IRRIIS GdS: La Security nei sistemi di controllo e automazione, nelle reti e infrastrutture San Felice (MI), 26 giugno 2007 - Pagina 1 Il Progetto IRRIIS.

Slides:



Advertisements
Similar presentations
2017/3/25 Test Case Upgrade from “Test Case-Training Material v1.4.ppt” of Testing basics Authors: NganVK Version: 1.4 Last Update: Dec-2005.
Advertisements

Smart Motor Management
IT Service Continuity Management
Zhongxing Telecom Pakistan (Pvt.) Ltd
Chapter 1: The Database Environment
No 1 IT Governance – how to get the right and secured IT services Bjorn Undall and Bengt E W Andersson The Swedish National Audit Office Oman
1 Evaluation of Commercial Off The Shelf (COTS) Operating System (OS) Malfunction Mitigation Methods C. Forni, ATK B. Blake, ATK R. Hall, Textron D. Magidson,
ASYCUDA Overview … a summary of the objectives of ASYCUDA implementation projects and features of the software for the Customs computer system.
Cultural Heritage in REGional NETworks REGNET Project Meeting Content Group Part 2: Functional Testing.
1 Introduction to Safety Management April Objective The objective of this presentation is to highlight some of the basic elements of Safety Management.
By Rick Clements Software Testing 101 By Rick Clements
CoAKTing IFD Dave in Hawaii. 2 CoAKTing IFD n Objective is to advance the state of the art in collaborative mediated spaces for distributed e- Science.
2-1-1 Disaster Data Management System AIRS Conference – New Orleans 2 nd Session May 23, 2012.
Overview of China Spatial Information Gird (SIG) Research Works Presentation to WGISS-16 Chiang Mai, Thailand September 15, 2003 Pro. Liu Dingsheng, Dr.
Business Transaction Management Software for Application Coordination 1 Business Processes and Coordination.
SOA for EGovernment 1 Emergency Services Enterprise Framework: A Service-Oriented Approach Sukumar Dwarkanath COMCARE Michael Daconta Oberon Associates.
Grid Checkpoining Architecture Radosław Januszewski CoreGrid Summer School 2007.
NexSAT NexSAT Steering Group Meeting - 8 June 2004 © 2004 European Organisation for the Safety of Air Navigation (EUROCONTROL) 1 Welcome to the 4th meeting.
Jeopardy Q 1 Q 6 Q 11 Q 16 Q 21 Q 2 Q 7 Q 12 Q 17 Q 22 Q 3 Q 8 Q 13
Jeopardy Q 1 Q 6 Q 11 Q 16 Q 21 Q 2 Q 7 Q 12 Q 17 Q 22 Q 3 Q 8 Q 13
Addition Facts
Year 6 mental test 5 second questions
Making the System Operational
IAEA Training in Emergency Preparedness and Response Module L-051 General Concepts of Exercises to Test Preparedness Lecture.
LOGO Safety Through Prevention – Safe Switching Using Smart Key Technology Shuqiang Jin, Unitech, Zhuhai, China Nan Liu Youru Huang, SERCC EPRI's 14th.
© 2007 Cisco Systems, Inc. All rights reserved.Cisco Public ITE PC v4.0 Chapter 6 1 Chapter 6: Laptops and Portable Devices IT Essentials: PC Hardware.
1 Learning Through Innovation Dissemination Meeting.
Software change management
EMS Checklist (ISO model)
Effective Test Planning: Scope, Estimates, and Schedule Presented By: Shaun Bradshaw
1 Washington, Oct. 2nd 2013 Informal working group: Large Lithium batteries testing RECHARGE & SAFT.
Dr.-Ing. Halid Hrasnica Eurescom GmbH – AIM project coordinator Intermediary conference of the European thematic network.
The importance of the service catalogue to the service desk
ABC Technology Project
1 of 27 DA1241 Archive Companies Last updated: March-2004 DA1241 Archive Companies.
1 Storm Center ® Online Outage Map Tim Prince, Emergency Operations Bob Williamson, GIS Support
International Course on Development and Disasters with Special Focus on Health February 10 – 21, 2003: St Anns, Jamaica CDERA Experience in Institutional.
Knowledge requirements for rolling stock maintenance TU Eindhoven – 19th of June 2007 by Bob Huisman NedTrain - Fleet Management.
HORIZONT TWS/WebAdmin TWS/WebAdmin for Distributed
Lecture 8: Testing, Verification and Validation
NIMS Resource Management IS-700.A – January 2009 Visual 5.1 NIMS Resource Management Unit 5.
SIMOCODE-DP Software.
25 seconds left…...
Chapter 10: The Traditional Approach to Design
Systems Analysis and Design in a Changing World, Fifth Edition
We will resume in: 25 Minutes.
Module 12 WSP quality assurance tool 1. Module 12 WSP quality assurance tool Session structure Introduction About the tool Using the tool Supporting materials.
©2008 Prentice Hall Business Publishing, Auditing 12/e, Arens/Beasley/Elder The Impact of Information Technology on the Audit Process Chapter 12.
André Augustinus 15 March 2003 DCS Workshop Safety Interlocks.
North American Electric Reliability Council 1 Coordinate Operations Standard Jason Shaver Standard Drafting Team Chair September 29, 2005.
©Ian Sommerville 2006Software Engineering, 8th edition. Chapter 30 Slide 1 Security Engineering 2.
Improving System Safety through Agent-Supported User/System Interfaces: Effects of Operator Behavior Model Charles SANTONI & Jean-Marc MERCANTINI (LSIS)
Introduction to IRRIIS testing platform IRRIIS MIT Conference ROME 8 February 2007 Claudio Balducelli.
Preparing for Power Outages Like any other part of the infrastructure, electrical power to the campus can fail, either as an isolated incident (e.g., tripped.
Reliability Software1 Reliability Software Minimum requirements & Best practices Frank Macedo - FERC Technical Conference July 14, 2004.
IRRIIS SimCIP Demo (version 0.8- May 2009) IRRIIS European Project – Antonio Di Pietro – ENEA.
IRRIIS – Integrated Risk Reduction of Information-based Infrastructure Systems Workshop - Middleware Improved Technology for Interdependent Critical Infrastructures.
A project under the 7th Framework Programme CPS Workshop Stockholm 12/04/2010 Gunnar Björkman Project Coordinator A Security Project for the Protection.
MIT Requirements for TLC IRRIIS MIT Conference ROME 8 February 2007 Giustino FUMAGALLI Arnaud ANSIAUX.
Global test beds for control, safety, security and dependability in ICT-Enabled Critical Infrastructures From SAFEGUARD Intrusion Detection Test Environment.
S. Bologna, C. Balducelli, A. Di Pietro, L. Lavalle, G. Vicoli ENERSIS 2008 Milano, 17 Giugno, 2008 Una strategia per.
Sandro Bologna - ENEA Claudio Balducelli – YLICHRON (ENEA) Massimo Gallanti - CESI Ricerca Workshop – AICT Roma 6 Dicembre, 2007 ICT nella gestione del.
Introduction to IRRIIS MIT Add-On Components IRRIIS, CRUTIAL & GRID Review Meeting 15 March 2007, Brussels Sandro Bologna.
IRRIIS-FP6-2005–IST-4 IRRIIS Project Overview 3rd Public IRRIIS Workshop September 6, 2007, Bonn, Hotel Königshof Erich Rome, FhG-IAIS.
“Systematic Experimentation and Demonstration activities” IRRIIS AB Meeting Ottobrunn, 20th May 2008 Sandro Bologna ENEA.
Introduction to the IRRIIS Simulation SimCIP Césaire Beyel.
Introduction to IRRIIS MIT Add-On Components Middleware Improvement Technology for Interdependent Critical Infrastructure 08 February 2007, Rome Giordano.
MIT Communication & Risk Management Language Workshop - Middleware Improved Technology for Interdependent Critical Infrastructures 8 February 2007, Rome.
IDEA Improving Damage assessments to Enhance cost-benefit Analyses Call Identifier: Prevention 1. Actions on the economics of investing in disaster risk.
Simulation Experiments: Emerging Instruments for CIP Dresden 5 th of October 2007 Walter Schmitz.
Presentation transcript:

