an open framework for deploying experimental scada
play

An Open Framework for Deploying Experimental SCADA Testbed Networks - PowerPoint PPT Presentation

Mar 30, 2024 •112 likes •268 views

An Open Framework for Deploying Experimental SCADA Testbed Networks Peter Maynard, Kieran McLaughlin, and Sakir Sezer August, 2018 Queens University Belfast CSIT 1 / 14 Outline Background High-Level Overview of Framework

  1. An Open Framework for Deploying Experimental SCADA Testbed Networks Peter Maynard, Kieran McLaughlin, and Sakir Sezer August, 2018 Queen’s University Belfast « CSIT 1 / 14

  2. Outline ▶ Background ▶ High-Level Overview of Framework ▶ Tooling ▶ Ongoing/Future Work 2 / 14

  3. About Myself ▶ Research Assistant, at Queen’s University Belfast, CSIT ▶ PhD 4 years ICS Network-IDS ▶ Research Engineer, at Southampton University, UK ▶ 5G Networks ▶ Computer Science BSc, at Aberystwyth University, UK 3 / 14

  4. Introduction ▶ Framework for creating virtualised SCADA networks ▶ Developed for packet generation for NIDS ▶ Open Source (GPLv3) 4 / 14

  5. Related Work ▶ IDS networking datasets (e.g. KDD’99) ▶ Lack of reproducible ICS/SCADA testbeds ▶ Lack of IEC 60870-5-104 protocol support 5 / 14

  6. Use Cases TestBed ▶ Packet Generation ▶ Attack Simulations ▶ Agent Benchmarking ▶ Extending Limited Hardware 6 / 14

  7. Requirements of a TestBed ▶ Reproducible ▶ Scalability ▶ Domain Fidelity ▶ Process Simulation ▶ Network Emulation ▶ Physical Network ▶ Physical Devices ▶ Multi-Protocol 7 / 14

  8. High-Level Overview of Framework b) Orchestration Stage a) Compilation Stage Deploy 2) CompileSource() SRC 1) CreateBaseImage() Build 4) BootUpVirtualMachine() Operational VM Node Image Provision Profile RTU/HMI/... 3.1) ConfigureBaseImage() 5.1) AsignIP() 5.3) StartServices() 5.2) LoadConfig() 3.3) InstallPackages() Provision Start Configure 3.2) LoadConfig() Configuration Profile 6) Monitor() c) Operation Stage Control VM SSH/Console/Telnet Manage Shutdown Testbed 8 / 14

  9. Tooling 9 / 14

  10. Example Network Key Virtual Physical HMI DHCP IEC104 DHCP Historian DNS OPC UA DNS DB Sockets STP Switch IEC104 IEC104 IEC104 IEC104 RTU RTU RTU RTU RTU Process Simulator 10 / 14

  11. Dataset ▶ Network Reconnaissance ▶ IEC104 Command Injection ▶ 192K Packet Dataset 11 / 14

  12. Ongoing Work ▶ Integration Process Simulators ▶ Implementing additional operation/configuration profiles ▶ Simplify deployment ▶ Expand documentation 12 / 14

  13. Future Work ▶ Testbed Federation ▶ Auto configuration of networking equipment ▶ Amazon Web Services (AWS) and Google Compute Engine ▶ Experimentation with alternative network paradigms 13 / 14

  14. End ▶ www: petermaynard.co.uk ▶ twitter: @pgmaynad ▶ email: p.maynard@qub.ac.uk ▶ git: https://github.com/PMaynard/ ICS-TestBed-Framework ▶ dataset: https://dx.doi.org/10.6084/ m9.figshare.6133457.v1 14 / 14

Recommend

ADNA: online, context-aware, intelligent framework for Anomaly Detection aNd Analysis in SCADA

ADNA: online, context-aware, intelligent framework for Anomaly Detection aNd Analysis in SCADA

ADNA: online, context-aware, intelligent framework for Anomaly Detection aNd Analysis in SCADA networks Researchers: Wenyu Ren , Klara Nahrstedt, Tim Yardley Motivation Supervisory Control And Data Acquisition (SCADA) Problem with

1.12k views • 22 slides
SCADA and Other Dangerous Things Professor Andrew Blyth, PhD. University of South Wales, UK.

