The 3rd International Symposium for Industrial Control System & SCADA Cyber Security Research (ICS-CSR) brings together researchers with an interest in the security of industrial control systems in the light of their increasing exposure to cyber-space. The papers in this proceedings range from research experience in setting up test-beds for ICS research to descriptions of new attacks and defences against existing industrial control systems.
Preface vi
Extracting Vulnerabilities in Industrial Control Systems using a
Knowledge-Based System 1
Assessing the Security of IEC 62351 11
ICS Threat Analysis Using a Large-Scale Honeynet 20
A Model-based Approach to Interdependency between Safety and Security in ICS
31
A Forensic Taxonomy of SCADA Systems and Approach to Incident Response 42
A Cyber-Physical Security Analysis of Synchronous-Islanded Microgrid
Operation 52
Analysis of Exploitable Vulnerability Sequences in Industrial Networked
Systems: A Proof of Concepts 63
Automated Asset Discovery in Industrial Control Systems - Exploring the
Problem 73
A Blueprint for a Pan-European Cyber Incident Analysis System 84
Cyber Security Maintenance for SCADA Systems 89
Towards Agile Industrial Control Systems Incident Response 95
Multi-Layer Agent-Based Simulation of Network Behaviour in Advanced Metering
Infrastructures 99
Insecure by Design: Using Human Interface Devices to exploit SCADA systems
103
Investigating the Applicability of a Moving Target Defense for SCADA Systems
107
A System to Recognize Intruders in Controller Area Network (CAN) 111
Author Index 115
Dr Helge Janicke is a Reader in Computer Science at De Montfort University, Leicester (UK). He is heading the Software Technology Research Laboratory and is leading research on cyber security. His research interests are in particular the cyber security of industrial control systems, access control and policy-based system management. He is chairing the International Symposium on ICS and SCADA Cyber Security Research and has published widely in this area of research.
Dr Kevin Jones is the Research Team Lead for Airbus Group Innovations Cyber Operations. He is active in the cyber security research community and holds a number of patents within the domain. He has many years experience in consultancy to aid organisations in achieving accreditation to ISO27001 Standard on Information Security Management and lecturing in cyber security. Kevin joined Airbus Group in 2011 where he has worked on risk assessments, security architectures, and cyber operations in ICS/SCADA systems and critical national infrastructure (CNI). He is a Member of BCS, IEEE and ISC2 and is accredited as a Certified Information Systems Security Professional (CISSP) and ISO27001 Lead Auditor.
