an open framework for deploying experimental scada
play

An Open Framework for Deploying Experimental SCADA Testbed Networks - PowerPoint PPT Presentation

Mar 30, 2024 •112 likes •268 views

An Open Framework for Deploying Experimental SCADA Testbed Networks Peter Maynard, Kieran McLaughlin, and Sakir Sezer August, 2018 Queens University Belfast CSIT 1 / 14 Outline Background High-Level Overview of Framework

  1. An Open Framework for Deploying Experimental SCADA Testbed Networks Peter Maynard, Kieran McLaughlin, and Sakir Sezer August, 2018 Queen’s University Belfast « CSIT 1 / 14

  2. Outline ▶ Background ▶ High-Level Overview of Framework ▶ Tooling ▶ Ongoing/Future Work 2 / 14

  3. About Myself ▶ Research Assistant, at Queen’s University Belfast, CSIT ▶ PhD 4 years ICS Network-IDS ▶ Research Engineer, at Southampton University, UK ▶ 5G Networks ▶ Computer Science BSc, at Aberystwyth University, UK 3 / 14

  4. Introduction ▶ Framework for creating virtualised SCADA networks ▶ Developed for packet generation for NIDS ▶ Open Source (GPLv3) 4 / 14

  5. Related Work ▶ IDS networking datasets (e.g. KDD’99) ▶ Lack of reproducible ICS/SCADA testbeds ▶ Lack of IEC 60870-5-104 protocol support 5 / 14

  6. Use Cases TestBed ▶ Packet Generation ▶ Attack Simulations ▶ Agent Benchmarking ▶ Extending Limited Hardware 6 / 14

  7. Requirements of a TestBed ▶ Reproducible ▶ Scalability ▶ Domain Fidelity ▶ Process Simulation ▶ Network Emulation ▶ Physical Network ▶ Physical Devices ▶ Multi-Protocol 7 / 14

  8. High-Level Overview of Framework b) Orchestration Stage a) Compilation Stage Deploy 2) CompileSource() SRC 1) CreateBaseImage() Build 4) BootUpVirtualMachine() Operational VM Node Image Provision Profile RTU/HMI/... 3.1) ConfigureBaseImage() 5.1) AsignIP() 5.3) StartServices() 5.2) LoadConfig() 3.3) InstallPackages() Provision Start Configure 3.2) LoadConfig() Configuration Profile 6) Monitor() c) Operation Stage Control VM SSH/Console/Telnet Manage Shutdown Testbed 8 / 14

  9. Tooling 9 / 14

  10. Example Network Key Virtual Physical HMI DHCP IEC104 DHCP Historian DNS OPC UA DNS DB Sockets STP Switch IEC104 IEC104 IEC104 IEC104 RTU RTU RTU RTU RTU Process Simulator 10 / 14

  11. Dataset ▶ Network Reconnaissance ▶ IEC104 Command Injection ▶ 192K Packet Dataset 11 / 14

  12. Ongoing Work ▶ Integration Process Simulators ▶ Implementing additional operation/configuration profiles ▶ Simplify deployment ▶ Expand documentation 12 / 14

  13. Future Work ▶ Testbed Federation ▶ Auto configuration of networking equipment ▶ Amazon Web Services (AWS) and Google Compute Engine ▶ Experimentation with alternative network paradigms 13 / 14

  14. End ▶ www: petermaynard.co.uk ▶ twitter: @pgmaynad ▶ email: p.maynard@qub.ac.uk ▶ git: https://github.com/PMaynard/ ICS-TestBed-Framework ▶ dataset: https://dx.doi.org/10.6084/ m9.figshare.6133457.v1 14 / 14

Download Presentation
Download Policy: The content available on the website is offered to you 'AS IS' for your personal information and use only. It cannot be commercialized, licensed, or distributed on other websites without prior consent from the author. To download a presentation, simply click this link. If you encounter any difficulties during the download process, it's possible that the publisher has removed the file from their server.

