cypsa cyber physical security assessment project
play

CyPSA: Cyber-Physical Security Assessment Project Information - PowerPoint PPT Presentation

Sep 27, 2023 •384 likes •571 views

CyPSA: Cyber-Physical Security Assessment Project Information Team members Based on two papers under TCIPG UIUC : David Nicol, Pete Sauer, Kate Davis, Edmond Rogers, Robin Berthier, Olivier Soubigou, Gabe Weaver. Zonouz,

  1. CyPSA: Cyber-Physical Security Assessment

  2. Project Information • Team members • Based on two papers under TCIPG – UIUC : David Nicol, Pete Sauer, Kate Davis, Edmond Rogers, Robin Berthier, Olivier Soubigou, Gabe Weaver. – Zonouz, S., Davis, C. M., Davis, K. R., Berthier, R., – OSU : Panini Patapanchala, Vishnu Rayala, Rakesh Bobba, R. B., & Sanders, W. H. (2014). SOCCA: A Bobba security-oriented cyber-physical contingency analysis in power infrastructures . IEEE – Rutgers : Luis Garcia, Saman Zonouz Transactions on Smart Grid, 5(1), 3-13. PowerWorld : Matt Davis – Science of Security Significant Research in Cyber Security Citation Sponsor: ARPA-E • – Zonouz, S., Rogers, K. M., Berthier, R., Bobba, R. Duration: April 2013 – Aug 2016 • B., Sanders, W. H., & Overbye, T. J. (2012). SCPSE: Security-oriented cyber-physical state estimation for power grid critical infrastructures . Commercialization: Kaedago Inc. • IEEE Transactions on Smart Grid, 3(4), 1790-1799. 2

  3. CyPSA Motivation • Power system operators and planners are constantly studying the system to gauge the effect of outages and changes on the system. Presently, outages caused by cyber failures or attacks are not considered • The purpose of this work is to build a framework that includes the physical and cyber systems so that the impact of cyber outages on the power system can be taken into account 3

  4. Challenges How to ensure operational reliability given our increasing dependence on cyber systems? How to understand the impact of cyber vulnerabilities on grid operations? How to prioritize cyber security efforts in control networks and substations?

  5. CyPSA streamlines a utility’s ability to inventory and analyze cyber-physical assets. 5

  6. Target Application: Contingency Analysis Manually Define Automatically Insert Contingencies Contingencies Simulate Impact through a Power Flow State Estimator Rank contingencies by severity and prioritize mitigation response

  7. Target Application: Contingency Analysis Manually Define Automatically Insert Contingencies Contingencies Simulate Impact through a Cyber-induced Power Flow State Estimator contingencies? Dependencies among cyber and Rank contingencies by severity and physical assets? prioritize mitigation response

  8. Approach Combining cyber and power topologies to create a realistic model of the • infrastructure – cyber network topology + firewall rule-based attack graph generation – power system topology and power flow models Dividing the problem into manageable pieces • – cyber-side attack graph analysis (ease of penetration) – physical line outages/contingencies (impact of penetration) • Developing algorithms to compute potential attack paths and to assess risks accurately

  9. CyPSA: Basic Pipeline CyPSA Toolset Vulnerability Information NP-View Cyber Physical • Compute connectivity • Generate attack paths Topology • Prune attack paths SOCCA Cyber Topology • Combine cyber attack Results Cyber-physical paths with power contingencies Interconnection • Rank asset by criticality Power Topology PowerWorld • Analyze contingencies

  10. CyPSA Basic Pipeline Overview NP-View SOCCA on Zabbix CyPSA Web UI 1 3 2 PowerWorld

  11. CyPSA Overview NP-View SOCCA on Zabbix CyPSA Web UI 1 3 2 PowerWorld 1. NP-View analyzes cyber-network and provides cyber vulnerability analysis attack paths XML file to SOCCA

  12. CyPSA Overview NP-View SOCCA on Zabbix CyPSA Web UI 1 3 2 PowerWorld 2. SOCCA uses PowerWorld to calculate performance indices for all critical assets and then generates a cyber-physical attack path list ranked by security index

