用于SCADA网络安全研究的孤立虚拟集群
An isolated virtual cluster for SCADA network security researchResearch aimed at securing the SCADA and ICS networks has taken off in the wake of Stuxnet. Unfortunately, it is difficult for researchers to fully capture the integration between cyber and
physical components that is intrinsic to these systems. To enable researchers to perform network security experiments while taking into account the physical component of ICS networks, we propose the use of the ICS sandbox. The ICS sandbox uses the proven virtualized cluster approach to emulate SCADA networks with high fidelity. The virtualized cluster is interfaced with an electrical power flow simulator to integrate the physical component of an ICS network controlling electrical grid critical infrastructure without imposing scale constraints. Parts of the proposed sandbox were validated in a training session offered to industry professionals where a satisfaction survey indicated that hands-on session with the ICS sandbox provided significant training value to the participants that could not have been obtained in traditional training.
用于SCADA网络安全研究的孤立虚拟集群
该研究旨在确保Stuxnet病毒发生后SCADA和ICS网络系统的安全性。然而,研究者很难充分抓住这些系统内在的网络与真实组件间的集成。为了让研究者们能够在考虑ICS网络真实组件的同时实施网络安全实验,我们提出了ICS sandbox。ICS sandbox利用经验证的虚拟集群法以高精确精度模拟SCADA网络。虚拟集群与一个电力系统流仿真器相连,并与ICS网络物理组件集成,从而在没有规模限制下控制电网关键设施。在提供给业内专业人士的培训环节中,部分sandbox得到验证,满意度调查表明与传统培训相比,利用ICS sandbox的实践环节为参与者提供了显著有效的培训。
页:
[1]