SCADA and Other Dangerous Things Professor Andrew Blyth, PhD. University of South Wales, UK.

SCADA and Other Dangerous Things Professor Andrew Blyth, PhD. University of South Wales, UK. E-Mail: andrew.blyth@southwales.ac.uk SCADA and Ukraine SCADA Hacking Typical SCADA Critical Infrastructure Architecture 4 SCADA and IPC Forensic

303 views • 17 slides
SCADA SCADA Sec Securit urity SC SCADA Ne Netwo twork rk Sec Security urity Jodi Jensen

SCADA SCADA Sec Securit urity SC SCADA Ne Netwo twork rk Sec Security urity Jodi Jensen

SCADA SCADA Sec Securit urity SC SCADA Ne Netwo twork rk Sec Security urity Jodi Jensen Operations Support Manager Western Area Power Administration Sub Substation Ne station Netwo twork rk Sec Security urity Tyler Stinson

627 views • 13 slides
SCADA Security Eric Chan Fortinet SouthEast Asia & HK SCADA Network Architecture CONFIDENTIAL

SCADA Security Eric Chan Fortinet SouthEast Asia & HK SCADA Network Architecture CONFIDENTIAL

SCADA Security Eric Chan Fortinet SouthEast Asia & HK SCADA Network Architecture CONFIDENTIAL INTERNAL ONLY 2 Where are the Threats Coming From? External Sources SCADA systems are often interconnected to other SCADA systems and

480 views • 12 slides
Hyper-scaling on Openstack with Open Source tooling A use case in deploying hyper-scale grid

Hyper-scaling on Openstack with Open Source tooling A use case in deploying hyper-scale grid

Hyper-scaling on Openstack with Open Source tooling A use case in deploying hyper-scale grid computing on Open Telekom Cloud Why Open Source? Open Open Design Open Choice Standards Community Lead Contributor Model No-Lock in Cloud Design

416 views • 14 slides
THE APPLICATION OF THE APPLICATION OF GPRS FOR SCADA GPRS FOR SCADA COMMUNICATIONS

THE APPLICATION OF THE APPLICATION OF GPRS FOR SCADA GPRS FOR SCADA COMMUNICATIONS

THE APPLICATION OF THE APPLICATION OF GPRS FOR SCADA GPRS FOR SCADA COMMUNICATIONS COMMUNICATIONS Dieter Gtschow Telecommunications specialist Industry Association Resource Centre African Utility Week, 810 May 2006 Overview

549 views • 21 slides
Out of Control: Demonstrating SCADA Exploitation Brian Meixell Eric Forner Black Hat 2013

Out of Control: Demonstrating SCADA Exploitation Brian Meixell Eric Forner Black Hat 2013

Out of Control: Demonstrating SCADA Exploitation Brian Meixell Eric Forner Black Hat 2013 Agenda SCADA 101 Attack Scenarios Common Vulnerabilities Remediation Exploit Demo SCADA 101 SCADA DCS Supervisory Distributed

626 views • 45 slides
SCADA STRANGELOVE SCADA.SL Sergey Gordeychik Internets Aleksandr Timorin StrangeLove movie and

SCADA STRANGELOVE SCADA.SL Sergey Gordeychik Internets Aleksandr Timorin StrangeLove movie and

SCADA STRANGELOVE SCADA.SL Sergey Gordeychik Internets Aleksandr Timorin StrangeLove movie and other Gleb Gritsai *All pictures are taken from Dr Group of security researchers focused on ICS/SCADA Alexander Timorin Dmitry Serebryannikov

