Excellence in Research: Cyber Threats Early Warning Framework for Operational Technology Systems

卓越研究：运营技术系统的网络威胁预警框架

• 批准号: 2200538
• 负责人: Sajad Khorsandroo
• 金额: $ 40万
• 依托单位: North Carolina Agricultural & Technical State University
• 依托单位国家: 美国
• 项目类别: Standard Grant
• 财政年份: 2022
• 资助国家: 美国
• 起止时间: 2022-09-01 至 2025-08-31
• 项目状态: 未结题
• 来源: https://www.nsf.gov/awardsearch/showAward?AWD_ID=2200538&HistoricalAwards=false
• 关键词: Excellence; Research; Cyber; Threats; Early

The cyber community is experiencing an imminent shift in cyber-attacks from traditional Information Technology (IT) infrastructures that run business systems to the Operational Technology (OT) infrastructures that control industrial operations. A hasty reaction to this change in the cyber threat landscape has been reusing existing cyber security solutions commonly applied to the IT domain. This is not a robust long-term solution. IT and OT systems are intrinsically different; hence, their attack surfaces and vectors can also be different. Moreover, the cyber community needs to broaden its knowledge about the malicious techniques and methods used by attackers to target OT infrastructures. Accordingly, this project investigates a cyber threats early warning framework for operational technology environments. The project’s outcomes will advance the science of securing operational technology systems and inspiring attack-resilient designs and deployments for such environments. It introduces intelligent-interaction decoys to mimic temporal and spatial characteristics and behavior of heterogeneous operational technology systems. The project also investigates the feasibility of a deep programmable, open, and software-defined infrastructure to facilitate fast, adaptive, and intelligent-assisted attack collection, characterization, and detection/prediction. The proposed framework runs on off-the-shelf commodity servers on the edge of OT domains while its performance and throughput scale exponentially with increased computational power.This award reflects NSF's statutory mission and has been deemed worthy of support through evaluation using the Foundation's intellectual merit and broader impacts review criteria.

网络社区正经历着网络攻击从运行业务系统的传统信息技术（IT）基础设施向控制工业运营的操作技术（OT）基础设施的迫在眉睫的转变。对于网络威胁形势的这种变化，一个草率的反应是重用通常应用于IT领域的现有网络安全解决方案。这不是一个强有力的长期解决方案。IT和OT系统本质上是不同的；因此，它们的攻击面和攻击向量也可能不同。此外，网络社区需要扩大对攻击者用于攻击OT基础设施的恶意技术和方法的了解。因此，该项目研究了用于作战技术环境的网络威胁预警框架。该项目的成果将推进保护作战技术系统的科学，并激发针对此类环境的抗攻击设计和部署。它引入智能交互诱饵来模拟异构操作技术系统的时空特征和行为。该项目还研究了深度可编程、开放和软件定义基础设施的可行性，以促进快速、自适应和智能辅助的攻击收集、表征和检测/预测。所提出的框架运行在OT领域边缘的现成商品服务器上，其性能和吞吐量随着计算能力的增加呈指数级增长。该奖项反映了美国国家科学基金会的法定使命，并通过使用基金会的知识价值和更广泛的影响审查标准进行评估，被认为值得支持。

项目成果

Physics-based and data-driven modeling for biomanufacturing 4.0

基于物理和数据驱动的生物制造 4.0 建模

• 发表时间: 2023
• 期刊: Manufacturing letters
• 影响因子: 3.9
• 作者: Michael Ogunsanya;Salil Desai
• 通讯作者: Salil Desai