  13. CyPSA Overview NP-View SOCCA on Zabbix CyPSA Web UI 1 3 2 PowerWorld 3. SOCCA sends the new cyber- physical attack graph to be displayed by the Web UI

  14. CyPSA Data Interactions 14

  15. CyPSA Control Panel 15

  16. CyPSA Control Panel 16

  17. Key Advantages • Accurate model of connections and dependencies of cyber and physical systems • What-if scenario analysis and prioritization of system-hardening and security patching efforts • Address the challenge of including cyber failures /attacks in contingency analysis

  18. Benefits and Use Cases • For utility operators and utility planners : – Gain situational awareness on cyber systems • For security analysts : – Save time and effort in prioritizing security protection deployment • For auditors : – Improve understanding of the required scope of compliance efforts

Download Presentation
Download Policy: The content available on the website is offered to you 'AS IS' for your personal information and use only. It cannot be commercialized, licensed, or distributed on other websites without prior consent from the author. To download a presentation, simply click this link. If you encounter any difficulties during the download process, it's possible that the publisher has removed the file from their server.

Recommend

AI and Cyber Warfare Ernesto Damiani 12-09-2019 ku.ac.ae KU Cyber-Physical Systems Center

AI and Cyber Warfare Ernesto Damiani 12-09-2019 ku.ac.ae KU Cyber-Physical Systems Center

AI and Cyber Warfare Ernesto Damiani 12-09-2019 ku.ac.ae KU Cyber-Physical Systems Center (C2PS) SECURITY OF THE GLOBAL ICT INFRASTRUCTURE Network and Communications Security Business Process Security and Privacy Security and

667 views • 15 slides
Cyber-Physical System Security Alia Long Advanced Research in Cyber Systems (ARCS) Los Alamos

Cyber-Physical System Security Alia Long Advanced Research in Cyber Systems (ARCS) Los Alamos

Cyber-Physical System Security Alia Long Advanced Research in Cyber Systems (ARCS) Los Alamos National Laboratory LA-UR-17-27644 Operated by Los Alamos National Security, LLC for the U.S. Department of Energy's NNSA A Cyber-Physical Model

837 views • 7 slides
Cyber Physical Systems Security ( SECANT Security - RO) With the financial support of the

Cyber Physical Systems Security ( SECANT Security - RO) With the financial support of the

Unified Unified Risk Risk Assessment Assessment URANIUM URANIUM Negotiation via Negotiation via Interoperability Interoperability Using Using Multi-sensor data Multi-sensor data Cyber Physical Systems Security ( SECANT Security - RO)

197 views • 16 slides
ARTINALI: Dynamic Invariant Detec4on for Cyber-Physical System Security Maryam Raiyat Aliabadi,

ARTINALI: Dynamic Invariant Detec4on for Cyber-Physical System Security Maryam Raiyat Aliabadi,

ARTINALI: Dynamic Invariant Detec4on for Cyber-Physical System Security Maryam Raiyat Aliabadi, Amita Kamath, Julien Gascon-Samson, Karthik Pa8abiraman Cyber-Physical Systems Distributed Controllers C2 C3 C1 Network a1 s2 s1 a2 Physical

482 views • 19 slides
Synergy: Collaborative: Security and Privacy-Aware Cyber-Physical Systems (NSF CNS-1505799 and

Synergy: Collaborative: Security and Privacy-Aware Cyber-Physical Systems (NSF CNS-1505799 and

Synergy: Collaborative: Security and Privacy-Aware Cyber-Physical Systems (NSF CNS-1505799 and the Intel-NSF Partnership for Cyber- Physical Systems Security and Privacy) Insup Lee (PI) PRECISE Center School of Engineering and Applied Science

1.11k views • 34 slides
Security of Cyber-Physical Systems Henrik Sandberg hsan@kth.se Department of Automatic Control,

Security of Cyber-Physical Systems Henrik Sandberg hsan@kth.se Department of Automatic Control,

KTH ROYAL INSTITUTE OF TECHNOLOGY Security of Cyber-Physical Systems Henrik Sandberg hsan@kth.se Department of Automatic Control, KTH, Stockholm, Sweden 7th oCPS PhD School on Cyber-Physical Systems, Lucca, Italy Outline Background and

