Text size
  • Small
  • Medium
  • Large
  • Standard
  • Blue text on blue
  • High contrast (Yellow text on black)
  • Blue text on beige

    Defense-in-depth vs. Critical Component Defense for Industrial Control Systems

    4th International Symposium for ICS & SCADA Cyber Security Research 2016 (ICS-CSR 2016)

    23 - 25 August 2016, Queen's Belfast University, UK.


    Andrew Fielder, Tingting Li & Chris Hankin



    Originally designed as self-contained and isolated networks, IndustrialControl Systems (ICS) have evolved to become increasingly interconnected with IT systems and other wider networks and services, which enables cyber attacks to sabotage the normal operation of ICS. This paper proposes a simulation of attackers and defenders, who have limited resources that must be applied to either advancing the technology they have available to them or attempting to attack (defend) the system. The objective is to identify the appropriate deployment of specific defensive strategy, such as Defense-in-depth and Critical Component Defense. The problem is represented as a strategic competitive optimisation problem, which is solved using a coevolutionary Particle Swarm Optimisation problem. Through the development of optimal defense strategies, it is possible to identify when each specific defensive strategies is most appropriate; where the optimal defensive strategy depends on the kind of attacker the system is expecting and the structure of the network.


    PDF file PDF Version of this Paper 2,110(kb)