IRRIIS GdS: La Security nei sistemi di controllo e automazione, nelle reti e infrastrutture San Felice (MI), 26 giugno Pagina 1 Il Progetto IRRIIS e la protezione delle infrastrutture critiche informatizzate ANIPLA Giornata di studio La Security nei sistemi di controllo ed automazione, nelle reti ed infrastrutture Milano, 26 giugno 2007 Sandro Bologna Claudio Balducelli

IRRIIS GdS: La Security nei sistemi di controllo e automazione, nelle reti e infrastrutture San Felice (MI), 26 giugno Pagina 2 IRRIIS Focus Information and Communication Technology (ICT) underpins all LCCIs (Inter-)Dependencies between LCCIs are not well understood up to now Danger of cascading, escalating or common cause failures Dependencies / Interdependencies

IRRIIS GdS: La Security nei sistemi di controllo e automazione, nelle reti e infrastrutture San Felice (MI), 26 giugno Pagina 3 IRRIIS Focus Dependencies between critical infrastructures, especially electricity & telecommunication Modelling and simulation of systems of critical infrastructures Enabling cross-sector, cross-border communication between critical infrastructures Risk assessment and mitigation regarding dependencies

IRRIIS GdS: La Security nei sistemi di controllo e automazione, nelle reti e infrastrutture San Felice (MI), 26 giugno Pagina 4 IRRIIS Partners LCCI Stakeholder Gruppo Telecom Italia Red Eléctrica de España, Spain ACEA, Italy Research Partners Italian National Agency for New Technology, Energy and the Environment École Nationale Supérieure des Télécommunications, France Centre for Software Reliability at City University London, Great Britain Technical University Dresden, Germany Netherlands Organisation for Applied Scientific Research Technology Provider Alcatel-Lucent, France Siemens AG, Germany Advanced Industrial Systems Ltd., Malta Consultant & Service Provider Industrieanlagen- Betriebsgesellschaft mbH, Germany Aplicaciones en Informática Avanzada, Spain Fraunhofer Institute Intelligent Analysis and Information Systems, Germany Fraunhofer Institute Secure Information Technology, Germany Technical Research Centre of Finland

