/LICSTER

A Low-cost ICS Security Testbed for Education and Research

Primary LanguageCOtherNOASSERTION

Low-cost ICS Testbed

The project aims to help setup a minimal, low-cost Industrial Control System (ICS) testbest for students, researchers, or anyone with an interest in industrial security. The project contains a list of affordable hardware to build the minimalistic ICS with, instructions, configurations and installation scripts to instantiate the system as well as various attacker scenarios and their implications.

Our goal is to ease the entry into the industrial security sector. Industrial hardware is usually quite expensive as well as mostly proprietary, both of which do not encourage easy learning. With the upcoming of Industry 4.0, however, it has become imperative that the security of industrial networks and components is up to par with the modern cyber risks of the connected world. Practice and knowledge has to accessible and affordable to empower engineers and developers to master the challenges of the fourth industrial revolution.

Although the testbed only comprises of the bare minimum components necessary for an ICS, the concepts and more importantly, the attack scenarios are mostly the same.

Setup with simple Fischertechnik model

The picture shows the setup of the testbed with the HMI and the physical process.

Testbed parameters

This project was set up with the following requirements in mind:

  • Testbed components for about 500 Euro, which is affordable by most researchers and students.
  • A real-world physical process controlled by an ICS, which enables to demonstrate and analyze the impacts of cyber attacks in the real-world.
  • The components are open-source and open-hardware, as far as possible. This allows a wide range of further research.
  • We provide attacker models and attacks to understand threat scenarios in industrial environments.
  • The feasibility of the testbed is shown and ideas for further research and teaching is discussed.

Content

Components

Prerequisites

We try to keep the prerequisites as little as possible to reduce the hurdle for beginners.

Licenses

  • OpenPLC is licensed under GPL-3.0
  • CubeMX generated code for STM32 is copyrighted by STMicroelectronics
  • ScadaLTS is licensed under MIT License