Design and evaluation of a cyber range exercise for hydroelectric power plants
摘要
Cyber range exercises are an effective instrument for cybersecurity training and evaluation, yet exercises specifically tailored to hydroelectric power plants remain scarce. This paper presents the design and evaluation of a cyber range exercise dedicated to hydroelectric power plants, modeling a simplified yet realistic control architecture and operational behavior. Hydroelectric power plants are critical components of modern energy systems and are increasingly exposed to cyber threats due to their reliance on networked control systems. The proposed exercise is based on a structured scenario that supports hands-on training as well as the evaluation of incident detection and response capabilities. Results from participant-based evaluations indicate that the cyber range enables realistic training and reveals domain-specific challenges, highlighting its potential to improve cyber resilience in critical energy infrastructure.