This paper outlines a set of 10 cyber security concerns associated with Industrial Control Systems (ICS). The concerns address software and hardware development, implementation, and maintenance practices, supply chain assurance, the need for cyber forensics in ICS, a lack of awareness and training, and finally, a need for test beds which can be used to address the first 9 cited concerns. The concerns documented in this paper were developed based on the authors' combined experience conducting research in this field for the US Department of Homeland Security, the National Science Foundation, and the Department of Defense. The second half of this paper documents a virtual test bed platform which is offered as a tool to address the concerns listed in the first half of the paper. The paper discusses various types of test beds proposed in literature for ICS research, provides an overview of the virtual test bed platform developed by the authors, and lists future works required to extend the existing test beds to serve as a development platform.
[1]
Thomas Morris,et al.
Enhancing a Virtual SCADA Laboratory Using Simulink
,
2015,
Critical Infrastructure Protection.
[2]
Gabor Karsai,et al.
A testbed for secure and robust SCADA systems
,
2008,
SIGBED.
[3]
Wei Gao,et al.
A control system testbed to validate critical infrastructure protection concepts
,
2011,
Int. J. Crit. Infrastructure Prot..
[4]
Bradley Reaves,et al.
An open virtual testbed for industrial control system security research
,
2012,
International Journal of Information Security.
[5]
Siddharth Sridhar,et al.
Development of the PowerCyber SCADA security testbed
,
2010,
CSIIRW '10.