The National Institute of Standards and Technology (NIST) is developing a cybersecurity testbed for industrial control systems (ICS). The goal of this testbed is to measure the performance of an ICS when instrumented with cybersecurity protections in accordance with practices prescribed by prevailing standards and guidelines. This paper outlines the testbed design and lists research goals, use cases and performance metrics currently being considered. The paper is also intended to initiate discussion between control and security practitioners - two areas that have had little interaction in the past. Research outcomes from the testbed will highlight specific cases where security technologies impact control performance as well as motivate methods by which control engineers can leverage security engineering to design control algorithms that extend safety and fault tolerance to include advanced persistent threats.
A Cybersecurity Testbed for Industrial Control Systems Richard Candell; Keith A. Stouffer; Dhananjay Anand; Process Control and Safety Symposium 2014, Proceedings of the 2014 Process Control and Safety Symposium, 16 pp., Houston, TX, October 6-9, 2014, http://www.nist.gov/manuscript-publication-search.cfm?pub_id=915876