Design and Operation Framework for Industrial Control System Security Exercise

In recent years, cyber-attacks on critical infrastructures have become a threat to reality. Incidents of cyber-attacks happen in the ICS (industrial control system) on site. As countermeasures against cyber-attacks, companies need not only consider stable plant operation from the viewpoint of safety but also consider business continuity from the business point of view. To promptly take the above countermeasures against cyber-attacks, companies have to prepare corporate resources in advance and educate their staffs and operators using the training exercise. In this paper, the authors propose a design framework of the exercise based on existing safety-BCP and IT-BCP. An illustrative example exercise is presented to easily understand the proposed methodologies.

[1]  Henry Leung,et al.  Intelligent Anomaly Detection for Large-scale Smart Grids , 2019, 2019 IEEE Canadian Conference of Electrical and Computer Engineering (CCECE).

[2]  Henry Leung,et al.  A Deep and Scalable Unsupervised Machine Learning System for Cyber-Attack Detection in Large-Scale Smart Grids , 2019, IEEE Access.

[3]  Hadis Karimipour,et al.  Multivariate Mutual Information-based Feature Selection for Cyber Intrusion Detection , 2018, 2018 IEEE Electrical Power and Energy Conference (EPEC).

[4]  Ali Dehghantanha,et al.  A deep unsupervised representation learning approach for effective cyber-physical attack detection and identification on highly imbalanced data , 2019, CASCON.

[5]  Hadis Karimipour,et al.  A Layered Intrusion Detection System for Critical Infrastructure Using Machine Learning , 2019, 2019 IEEE 7th International Conference on Smart Energy Grid Engineering (SEGE).

[6]  Adam Shostack,et al.  Threat Modeling: Designing for Security , 2014 .

[7]  Hadis Karimipour,et al.  Microgrid Islanding Detection Based on Mathematical Morphology , 2018, Energies.

[8]  Ali Dehghantanha,et al.  Smart Grid Cyber Attacks Detection Using Supervised Learning and Heuristic Feature Selection , 2019, 2019 IEEE 7th International Conference on Smart Energy Grid Engineering (SEGE).

[9]  Hadis Karimipour,et al.  Robust Massively Parallel Dynamic State Estimation of Power Systems Against Cyber-Attack , 2018, IEEE Access.

[10]  Hadis Karimipour,et al.  Cyber intrusion detection by combined feature selection algorithm , 2019, J. Inf. Secur. Appl..

[11]  Kenji Watanabe,et al.  Developing a Cyber Incident Communication Management Exercise for CI Stakeholders , 2016, CRITIS.

[12]  Hadis Karimipour,et al.  Parallel relaxation-based joint dynamic state estimation of large-scale power systems , 2016 .

[13]  Ali Dehghantanha,et al.  Fuzzy pattern tree for edge malware detection and categorization in IoT , 2019, J. Syst. Archit..

[14]  Ali Dehghantanha,et al.  A survey on internet of things security: Requirements, challenges, and solutions , 2019, Internet Things.

[15]  Liu Li,et al.  Security of Industrial Control System , 2011 .

[16]  Tomomi Aoyama,et al.  Cyber incident exercise for safety protection in critical infrastructure , 2018 .

[17]  Tomomi Aoyama,et al.  Development of the Cyber Exercise for Critical Infrastructures Focusing on Inter-Organization Communication , 2018 .

[18]  Hadis Karimipour,et al.  Joint State Estimation and Cyber-Attack Detection Based on Feature Grouping , 2019, 2019 IEEE 7th International Conference on Smart Energy Grid Engineering (SEGE).

[19]  Venkata Dinavahi,et al.  Parallel Domain-Decomposition-Based Distributed State Estimation for Large-Scale Power Systems , 2016, IEEE Transactions on Industry Applications.

[20]  Ali Dehghantanha,et al.  Security Aspects of Internet of Things aided Smart Grids: a Bibliometric Survey , 2019, Internet Things.

[21]  Venkata Dinavahi,et al.  Extended Kalman filter-based parallel dynamic state estimation , 2015, 2016 IEEE Power and Energy Society General Meeting (PESGM).