Home > Research > Publications & Outputs > Testbed diversity as a fundamental principle fo...

Electronic data

Links

View graph of relations

Testbed diversity as a fundamental principle for effective ICS security research

Research output: Contribution to conference - Without ISBN/ISSN Conference paper

Published
Publication date6/04/2016
<mark>Original language</mark>English
EventSERECIN: International Workshop on Security and Resilience of Cyber-Physical Infrastructures - Royal Holloway, Egham, United Kingdom
Duration: 6/04/20166/04/2016
https://sites.google.com/site/serecin2016/home

Workshop

WorkshopSERECIN
CountryUnited Kingdom
CityEgham
Period6/04/166/04/16
Internet address

Abstract

The implementation of diversity in testbeds is essential to understanding and improving the security and resilience of Industrial Control Systems (ICS). Employing a wide spec- trum of equipment, diverse networks, and business processes, as deployed in real-life infrastructures, is particularly diffi- cult in experimental conditions. However, this level of di- versity is key from a security perspective, as attackers can exploit system particularities and process intricacies to their advantage. This paper presents an ICS testbed with specific focus on infrastructure diversity, and end-to-end business process replication. These qualities are illustrated through a case study mapping data flow/processing, user interactions, and two example attack scenarios.