Main menu:

• Home
• Consulting
• Research
• Events
• Subscribe
• About Us
• Resources

 

 

 

AAA  AAA 

Research

The team at Digital Bond is always looking for interesting SCADA security research projects, and we have a list of leading and bleeding edge projects that await a funding source. If you are interested in funding a research project please contact us at info@digitalbond.com. We are very grateful for our past and existing sponsors and look for any opportunity to give them the credit they deserve. 

Digital Bond’s applied research has actually made a difference in the state of control system community. We place great emphasis during the project selection and construction on how the results will be made available and benefit asset owners. Most of the results of Digital Bond’s research is available in our Resources section of this web site. 

Our current SCADA security research projects include:

Bandolier

How do asset owners test their control systems at deployment and periodically to insure they are following best security practice? Without crashing the systesm? The answer: Bandolier.

In this project Digital Bond is developing security audit files for up to 20 different control system workstations or servers. The audit files can be used with the Nessus Vulnerability Scanner and other vulnerability scanners to compare a deployed system with the recommended gold standard. Any deviations from the gold standard will be noted in the report.

Portaledge

This project aims to leverage the aggregation and correlation capabilities in OSIsoft’s widely deployed PI server to detect cyber attacks. Data sources such as PLC’s, SCADA apps, OPC and ICCP servers, routers, firewalls, IDS, servers, workstations and more will send Digital Bond identified security events to PI. We then will use PI’s ACE capability to correlate these individual events into what we are calling a meta security event.

While this project is designed around the PI server, the results will be generalized and made available so other historians or SEM’s with a correlation capability can detect these meta security events.

SCADA Honeynet

Digital Bond developed a PLC honeypot and integrated this with technology from the Honeynet Project to create a SCADA Honeynet. The solution is easily deployable as VM server images and requires little knowledge of honeynets or PLC’s. We are also monitoring SCADA Honeynets to detect and analyze attack data.

Work continues on this project to add additional control system components, such as HMI or control server, to the SCADA Honeynet.

Past Projects

• Control System IDS Signatures
• Nessus Control System Plugins