1.13k views • 65 slides
FIREWALL DEPLOYMENT FOR SCADA/PCN How closed need your network needs to be? How open can

FIREWALL DEPLOYMENT FOR SCADA/PCN How closed need your network needs to be? How open can

FIREWALL DEPLOYMENT FOR SCADA/PCN How closed need your network needs to be? How open can you afford your network to be? Where from the vulnerability is coming? How to mitigate the vulnerability? How to detect that anyone

634 views • 48 slides
_ ...... - I =-= I A Weatherford Enterra Company SCADA Systems Seminar TEST, Inc SCADA Ssmlnor

_ ...... - I =-= I A Weatherford Enterra Company SCADA Systems Seminar TEST, Inc SCADA Ssmlnor

_ ...... - I =-= I A Weatherford Enterra Company SCADA Systems Seminar TEST, Inc SCADA Ssmlnor slrtu030.doc ~_-Computer Alternate Signal Path (3 x #16 wires) 3.275 Ghz Satollite Earth Station 3.275 Ghz Satellite _-'/P"lnK Antenna

2.28k views • 183 slides
SCADA Supervisory Control and Data Acquisition What is SCADA? Superv rvisory Control and Data

SCADA Supervisory Control and Data Acquisition What is SCADA? Superv rvisory Control and Data

SCADA Supervisory Control and Data Acquisition What is SCADA? Superv rvisory Control and Data Acquisition SCADA is the system that controls the various operating processes at our facilities. It is also the system that collects and stores

1.17k views • 23 slides
System Management SCADA Replacing missing or incorrect values with estimates DM#12352252 What is

System Management SCADA Replacing missing or incorrect values with estimates DM#12352252 What is

System Management SCADA Replacing missing or incorrect values with estimates DM#12352252 What is SCADA? S upervisory C ontrol A nd D ata A cquisition , a computer system for gathering and analysing real-time data. SCADA systems are used to

309 views • 15 slides
Deploying an University App Store with Open Innovation Jaime Busquets, Miguel Macas , Ral

Deploying an University App Store with Open Innovation Jaime Busquets, Miguel Macas , Ral

Deploying an University App Store with Open Innovation Jaime Busquets, Miguel Macas , Ral Mengod, Juan Evangelista, Carlos Turr Universitat Politcnica de Valncia www.upv.es 2015 2013/14 edX Flipped MOOCs Classroom 2011/12

662 views • 29 slides
OpenBox: A Software-Defined Framework for Developing, Deploying, and Managing Network Functions

OpenBox: A Software-Defined Framework for Developing, Deploying, and Managing Network Functions

OpenBox: A Software-Defined Framework for Developing, Deploying, and Managing Network Functions Yotam Harchol The Hebrew University of Jerusalem Joint work with Anat Bremler-Barr and David Hay THE HEBREW This research was supported by the

467 views • 24 slides
ModGrasp : an Open-Source Rapid-Prototyping Framework for Designing Low-Cost Sensorised Modular

ModGrasp : an Open-Source Rapid-Prototyping Framework for Designing Low-Cost Sensorised Modular

Introduction ModGrasp architecture and communication protocol Case study: a three-fingered modular manipulator Experimental results, conclusion and future work ModGrasp : an Open-Source Rapid-Prototyping Framework for Designing Low-Cost

185 views • 17 slides
Duan Vavreka September 2015 Quality metering RTU and SCADA RTU and SCADA Control systems

Duan Vavreka September 2015 Quality metering RTU and SCADA RTU and SCADA Control systems

www.elvac.eu Duan Vavreka September 2015 Quality metering RTU and SCADA RTU and SCADA Control systems for energetics Quality metering in class A ARTIQ 144 measurements 4V4I, communication interface RS-485, optionally Ethernet or USB,

605 views • 13 slides
Autonomic Management of Component-based Services Cristian Ruz, PhD SCADA Workshop Ingenieur

Autonomic Management of Component-based Services Cristian Ruz, PhD SCADA Workshop Ingenieur

