Lightweight Testbed for Cybersecurity Experiments in SCADA-based Systems

Mohsin Khan, Osama Rehman, Ibrahim M.H. Rahman, Saqib Ali

Research output: Chapter in Book/Report/Conference proceedingConference contribution

2 Citations (Scopus)

Abstract

A rapid rise in cyber-attacks on Cyber Physical Systems (CPS) has been observed in the last decade. It becomes even more concerning that several of these attacks were on critical infrastructures that indeed succeeded and resulted into significant physical and financial damages. Experimental testbeds capable of providing flexible, scalable and interoperable platform for executing various cybersecurity experiments is highly in need by all stakeholders. A container-based SCADA testbed is presented in this work as a potential platform for executing cybersecurity experiments. Through this testbed, a network traffic containing ARP spoofing is generated that represents a Man in the middle (MITM) attack. While doing so, scanning of different systems within the network is performed which represents a reconnaissance attack. The network traffic generated by both ARP spoofing and network scanning are captured and further used for preparing a dataset. The dataset is utilized for training a network classification model through a machine learning algorithm. Performance of the trained model is evaluated through a series of tests where promising results are obtained.

Original languageEnglish
Title of host publication2020 International Conference on Computing and Information Technology, ICCIT 2020
PublisherInstitute of Electrical and Electronics Engineers Inc.
ISBN (Electronic)9781728126807
DOIs
Publication statusPublished - Sep 9 2020
Externally publishedYes
Event2020 International Conference on Computing and Information Technology, ICCIT 2020 - Tabuk, Saudi Arabia
Duration: Sep 9 2020Sep 10 2020

Publication series

Name2020 International Conference on Computing and Information Technology, ICCIT 2020

Conference

Conference2020 International Conference on Computing and Information Technology, ICCIT 2020
Country/TerritorySaudi Arabia
CityTabuk
Period9/9/209/10/20

Keywords

  • ARP spoofing
  • Docker
  • Reconnaissance attack
  • SCADA
  • Testbed

ASJC Scopus subject areas

  • Artificial Intelligence
  • Computer Networks and Communications
  • Computer Science Applications
  • Information Systems
  • Information Systems and Management

Fingerprint

Dive into the research topics of 'Lightweight Testbed for Cybersecurity Experiments in SCADA-based Systems'. Together they form a unique fingerprint.

Cite this