Recommend

ADNA: online, context-aware, intelligent framework for Anomaly Detection aNd Analysis in SCADA

ADNA: online, context-aware, intelligent framework for Anomaly Detection aNd Analysis in SCADA

ADNA: online, context-aware, intelligent framework for Anomaly Detection aNd Analysis in SCADA networks Researchers: Wenyu Ren , Klara Nahrstedt, Tim Yardley Motivation Supervisory Control And Data Acquisition (SCADA) Problem with

1.12k views • 22 slides
SCADA and Other Dangerous Things Professor Andrew Blyth, PhD. University of South Wales, UK.

SCADA and Other Dangerous Things Professor Andrew Blyth, PhD. University of South Wales, UK.

SCADA and Other Dangerous Things Professor Andrew Blyth, PhD. University of South Wales, UK. E-Mail: andrew.blyth@southwales.ac.uk SCADA and Ukraine SCADA Hacking Typical SCADA Critical Infrastructure Architecture 4 SCADA and IPC Forensic

303 views • 17 slides
SCADA SCADA Sec Securit urity SC SCADA Ne Netwo twork rk Sec Security urity Jodi Jensen

SCADA SCADA Sec Securit urity SC SCADA Ne Netwo twork rk Sec Security urity Jodi Jensen

SCADA SCADA Sec Securit urity SC SCADA Ne Netwo twork rk Sec Security urity Jodi Jensen Operations Support Manager Western Area Power Administration Sub Substation Ne station Netwo twork rk Sec Security urity Tyler Stinson

627 views • 13 slides
SCADA Security Eric Chan Fortinet SouthEast Asia & HK SCADA Network Architecture CONFIDENTIAL

SCADA Security Eric Chan Fortinet SouthEast Asia & HK SCADA Network Architecture CONFIDENTIAL

SCADA Security Eric Chan Fortinet SouthEast Asia & HK SCADA Network Architecture CONFIDENTIAL INTERNAL ONLY 2 Where are the Threats Coming From? External Sources SCADA systems are often interconnected to other SCADA systems and

480 views • 12 slides
Hyper-scaling on Openstack with Open Source tooling A use case in deploying hyper-scale grid

Hyper-scaling on Openstack with Open Source tooling A use case in deploying hyper-scale grid

Hyper-scaling on Openstack with Open Source tooling A use case in deploying hyper-scale grid computing on Open Telekom Cloud Why Open Source? Open Open Design Open Choice Standards Community Lead Contributor Model No-Lock in Cloud Design

416 views • 14 slides
THE APPLICATION OF THE APPLICATION OF GPRS FOR SCADA GPRS FOR SCADA COMMUNICATIONS

THE APPLICATION OF THE APPLICATION OF GPRS FOR SCADA GPRS FOR SCADA COMMUNICATIONS

THE APPLICATION OF THE APPLICATION OF GPRS FOR SCADA GPRS FOR SCADA COMMUNICATIONS COMMUNICATIONS Dieter Gtschow Telecommunications specialist Industry Association Resource Centre African Utility Week, 810 May 2006 Overview

549 views • 21 slides
Out of Control: Demonstrating SCADA Exploitation Brian Meixell Eric Forner Black Hat 2013

Out of Control: Demonstrating SCADA Exploitation Brian Meixell Eric Forner Black Hat 2013

Out of Control: Demonstrating SCADA Exploitation Brian Meixell Eric Forner Black Hat 2013 Agenda SCADA 101 Attack Scenarios Common Vulnerabilities Remediation Exploit Demo SCADA 101 SCADA DCS Supervisory Distributed

626 views • 45 slides
SCADA STRANGELOVE SCADA.SL Sergey Gordeychik Internets Aleksandr Timorin StrangeLove movie and

SCADA STRANGELOVE SCADA.SL Sergey Gordeychik Internets Aleksandr Timorin StrangeLove movie and

