If cybersecurity in Information Technology (IT) is a fully grown adult, cybersecurity in Operational Technology (OT) is still in its infancy. The unique security challenges presented by industrial environments require training that combines knowledge of industrial automation and cybersecurity. In response to this need, a laboratory dedicated to cybersecurity training in industrial environments has been launched at the Comillas Pontifical University. The main objective of this laboratory is to raise awareness and provide training in logical industrial security through various scenarios, as well as to research potential attacks and their mitigation. This article details the creation of this laboratory, developed in collaboration with Fortinet, based on a pre-existing industrial automation laboratory. The scenarios implemented are described in detail, ranging from attacks on Windows machines deployed in a virtualized environment to attacks on actual industrial control hardware, as well as possible mitigations such as firewall rule activation or network segmentation.

错误:搜索内容不能为空,请输入英文关键词
错误:关键词超出字数限制,请精简
高级检索

Integration of an OT Cybersecurity Lab into an Industrial Automation Lab

  • Alejandro Manuel López Gómez,
  • Farid Bagheri-Gisour Marandyn,
  • Jaime Mohedano,
  • Atanasio Carrasco,
  • Agustín Valencia,
  • José Antonio Rodríguez-Mondejar,
  • Roberto Gesteira-Miñarro,
  • Néstor Rodríguez Pérez,
  • Rafael Palacios,
  • Javier Jarauta,
  • Gregorio López López

摘要

If cybersecurity in Information Technology (IT) is a fully grown adult, cybersecurity in Operational Technology (OT) is still in its infancy. The unique security challenges presented by industrial environments require training that combines knowledge of industrial automation and cybersecurity. In response to this need, a laboratory dedicated to cybersecurity training in industrial environments has been launched at the Comillas Pontifical University. The main objective of this laboratory is to raise awareness and provide training in logical industrial security through various scenarios, as well as to research potential attacks and their mitigation. This article details the creation of this laboratory, developed in collaboration with Fortinet, based on a pre-existing industrial automation laboratory. The scenarios implemented are described in detail, ranging from attacks on Windows machines deployed in a virtualized environment to attacks on actual industrial control hardware, as well as possible mitigations such as firewall rule activation or network segmentation.