Leveraging Software-Defined Networking for Incident Response in Industrial Control Systems

被引：39

作者：

Murillo Piedrahita, Andres F. ^{[1
]}

Gaur, Vikram ^{[2
]}

Giraldo, Jairo ^{[3
]}

Cardenas, Alvaro A. ^{[3
]}

Julieta Rueda, Sandra ^{[4
]}

机构：

[1] Univ Los Andes, Bogota, Colombia

[2] Univ Texas Dallas, Dallas, TX USA

[3] Univ Texas Dallas, Dept Comp Sci, Dallas, TX USA

[4] Univ Los Andes, Syst & Comp Engn, Bogota, Colombia

来源：

IEEE SOFTWARE | 2018年 / 35卷 / 01期

关键词：

cyber-physical systems; cybersecurity; incident response; industrial control systems; network function virtualization; NFV; SDN; software development; software engineering; software safety; software security; software-defined networking; software-defined networks;

D O I：

10.1109/MS.2017.4541054

中图分类号：

TP31 [计算机软件];

学科分类号：

081202 ; 0835 ;

摘要：

In the past decade, the security of industrial control systems has emerged as a research priority in order to safeguard our critical infrastructures. A large number of research efforts have focused on intrusion detection in industrial networks; however, few of them discuss what to do after an intrusion has been detected. Because the safety of most of these control systems is time sensitive, we need new research on automatic incident response. This article shows how software-defined networks and network function virtualization can facilitate automatic incident response to a variety of attacks against industrial networks. It also presents a prototype of an incident-response solution that detects and responds automatically to sensor attacks and controller attacks. This work shows the promise that cloud-enabled software-defined networks and virtual infrastructures hold as a way to provide novel defense-in-depth solutions for industrial systems. This article is part of a special issue on Software Safety and Security Risk Mitigation in Cyber-physical Systems. © 1984-2012 IEEE.

引用

页码：44 / 50

页数：7

共 10 条

[1]

[Anonymous], 2016, CCS, DOI [DOI 10.1145/2976749, DOI 10.1145/2976749.2978388]

[2]

[Anonymous], PROC ACM CONF SIGCOM

[3]

Antonioli D., 2015, P 1 ACM WORKSH CYB P, P91

[4]

Aydeger A, 2015, 2015 IEEE CONFERENCE ON NETWORK FUNCTION VIRTUALIZATION AND SOFTWARE DEFINED NETWORK (NFV-SDN), P31, DOI 10.1109/NFV-SDN.2015.7387401

[5]

Dong X, 2015, PROC 1 ACM WORKSHOP, P61

[6]

Lantz B., 2010, P 9 ACM SIGCOMM WORK, P1, DOI [10.1145/1868447.1868466, DOI 10.1145/1868447.1868466]

[7]

Lee R. M., 2016, Analysis of the cyber attack on the Ukrainian power grid: Defense use case

[8]

Mathur AP, 2016, 2016 INTERNATIONAL WORKSHOP ON CYBER-PHYSICAL SYSTEMS FOR SMART WATER NETWORKS (CYSWATER), P31, DOI 10.1109/CySWater.2016.7469060

[9]

Riley M., 2017, Russians are suspects in nuclear site hackings, sources say

[10] Software-Defined Industrial Internet of Things in the Context of Industry 4.0 [J].

Wan, Jiafu ;

Tang, Shenglong ;

Shu, Zhaogang ;

Li, Di ;

Wang, Shiyong ;

Imran, Muhammad ;

Vasilakos, Athanasios V. .

IEEE SENSORS JOURNAL, 2016, 16 (20) :7373-7380

← 1 →