881 views • 63 slides
Cyber-Physical Systems 07/24/2019 Heechul Yun University of Kansas 1 Modern Cyber-Physical

Cyber-Physical Systems 07/24/2019 Heechul Yun University of Kansas 1 Modern Cyber-Physical

Micro-Architectural Attacks on Cyber-Physical Systems 07/24/2019 Heechul Yun University of Kansas 1 Modern Cyber-Physical Systems Cyber Physical Systems (CPS) Cyber (Computer) + Physical (Plant) Real-time Control physical

310 views • 29 slides
Cyber-Physical Systems Security IECE 553/453 Fall 2019 Prof. Dola Saha 1 Security Threats

Cyber-Physical Systems Security IECE 553/453 Fall 2019 Prof. Dola Saha 1 Security Threats

Cyber-Physical Systems Security IECE 553/453 Fall 2019 Prof. Dola Saha 1 Security Threats in the IoT Cyber attack on the Ukrainian power grid Power outage caused by hackers Security in the IoT is essential, not just for information

1.21k views • 76 slides
NSF/Intel Partnership on Cyber-Physical Systems Security and

NSF/Intel Partnership on Cyber-Physical Systems Security and

NSF Webinar on NSF Solicita9on 14-571 NSF/Intel Partnership on Cyber-Physical Systems Security and Privacy (CPS-Security) Farnam Jahanian, Keith

752 views • 35 slides
Cyber Security Risk Using the Cyber Security Measurement Framework Cyber Security Framework

Cyber Security Risk Using the Cyber Security Measurement Framework Cyber Security Framework

Cyber Security Risk Using the Cyber Security Measurement Framework Cyber Security Framework Reporting Objectives Executive Summary Information Assess Current Cyber Security Posture Measure Progress Toward Improvement Assess

634 views • 5 slides
Cyber Security in Smart Grids EE 772 : Smart Grids Prof. S. A. Khaparde Indian Institute of

Cyber Security in Smart Grids EE 772 : Smart Grids Prof. S. A. Khaparde Indian Institute of

Cyber Security in Smart Grids EE 772 : Smart Grids Prof. S. A. Khaparde Indian Institute of Technology Bombay Introduction to Cyber-Physical Systems - Communication between physical devices through a cyber layer - Sensors and Actuators

893 views • 53 slides
Cyber-Physical Security for the Smart Grid Deepa Kundur Texas A&M University (Joint work

Cyber-Physical Security for the Smart Grid Deepa Kundur Texas A&M University (Joint work

Cyber-Physical Security for the Smart Grid Deepa Kundur Texas A&M University (Joint work with Shan Liu, Takis Zourntos and Karen Butler-Purry) CYBER SECURITY POWER SYSTEMS DYNAMICAL SYSTEMS 2 A Smarter Grid MARRIAGE OF INFORMATION

1.86k views • 46 slides
Verified Cyber-Physical Systems [FM11] 2 Verified Cyber-Physical Systems x l x j

Verified Cyber-Physical Systems [FM11] 2 Verified Cyber-Physical Systems x l x j

Differential Refinement Logic Sarah M. Loos and Andr Platzer Computer Science Department Carnegie Mellon University 1 Verified Cyber-Physical Systems [FM11] 2 Verified Cyber-Physical Systems x l x j p x k x i

1.97k views • 179 slides
Cyber Security in Mining Automation Ragnar Schierholz, Head of Cyber Security, Industrial

Cyber Security in Mining Automation Ragnar Schierholz, Head of Cyber Security, Industrial

ABB MINING USER CONFERENCE, MAY 02-05, 2017 Cyber Security in Mining Automation Ragnar Schierholz, Head of Cyber Security, Industrial Automation Division Agenda Why worry about cyber security? ABBs approach to cyber security Cyber security

1.07k views • 39 slides
Cyber-Physical Systems Security Alvaro A. Crdenas Department of Computer Science University of

Cyber-Physical Systems Security Alvaro A. Crdenas Department of Computer Science University of

Cyber-Physical Systems Security Alvaro A. Crdenas Department of Computer Science University of Texas at Dallas Modernization of our Physical Infrastructures Physical Systems are Being Modernized with New Technologies Smart Smart

