| Title | A virtualization-based security architecture for industrial control systems |
| Publication Type | Conference Paper |
| Year of Publication | 2022 |
| Authors | Zhang, Yuqiang, Hao, Zhiqiang, Hu, Ning, Luo, Jiawei, Wang, Chonghua |
| Conference Name | 2022 7th IEEE International Conference on Data Science in Cyberspace (DSC) |
| Date Published | jul |
| Keywords | ICS Honeypot, ICS security, industrial control, industrial control system, industrial control systems, Industrial Control Virtualization, Industrial Internet Secuity, integrated circuits, Production, Prototypes, pubcrawl, Real-time Systems, resilience, Resiliency, Resists, Scalability, Virtual machining |
| Abstract | The Industrial Internet expands the attack surface of industrial control systems(ICS), bringing cybersecurity threats to industrial controllers located in operation technology(OT) networks. Honeypot technology is an important means to detect network attacks. However, the existing honeypot system cannot simulate business logic and is difficult to resist highly concealed APT attacks. This paper proposes a high-simulation ICS security defense framework based on virtualization technology. The framework utilizes virtualization technology to build twins for protected control systems. The architecture can infer the execution results of control instructions in advance based on actual production data, so as to discover hidden attack behaviors in time. This paper designs and implements a prototype system and demonstrates the effectiveness and potential of this architecture for ICS security. |
| DOI | 10.1109/DSC55868.2022.00020 |
| Citation Key | zhang_virtualization-based_2022 |
A virtualization-based security architecture for industrial control systems