their research. As a result, security researchers often have to work with abstract and simplified system assumptions, which might not translate well to practice. In this work, we provide a comprehensive overview of the network services provided by industrial devices found in the EPIC (Electric Power and Intelligent Control) system at SUTD. We provide a detailed network topology of the different network segments, enumerate hosts, models, protocols, and services provided. We argue that such a detailed system description can serve as an enabler for more practical security research. In particular, we discuss how the reported information can be used for emulating a diverse set of important threat scenarios in the smart grid domain. In addition, the provided details allow other researchers to build more detailed models or simulations.

查看原文

微信好友朋友圈 QQ好友复制链接

本刊更多论文

电力ICS试验台实际威胁场景测试研究

现实世界中的工业控制系统网络通常需要许多不同设备、协议和服务的复杂组合。不幸的是，这样的实际设置很少公开记录足够的技术细节，以允许第三方使用该系统作为他们研究的参考。因此，安全研究人员经常不得不使用抽象和简化的系统假设，这可能无法很好地转化为实践。在这项工作中，我们全面概述了SUTD EPIC(电力和智能控制)系统中工业设备提供的网络服务。我们提供了不同网段的详细网络拓扑，列举了所提供的主机、模型、协议和服务。我们认为，这种详细的系统描述可以作为更实际的安全研究的推动者。特别地，我们讨论了如何将报告的信息用于模拟智能电网领域中的各种重要威胁场景。此外，提供的细节允许其他研究人员建立更详细的模型或模拟。

本文章由计算机程序翻译，如有差异，请以英文原文为准。

求助全文

约1分钟内获得全文去求助

来源期刊

Proceedings of the 4th ACM Workshop on Cyber-Physical System Security

自引率

0.00%

发文量