TY - GEN
T1 - SCADA-SST
T2 - 2016 World Congress on Industrial Control Systems Security, WCICSS 2016
AU - Ghaleb, Asem
AU - Zhioua, Sami
AU - Almulhem, Ahmad
N1 - Publisher Copyright:
© 2016 IEEE.
PY - 2017/3/20
Y1 - 2017/3/20
N2 - The number of reported cybersecurity incidents on SCADA (Supervisory Control and Data Acquisition) systems increased significantly in the past few years. One contributing factor is the fact that security testing of live SCADA systems is not practical as such systems are expected to be operational 24/7. Also and most importantly, conducting live security testing on these types of systems is generally costly. A practical and cost-effective solution is to carry out security testing on a simulated version of the physical setting. The main contribution of this paper is to present a SCADA simulation environment (SCADA-SST) suitable for security testing. The simulation environment is generic, easy to setup (comes with a detailed manual), and supports hybrid architectures (involving simulated as well as physical components). We show how SCADA-SST can be used to simulate two realistic settings, namely, Water distribution and Electrical power grid. Finally, for the sake of security testing example, we show how SCADASST can be used to assess the resilience of common SCADA nodes to DOS attacks.
AB - The number of reported cybersecurity incidents on SCADA (Supervisory Control and Data Acquisition) systems increased significantly in the past few years. One contributing factor is the fact that security testing of live SCADA systems is not practical as such systems are expected to be operational 24/7. Also and most importantly, conducting live security testing on these types of systems is generally costly. A practical and cost-effective solution is to carry out security testing on a simulated version of the physical setting. The main contribution of this paper is to present a SCADA simulation environment (SCADA-SST) suitable for security testing. The simulation environment is generic, easy to setup (comes with a detailed manual), and supports hybrid architectures (involving simulated as well as physical components). We show how SCADA-SST can be used to simulate two realistic settings, namely, Water distribution and Electrical power grid. Finally, for the sake of security testing example, we show how SCADASST can be used to assess the resilience of common SCADA nodes to DOS attacks.
KW - Industrial Control Systems
KW - Network attacks
KW - SCADA
KW - Security testing
KW - Simulation
UR - https://www.scopus.com/pages/publications/85018425744
U2 - 10.1109/WCICSS.2016.7882610
DO - 10.1109/WCICSS.2016.7882610
M3 - Conference contribution
AN - SCOPUS:85018425744
T3 - 2016 World Congress on Industrial Control Systems Security, WCICSS 2016
SP - 34
EP - 39
BT - 2016 World Congress on Industrial Control Systems Security, WCICSS 2016
PB - Institute of Electrical and Electronics Engineers Inc.
Y2 - 12 December 2016 through 14 December 2016
ER -