SCADA STRANGELOVE SCADA.SL Sergey Gordeychik Internets Aleksandr Timorin StrangeLove movie and other Gleb Gritsai *All pictures are taken from Dr Group of security researchers focused on ICS/SCADA Alexander Timorin Dmitry Serebryannikov

1.13k views • 65 slides
FIREWALL DEPLOYMENT FOR SCADA/PCN How closed need your network needs to be? How open can

FIREWALL DEPLOYMENT FOR SCADA/PCN How closed need your network needs to be? How open can

FIREWALL DEPLOYMENT FOR SCADA/PCN How closed need your network needs to be? How open can you afford your network to be? Where from the vulnerability is coming? How to mitigate the vulnerability? How to detect that anyone

634 views • 48 slides
_ ...... - I =-= I A Weatherford Enterra Company SCADA Systems Seminar TEST, Inc SCADA Ssmlnor

_ ...... - I =-= I A Weatherford Enterra Company SCADA Systems Seminar TEST, Inc SCADA Ssmlnor

_ ...... - I =-= I A Weatherford Enterra Company SCADA Systems Seminar TEST, Inc SCADA Ssmlnor slrtu030.doc ~_-Computer Alternate Signal Path (3 x #16 wires) 3.275 Ghz Satollite Earth Station 3.275 Ghz Satellite _-'/P"lnK Antenna

2.28k views • 183 slides
SCADA Supervisory Control and Data Acquisition What is SCADA? Superv rvisory Control and Data

SCADA Supervisory Control and Data Acquisition What is SCADA? Superv rvisory Control and Data

SCADA Supervisory Control and Data Acquisition What is SCADA? Superv rvisory Control and Data Acquisition SCADA is the system that controls the various operating processes at our facilities. It is also the system that collects and stores

1.17k views • 23 slides
System Management SCADA Replacing missing or incorrect values with estimates DM#12352252 What is

System Management SCADA Replacing missing or incorrect values with estimates DM#12352252 What is

System Management SCADA Replacing missing or incorrect values with estimates DM#12352252 What is SCADA? S upervisory C ontrol A nd D ata A cquisition , a computer system for gathering and analysing real-time data. SCADA systems are used to

309 views • 15 slides
Deploying an University App Store with Open Innovation Jaime Busquets, Miguel Macas , Ral

Deploying an University App Store with Open Innovation Jaime Busquets, Miguel Macas , Ral

Deploying an University App Store with Open Innovation Jaime Busquets, Miguel Macas , Ral Mengod, Juan Evangelista, Carlos Turr Universitat Politcnica de Valncia www.upv.es 2015 2013/14 edX Flipped MOOCs Classroom 2011/12

662 views • 29 slides
OpenBox: A Software-Defined Framework for Developing, Deploying, and Managing Network Functions

OpenBox: A Software-Defined Framework for Developing, Deploying, and Managing Network Functions

OpenBox: A Software-Defined Framework for Developing, Deploying, and Managing Network Functions Yotam Harchol The Hebrew University of Jerusalem Joint work with Anat Bremler-Barr and David Hay THE HEBREW This research was supported by the

467 views • 24 slides
ModGrasp : an Open-Source Rapid-Prototyping Framework for Designing Low-Cost Sensorised Modular

ModGrasp : an Open-Source Rapid-Prototyping Framework for Designing Low-Cost Sensorised Modular

Introduction ModGrasp architecture and communication protocol Case study: a three-fingered modular manipulator Experimental results, conclusion and future work ModGrasp : an Open-Source Rapid-Prototyping Framework for Designing Low-Cost

185 views • 17 slides
Duan Vavreka September 2015 Quality metering RTU and SCADA RTU and SCADA Control systems

Duan Vavreka September 2015 Quality metering RTU and SCADA RTU and SCADA Control systems

www.elvac.eu Duan Vavreka September 2015 Quality metering RTU and SCADA RTU and SCADA Control systems for energetics Quality metering in class A ARTIQ 144 measurements 4V4I, communication interface RS-485, optionally Ethernet or USB,