601 views • 23 slides
Data Analytics for Cyber Physical Security Analysis A. Srivastava, A. Hahn, V. V. G. Krishnan,

Data Analytics for Cyber Physical Security Analysis A. Srivastava, A. Hahn, V. V. G. Krishnan,

Data Analytics for Cyber Physical Security Analysis A. Srivastava, A. Hahn, V. V. G. Krishnan, Y.Zhang, K. Kaur, Washington State University P. Jiaxing, S.Sindhu Siemens 1 Digitalization of the Electric Grid Credit: GE, Schneider, EPRI 2

373 views • 18 slides
ETP 2015 demonstrates that strategic action on clean energy technologies at national, regional

ETP 2015 demonstrates that strategic action on clean energy technologies at national, regional

ETP 2015 demonstrates that strategic action on clean energy technologies at national, regional and international levels has the capacity to move the world closer to shared goals for climate change mitigation while delivering benefits of enhanced

694 views • 44 slides
Unified Communications Various Groups and Objectives 1. GVA Internet2 (RedCLARA, AARnet,

Unified Communications Various Groups and Objectives 1. GVA Internet2 (RedCLARA, AARnet,

Unified Communications Various Groups and Objectives 1. GVA Internet2 (RedCLARA, AARnet, NORDUnet, Janet, CESNET) 2. G-UCX CEO Forum (led by AARnet) 3. eduCONF GN3+ (FCCN => Janet) 4. NRENum.net TERENA (Operations Team)

510 views • 12 slides
Naming Domain Name System Guevara Noubir Fundamentals of

Naming Domain Name System Guevara Noubir Fundamentals of

Naming Domain Name System Guevara Noubir Fundamentals of Computer Networks Northeastern University DNS 1 Domain Name System DNS is a fundamental

179 views • 15 slides
Distributed Grid Control of Flexible Loads and DERs for Optimized Provision of Synthetic

Distributed Grid Control of Flexible Loads and DERs for Optimized Provision of Synthetic

Distributed Grid Control of Flexible Loads and DERs for Optimized Provision of Synthetic Regulating Reserves ARPA-E NODES PROJECT DE-FOA-0001289 University of California-San Diego University of Illinois Urbana-Champaign Typhoon HIL Network

483 views • 25 slides
Therapy & ThorEA, FFAG & RCS: Common Challenges Steve Peggs, BNL & ESS-Scandinavia

Therapy & ThorEA, FFAG & RCS: Common Challenges Steve Peggs, BNL & ESS-Scandinavia

Therapy & ThorEA, FFAG & RCS: Common Challenges Steve Peggs, BNL & ESS-Scandinavia With special thanks (and no further attribution) to: R. Barlow, M. Blaskiewicz, J. Escalier, J. Flanz, Y. Kadi, E. Keil, T. Linnecar, M. Lindroos, S.

804 views • 41 slides
Preparatory Meeting for Phase 2 of Philippine National ENUM Trial IP Telephony Group Advanced

Preparatory Meeting for Phase 2 of Philippine National ENUM Trial IP Telephony Group Advanced

Preparatory Meeting for Phase 2 of Philippine National ENUM Trial IP Telephony Group Advanced Science and Technology Institute Department of Science and Technology December 12, 2005 NCC-CICT Thursday, February 11, 2010 Dialing Scheme

1.41k views • 92 slides
Socket Programming Instruction Sheet In this lab, our goal is to make two machines talk to each

Socket Programming Instruction Sheet In this lab, our goal is to make two machines talk to each

Socket Programming Instruction Sheet In this lab, our goal is to make two machines talk to each other. You will have to write two programs: listener.c and talker.c based on the concepts you have learned so far. listener essentially sits on a

36 views • 3 slides
Important dates and locations Lectures on Thursdays in S3 S38.180:Quality of Service in

Important dates and locations Lectures on Thursdays in S3 S38.180:Quality of Service in

Lic.(Tech.) Marko Luoma (1/39) Lic.(Tech.) Marko Luoma (2/39) Important dates and locations Lectures on Thursdays in S3 S38.180:Quality of Service in Internet Start on September 18 th (today ;) Last lecture on October 23 rd

516 views • 20 slides

More recommend