Abstract
The introduction of Docker containers ushered the emergence of microservices to facilitate efficient ways to deploy and manage containerized applications. Digital Twins in Industrial Control Systems (ICS) has enabled advances in the test and evaluation of those systems in a low-cost and non-disruptive manner. In this paper, we present our work on advancing the security of Industrial Control Systems through a four-pronged approach: i) provide a safe training infrastructure for ICS security; ii) present an effective avenue for ICS security testing without operational disruption; iii) implement ICS digital twins to enable ICS security training; and iv) facilitate the design, implementation, and evaluation of ICS security tools. To realize these objectives, we propose the utilization of Open Platform Infrastructure (OPI) with Docker technologies to deploy virtualized Programmable Logic Controllers (PLCs), also known as softPLC, and Human Machine Interfaces (HMIs) that can emulate or act as digital twins of ICS. Further, we describe several docker containers instantiated from Dockerfiles to emulate typical Information Technology (IT) and Operation Technology (OT) networks to illustrate the viability and affordability of such implementations for teaching, learning, and testing of ICS security.
Access this chapter
Tax calculation will be finalised at checkout
Purchases are for personal use only
References
Francia, G., Bekhouche, N., Marbut, T., Neuman, C.: Portable SCADA security toolkit. Int. J. Inf. Netw. Secur. 1(4), 265–274 (2012)
Alves, T.R., Buratto, M., De Souza, F.M., Rodrigues, T.V.: OpenPLC: an open source alternative to automation. In: IEEE Global Humanitarian Technology Conference (GHTC 2014), pp. 585–589 (2014)
Park, Y.S., Choi, C.S., Jang, C., Shin, D.G., Cho, G.C., Kim, H.S.: Development of incident response tool for cyber security training based on virtualization and cloud. In: Proc. of the 2019 International Workshop on Big Data and Information Security (IWBIS), Bali, Indonesia (2019)
Ma, S.: Research and design of network information security attack and defense practical training platform based on ThinkPHP framework. In: Proc. of the 2022 2nd Asia-Pacific Conference on Communications Technology and Computer Science (ACCTCS), Shenyang, China (2022)
Barinov, A., Beschastnov, S., Boger, A., Kolpakov, A., Ufimtcev, M.: Virtual environment for researching information security of a distributed ICS. In: Proc. of the 2020 Global Smart Industry Conference (GloSIC), Chelyabinsk, Russia (2020)
Gericke, G.A., Kuriakose, R.B., Vermaak, H., Mardsen, O.: Design of digital twins for optimization of a water bottling plant. In: IECON 2019-45th Annual Conference of the IEEE Industrial Electronics Society, Lisbon, Portugal (2019)
Stein, C., Behr, J.: Industrial use cases: 3D connectivity for digital twins: decoupling 3D data utilization from delivery and file formats on an infrastructure level. In: Proceedings of the 27th International Conference on 3D Web Technology (Web3D 2022), New York, NY (2022)
Kummerow, A., Monsalve, C., Rösch, D., Schäfer, K., Nicolai, S.: Cyber-physical data stream assessment incorporating digital twins in future power systems. In: 2020 International Conference on Smart Energy Systems and Technologies (SEST), Istanbul, Turkey (2020)
Zhang, Y., Zhang, H.: Urban digital twins: decision-making models for transportation network simulation. In: 2022 International Conference on Computational Infrastructure and Urban Planning (CIUP 2022), New York, NY (2022)
Perabo, F., Park, D., Zadeh, K., Smogeli, O., Jamt, L.: Digital twin modelling of ship power and propulsion systems: application of the OpenSimulation platform (OSP). In: 29th International Symposium on Industrial Electronics (ISIE), Delft, Netherlands (2020)
Mone, G.: Biomedical digital twins. Commun. ACM 66(10), 9–11 (2023)
Centomo, S., Dall’ora, N., Fummi, F.: The design of a digital twin for predictive maintenance. In: 25th IEEE International Conference on Emerging Technologies and Factory Automation (ETFA), Vienna, Austria (2020)
Dietz, M., Pernul, G.: Unleashing the digital twin’s potential for ICS security. IEEE Secur. Priv. 18(4), 20–27 (2020)
Akbarian, F., Fitzgerald, E., Kihl, M.: Intrusion detection in digital twins for industrial control systems. In: 2020 International Conference on Software, Telecommunications and Computer Networks (SoftCOM), Split, Croatia (2020)
Eckhart, M., Ekelhart, A., Weippl, E.: Enhancing cyber situational awareness for cyber physical systems through digital twins. In: 24th IEEE International Conference on Emerging Technologies and Factory Automation (ETFA), Zaragoza, Spain (2019)
Docker, Inc., Docker Overview, Docker, Inc. (2023). https://docs.docker.com/get-started/overview/. Accessed 15 Dec 2023
Modbus Organization, MODBUS Messaging on TCP/IP Implementation Guide V1.0b, 24 October 2006. https://modbus.org/docs/Modbus_Messaging_Implementation_Guide_V1_0b.pdf. Accessed 20 Dec 2023
Clarke, G., Reynders, D., Wright, E.: Practical modern SCADA protocols: DNP3, IEC 60870.5 and related systems. Burlington, MA: IDC Technologies, Elsevier Ltd. (2004)
ODVA, Ethernet/IP, 2023. https://www.odva.org/technology-standards/key-technologies/ethernet-ip/. Accessed 20 Dec 2023
Semenkov, K., Promyslov, V., Poletykin, A.: Verification of large scale control systems with hybrid digital models and digital twins. In: 2020 International Russian Automation Conference (RusAutoCon), Sochi, Russia (2020)
Cisco, Snort: https://www.snort.org/. Accessed 22 Dec 2023
Andrawos, M.: Modbus Examiner, 22 June 2017. https://github.com/minaandrawos/ModbusExaminer. Accessed Dec 2023
Rapid7, Rapid7 Metasploit, 2023. https://www.metasploit.com/. Accessed 21 Dec 2023
CLARK, Teach Cyber Today...Secure Tomorrow, 2023. https://clark.center/home. Accessed 22 Dec 2023
Acknowledgement
This work is partially supported by the University of Colorado at Colorado Springs subaward number 20-144-12 under NSA-NCAE-C grant number H98230-20-1-0385 and the University of West Florida Center for Cybersecurity CyberSkills2Work program funded by the NSA National Centers of Academic Excellence (NCAE) Program under grant number H98230-23-1-0089. The United States Government is authorized to reproduce and distribute reprints notwithstanding any copyright notation herein.
Author information
Authors and Affiliations
Corresponding author
Editor information
Editors and Affiliations
Rights and permissions
Copyright information
© 2024 The Author(s), under exclusive license to Springer Nature Switzerland AG
About this paper
Cite this paper
Francia III, G., El-Sheikh, E. (2024). Open Platform Infrastructure for Industrial Control Systems Security. In: Daimi, K., Al Sadoon, A. (eds) Proceedings of the Second International Conference on Advances in Computing Research (ACR’24). ACR 2024. Lecture Notes in Networks and Systems, vol 956. Springer, Cham. https://doi.org/10.1007/978-3-031-56950-0_20
Download citation
DOI: https://doi.org/10.1007/978-3-031-56950-0_20
Published:
Publisher Name: Springer, Cham
Print ISBN: 978-3-031-56949-4
Online ISBN: 978-3-031-56950-0
eBook Packages: Intelligent Technologies and RoboticsIntelligent Technologies and Robotics (R0)