Risk Modeling and Cyber Defense Exercise for Critical Infrastructures Security

关键基础设施安全的风险建模和网络防御演习

• 批准号: 1528731
• 负责人: Manimaran Govindarasu
• 金额: $ 15万
• 依托单位: Iowa State University
• 依托单位国家: 美国
• 项目类别: Standard Grant
• 财政年份: 2015
• 资助国家: 美国
• 起止时间: 2015-07-01 至 2017-06-30
• 项目状态: 已结题
• 来源: https://www.nsf.gov/awardsearch/showAward?AWD_ID=1528731&HistoricalAwards=false
• 关键词: Risk; Modeling; Cyber; Defense; Exercise

Many critical infrastructures, such as the power grid, are complex cyber physical systems (CPS). Protecting these systems against cyber-attacks is of paramount importance to national security and economic well-being. Risk assessment considering cyber-attacks against critical infrastructures is not well understood due to ever growing, dynamic threat landscape coupled with complex cyber-physical interactions in these systems. In addition, there is a compelling need to create environments in which realistic attack-defense experiments (including risk assessment and risk mitigation) and training exercises can be safely conducted to advance the science and workforce development in this important area of national need.This project has two key goals: (1) the short-term goal is to design, develop, and demonstrate a cyber defense exercise for improving the security of CPS systems in alignment with the NIST/US Ignite Global Cities Team Challenge; and (2) the long-term goal is to explore fundamental models and algorithms for cyber risk assessment and mitigation. The project makes synergistic federation of three existing security testbeds hosted at Iowa State University and the University of Southern California to create a realistic environment for conducting CPS security experimentation and security preparedness and training exercise, like the North American Reliability Corporation (NERC) GridEx. The intellectual merit of the project lies in two key contributions: (i) realistic experimentations on CPS security testbed federation, and (ii) the development of a novel methodology for cyber risk modeling of CPS systems. The broader impacts of the project lie in developing realistic attack-defense scenarios and learning/training modules that enable academic researchers, students, and industry practitioners to systematically understand, analyze, and improve the security and resiliency of critical infrastructures.

许多关键基础设施，如电网，是复杂的网络物理系统（CPS）。保护这些系统免受网络攻击对国家安全和经济福祉至关重要。考虑到对关键基础设施的网络攻击的风险评估尚未得到很好的理解，因为这些系统中不断增长的动态威胁格局加上复杂的网络物理交互。此外，迫切需要创造一种环境，在这种环境中，（包括风险评估和风险缓解）和培训活动，以促进这一国家需求的重要领域的科学和劳动力发展。（1）短期目标是设计、开发和演示一个网络防御演习，以提高CPS系统的安全性，与NIST/美国城市联盟全球城市团队挑战赛保持一致;以及（2）长期目标是探索网络风险评估和缓解的基本模型和算法。该项目将爱荷华州州立大学和南加州大学托管的三个现有安全测试平台协同联合起来，为进行CPS安全实验、安全准备和培训演习创建一个现实的环境，如北美可靠性公司（NERC）GridEx。该项目的智力价值在于两个关键贡献：（i）CPS安全测试床联合的现实实验，以及（ii）开发CPS系统网络风险建模的新型方法。该项目的更广泛影响在于开发现实的攻击-防御场景和学习/培训模块，使学术研究人员，学生和行业从业者能够系统地理解，分析和提高关键基础设施的安全性和弹性。