605 views • 13 slides
UGV Configuration and Navigation Experimental Results Authors Flavio Callegati, Alessandro

UGV Configuration and Navigation Experimental Results Authors Flavio Callegati, Alessandro

Autonomous Tracked Agricultural UGV Configuration and Navigation Experimental Results Authors Flavio Callegati, Alessandro Samor, Roberto Tazzari, Nicola Mimmo and Lorenzo Marconi Precis isio ion Agric iculture Manual workers and

471 views • 13 slides
Validation of an innovative experim ental safety assessm ent for virtual control tow er HMI

Validation of an innovative experim ental safety assessm ent for virtual control tow er HMI

Faculty of Transportation and Traffic Sciences, Institute of Logistics and Aviation, Chair of Air Transport Technology and Logistics Validation of an innovative experim ental safety assessm ent for virtual control tow er HMI designs Lothar

396 views • 21 slides
A JavaPathfinder Extension to Analyze Human Machine Interactions Sbastien Combfis (UCLouvain),

A JavaPathfinder Extension to Analyze Human Machine Interactions Sbastien Combfis (UCLouvain),

A JavaPathfinder Extension to Analyze Human Machine Interactions Sbastien Combfis (UCLouvain), Dimitra Giannakopoulou (NASA), Charles Pecheur (UCLouvain), Peter Mehlitz (NASA) HMI issues automation surprises non-determinism, mode

243 views • 11 slides
SVG for Automotive User SVG for Automotive User Interfaces Interfaces S. Boisgrault, Mines

SVG for Automotive User SVG for Automotive User Interfaces Interfaces S. Boisgrault, Mines

SVG for Automotive User SVG for Automotive User Interfaces Interfaces S. Boisgrault, Mines ParisTech M. Othman Abdallah, Mines ParisTech J.-M. Temmos, Visteon Introduction HMI: human-machine interfaces Design of HMI displays for car

427 views • 24 slides
Big ig Flar Flare e Hunt Hunting ing Manuel Pichardo (Utah State University) and Scott

Big ig Flar Flare e Hunt Hunting ing Manuel Pichardo (Utah State University) and Scott

Big ig Flar Flare e Hunt Hunting ing Manuel Pichardo (Utah State University) and Scott McIntosh, PhD (HAO/NCAR) High Altitude Observatory (HAO) National Center for Atmospheric Research (NCAR) The National Center for Atmospheric

416 views • 20 slides
AoC / Ofsted KIT webinar Richard Beynon, Specialist Advisor, FES, Ofsted David Corke, Policy

AoC / Ofsted KIT webinar Richard Beynon, Specialist Advisor, FES, Ofsted David Corke, Policy

AoC / Ofsted KIT webinar Richard Beynon, Specialist Advisor, FES, Ofsted David Corke, Policy Director, AoC AoC - Ofsted webinar 23 July 2020 Slide 1 AoC Ofsted KIT webinar Todays session will: be the last of a series of KIT

575 views • 9 slides
Distributed Snapshots 1 Goals of the lecture Consistent State Algo rithm

Distributed Snapshots 1 Goals of the lecture Consistent State Algo rithm

Distributed Snapshots 1 Goals of the lecture Consistent State Algo rithm Co rrectness Stable Prop erties Reference: Chandy and Lamp ort Vija c y K. Ga rg Distributed Systems Sp ring 96

216 views • 17 slides
MiniCPS: A toolkit for security research on CPS Networks D ANIELE A NTONIOLI (SUTD) N ILS O LE T

MiniCPS: A toolkit for security research on CPS Networks D ANIELE A NTONIOLI (SUTD) N ILS O LE T

CPS-SPC 15 @ Denver CO MiniCPS: A toolkit for security research on CPS Networks D ANIELE A NTONIOLI (SUTD) N ILS O LE T IPPENHAUER (SUTD) October 26, 2015 MiniCPS: A toolkit for security research on CPS Networks 1 Hi! Personal: D

877 views • 20 slides

More recommend