Home

Dartmouth Crest
The I3P is managed
by Dartmouth College


Contact Us
Home > Publications >

Survivability and Recovery of Process Control Systems Publications

Listed Below are the publications reported to the I3P as part of the Survivability and Recovery of Process Control Systems Project (2007-2009). If a publication is not listed here and you think it should be please send it to the I3P Administrative Office.

 PCS Tool Fact Sheets

Current:

DEADBOLT- Source code checking tool
SecSS - Security Services Suite
RiskMAP - Tool for building a business case for investing in security
APT - Access Policy Tool.  For the latest information on APT, visit http://www.perform.csl.uiuc.edu/apt/ or write to apt-info@iti.uiuc.edu.
NACIO - Non-Obstrusive Authentication of Critical Infrastructure Operators
OPSIM - Operator Response Training Simulator
PCS Overview - Process Control System project overview

 

Past:

SHARP — Security-Hardened Attach Resistant Platform (formerly called 'HSMTU')
EMERALD — intrusion detection and event correlation for PCS
CDIS — Prototype for demonstrating secure information sharing
21 Steps - Security Metrics Tool
AAC - Anonymous, Authenticated Communication
IIM - Inoperability Input-Output Model
P-STET - PCS Security Technology Evaluation Tool
Security Metrics - Tools for Evaluating Security Performance
PCS Progress Summary - February, 2007

Journal Articles:

  • David Nicol, William Sanders, Sankalp Singh, Mouna Seri. Useable Global Network Access Policy for PCS. Published in IEEE S&P Special Issue on PCS. December 2008.
  • Charles Palmer & Ron Truelle. PCS Security-Bootstrapping a Legacy. Published in IEEE Security and Privacy. November 2008.
  • Sankalp Singh, William H. Sanders, David M. Nicol, and Mouna Seri. Automatic Verification of Distributed and Layered Security Policy Implementations. Submitted for publication to the 11th International Symposium on Rapid Advances in Intrusion Detection (RAID 2008).

Presentations:

  • Rodrigo Chandia. Assessing the Integrity of Field Devices in Modbus-based Pipeline Control Networks. presented at the 2nd annual IFIP WG 11.10 International Conference on Critial Infrastructure Protection. March 16-19, 2008.
  • Benjamin Cook. AConcept of Operations to Ensure System-Level Survivability and Recovery. presented at the I3P Process Control System Security Workshop. March 6, 2008.
  • Robert Cunningham. Survivability and Recovery of Process Control Systems (new project update). presented at I3P Consortium meeting. June 5-6, 2007.
  • Robert Cunningham. PCS Security Project Kickoff. presented at the PCS Security Project Kickoff meeting. June 6, 2007.
  • Robert Cunningham. Survivability and Recovery of Process Control Systems: Project Overview and Status. presented at the I3P Advisory Board meeting. September 26, 2007.
  • Robert Cunningham. Survivability and Recovery of Process Control Systems (project update). presented at the I3P Consortium meeting. September 27-28, 2007.
  • Robert Cunningham. Survivability and Recovery of Process Control Systems: Project overview and status. presented at the PCS Team Project review meeting. December 12, 2007.
  • Robert Cunningham. Securing Process Control Systems. presented at the Northeastern EntreTech forum. 2008.
  • Robert Cunningham. A Practical Approach to Cyber Security within Control Systems Environment. presented at the 2008 SANS SCADA and Control Systems Security Summit. January 16-17, 2008.
  • Robert Cunningham. Survivability and Recovery of Process Control Systems: Project overview. presented at the I3P Process Control System Security Workshop. March 6, 2008.
  • Robert Cunningham. Survivability and Recovery of Process Control Systems: Project status. presented at the I3P Consortium Meeting. March 20-21, 2008.
  • Ulf Lindqvist. Process Control Security Research Projects. panel discussion at the 2008 SANS SCADA and Control Systems Security Summit. January 16-17, 2008.
  • Annie McIntyre. Control System Security - Mitigation and Sustainability. presented at the ISSA South Texas Monthly meeting/forum. 2008.
  • Mauricio Papa. Cyber Security for Process Control Systems. presented at the Tulsa Techfest - 2007. October 19, 2007.
  • Ray Parks. Setting the Stage for Interactive Demos. presented at the I3P Process Control System Security Workshop. March 6, 2008.
  • Ronald Pawlowski. SHARP Single Appliance Prototype Related Research and Technology Transfer Plans. presented via teleconference at the PCS Security Project Kickoff meeting. June 6, 2007.
  • Ronald Pawlowski. Ensuring Security of Legacy Systems. presented at the I3P Advisory Board meeting. September 26, 2007.
  • Ronald Pawlowski. Ensuring Survivability of Legacy Systems. presented at the PCS Team Project review meeting. December 12, 2007.
  • Ronald Pawlowski. Hardening Security for Existing PCS Networks. presented at the I3P Process Control System Security Workshop. March 6, 2008.
  • Sujeet Shenoi. SCADA Systems Security. presented at the Air Force Institute of Technology. April 6, 2007.
  • Sujeet Shenoi. SCADA Systems Security. presented at the U.S. Secret Service Conference. June 28, 2007.
  • Sujeet Shenoi. Securing Critical Infrastructure Protection. presented at INFORMS International Conference. July 10, 2007.
  • Sujeet Shenoi. Securing Cirtical Infrastructure Assets. presented at the Oklahoma IT Symposium. August 28th,2007.
  • Sujeet Shenoi. Keeping America Running:Strategies for securing infrastructure assets. presented for the Society for Information Management. September 10, 2007.
  • Sujeet Shenoi. Cyber Terrorism. presented for the Oklahoma Emergency Management Association. September 18, 2007.
  • Sujeet Shenoi. Attacking and Defending Critical Infrastructure Assets. presented at the NSA 2007 Computer Network Attack Conference. October 24, 2007.
  • Sujeet Shenoi. Attacking and Defending Critical Infrastructure Assets. presented at the 2nd annual API IT Security Conference. November 7, 2007.
  • Sujeet Shenoi. Attack taxonomies for the Modibus Serial and TCP Protocols. presented at the 2nd annual IFIP WG 11.10 International Conference on Critical Infrastructure Protection. March 16-19, 2008.
  • Zach Tudor. Process Control and SCADA Systems Security - Challenges and Solutions. panel discussion at the 2nd annual IFIP WG 11.10 International Conference on Critical Infrastructure Protection. March 16-19, 2008.
  • Michael Zhivich. Discovering DoS Vulnerabilities through Software Analysis. Presented at the PCS Security Project Kickoff meeting. June 6, 2007.
  • Michael Zhivich. Ensuring Survivability of Legacy and Future Platforms and Applications. presented at the I3P Advisory Board meeting. September 26, 2007.
  • Michael Zhivich. Ensuring Survivability of Legacy and Future Platforms and Applications. presented at the PCS Team Project review meeting. December 12, 2007.
  • Michael Zhivich. Improving Robustness of PCS Software: How to discover vulnerabilities before deployment. presented at the I3P Process Control System Security Workshop. March 6, 2008.

Books:

  • Sujeet Shenoi and Eric Goetz eds. Critical Infrastructure Protection. Springer, Boston. 2007.

Last Updated: 12/23/09