Autonomic Management of Component-based Services Cristian Ruz, PhD SCADA Workshop Ingenieur Equipe OASIS INRIA Sophia Antipolis M editerran ee France July 24, 2012 PLAN MOTIVATION CONTEXT FRAMEWORK Problem Design of the

1.07k views • 78 slides
Experiences with Eucalyptus: Deploying an Open Source Cloud Rick Bradshaw - bradshaw@mcs.anl.gov

Experiences with Eucalyptus: Deploying an Open Source Cloud Rick Bradshaw - bradshaw@mcs.anl.gov

Experiences with Eucalyptus: Deploying an Open Source Cloud Rick Bradshaw - bradshaw@mcs.anl.gov Piotr T Zbiegiel - pzbiegiel@anl.gov Argonne National Laboratory Overview Introduction and Background Eucalyptus experiences and observations

305 views • 12 slides
Deploying a baremetal cloud is hard Julia Kreger Open Source Developer Advocate IBM Twitter:

Deploying a baremetal cloud is hard Julia Kreger Open Source Developer Advocate IBM Twitter:

Deploying a baremetal cloud is hard Julia Kreger Open Source Developer Advocate IBM Twitter: @ashinclouds OpenStack Summit Sydney Email: juliaashleykreger@gmail.com November 6th, 2017 A little about me! Ironic contributor since early 2015.

733 views • 47 slides
Deploying Innovative Mobile-based Telemedicine Systems using Open Source tools in Resource-poor

Deploying Innovative Mobile-based Telemedicine Systems using Open Source tools in Resource-poor

Deploying Innovative Mobile-based Telemedicine Systems using Open Source tools in Resource-poor Areas of the Philippines Jose Eugenio Quesada Leo Anthony Celi Christopher Moses Outline The Problem The Solution: What is SANA?

685 views • 29 slides
Introduction to SCADA Most of the slides are from ECE 450/CSE 450 (Fall 2010) taught at Lehigh

Introduction to SCADA Most of the slides are from ECE 450/CSE 450 (Fall 2010) taught at Lehigh

10/30/2015 Introduction to SCADA Most of the slides are from ECE 450/CSE 450 (Fall 2010) taught at Lehigh University by Dr. Liang Cheng and Dr. Shalinee Kishore. Motivation for SCADA Suppose you have a simple electrical circuit consisting

538 views • 15 slides
An open, shared platform for developing, deploying, and accessing planetary-scale applications

An open, shared platform for developing, deploying, and accessing planetary-scale applications

An open, shared platform for developing, deploying, and accessing planetary-scale applications Timothy Roscoe Intel Research at Berkeley Thursday, July 01, 2004 APAN, Cairns, 1 July 2004 PlanetLab is Large collection of machines

533 views • 40 slides
ATTACK-AWARENESS FOR SPIRE (INTRUSION-TOLERANT SCADA) Tiger Gao, Dan Qian, Elaine Wong, &

ATTACK-AWARENESS FOR SPIRE (INTRUSION-TOLERANT SCADA) Tiger Gao, Dan Qian, Elaine Wong, &

ATTACK-AWARENESS FOR SPIRE (INTRUSION-TOLERANT SCADA) Tiger Gao, Dan Qian, Elaine Wong, & Jason Wong 1. BACKGROUND What is Spire? What is SCADA? What is SCADA? Supervisory Control and Data Acquisition Allows for centralized

530 views • 18 slides
Unity: A Unified Software/Hardware Framework for Rapid Prototyping of Experimental Robot

Unity: A Unified Software/Hardware Framework for Rapid Prototyping of Experimental Robot

Unity: A Unified Software/Hardware Framework for Rapid Prototyping of Experimental Robot Controllers using FPGAs Anders Blaabjerg Lange, Ulrik Pagh Schultz and Anders Stengaard Soerensen MMMI, SDU, Denmark OR why everyone in experimental

314 views • 16 slides

More recommend