IRRIIS GdS: La Security nei sistemi di controllo e automazione, nelle reti e infrastrutture San Felice (MI), 26 giugno Pagina 5 MIT Introduction MIT is a software system aiming at enhancing the availability and survivability of LCCIs by mitigating dependency and interdependency effects. Communication Components. Add-On Components. Other software resources (Databases,GUI, Configuration Files, Run-Time Environment, etc.)

IRRIIS GdS: La Security nei sistemi di controllo e automazione, nelle reti e infrastrutture San Felice (MI), 26 giugno Pagina 6 ITALY BLACK-OUT September 2003 Event tree from UCTE report Pre-incident network in n-1 secure state Network in (n-1) state with short- term 15 allowable overload Network in (n-2) state with excessive overload of remaining lines Separatio n of Italy from the UCTE main Grid Island operation fails due to unit tripping AND 1st tree flashover line tripping 2nd tree flashover line tripping Italy disconnected Tripping of many power units AND NETWORK STATE OVERVIEW & ROOT CAUSES 1 Unsuccessful re- closing of the Luckmainer line because of a too high phase angle difference 2 Lacking a sense of urgency regarding the San Bernardino line overload and call for inadequate countermeasures in Italy 3 Angle instability and Voltage collapse in Italy 24 min. 1-2 min. Safe network state Endangered network state Disturbed network state Collapsed network Event Root cause Legend

IRRIIS GdS: La Security nei sistemi di controllo e automazione, nelle reti e infrastrutture San Felice (MI), 26 giugno Pagina 7 Roma Mini TELCO Black-out January 2004 Pre-incident TELCO network in secure state Station continue working with decreased battery autonomy Many external Telco services go down, as the ACEA data links between control centers The normal power supply from ACEA was restarted Return to normal state AND Trip of main power supply Loss of power supply Damaged equipment replaced Telco services restart AND NETWORK STATE OVERVIEW & ROOT CAUSES 1 Flood on the apparatus room of the Telco SGT station. UPS start from batteries 2 The battery autonomy finished as Fire Brigate was not able to eliminate water in time. 3 The full functionality of the SGT station is restored 4 hours 90 min. Safe network state Endangered network state Disturbed network state Collapsed network Event Root cause Legend

IRRIIS GdS: La Security nei sistemi di controllo e automazione, nelle reti e infrastrutture San Felice (MI), 26 giugno Pagina 8 Control Room with MIT WorkStation LCCI 1 LCCI 2 MIT WorkStation Control Room

IRRIIS GdS: La Security nei sistemi di controllo e automazione, nelle reti e infrastrutture San Felice (MI), 26 giugno Pagina 9 MIT integration with existing SCADA systems

IRRIIS GdS: La Security nei sistemi di controllo e automazione, nelle reti e infrastrutture San Felice (MI), 26 giugno Pagina 10 IRRIIS Inter-LCCI Communication Highway LCCI 1 LCCI 2 MIT integration with existing SCADA systems

IRRIIS GdS: La Security nei sistemi di controllo e automazione, nelle reti e infrastrutture San Felice (MI), 26 giugno Pagina 11 MIT Add-On Components Functional Requirements DETECT AS EARLY AS POSSIBLE the anomalous status and NOTIFY it to the dependent infrastructures. PROVIDE EARLY WARNING of deteriorating system conditions to internal and/or external LCCI operators. ESTIMATE the probability of disrupt of his own LCCI and NOTIFY to the dependent infrastructures.

IRRIIS GdS: La Security nei sistemi di controllo e automazione, nelle reti e infrastrutture San Felice (MI), 26 giugno Pagina 12 MIT Add-On Components Requirements ASSESS the own infrastructure RISK due to information about neighbouring status. PREVENT incident to mitigate cascading effects on dependent infrastructures. HANDLE THE EMERGENCY if needed by negotiating coordinate actions

IRRIIS GdS: La Security nei sistemi di controllo e automazione, nelle reti e infrastrutture San Felice (MI), 26 giugno Pagina 13 Overall MIT architecture

IRRIIS GdS: La Security nei sistemi di controllo e automazione, nelle reti e infrastrutture San Felice (MI), 26 giugno Pagina 14 MIT Add-On Components Internal Assessment –Tool to extract LCCI functional status Risk Assessment –Risk Estimator –Incident Knowledge Analyser Emergency Management –Assessment of cascading/escalating effects –Display of Emergency Management Procedures –Negotiator

IRRIIS GdS: La Security nei sistemi di controllo e automazione, nelle reti e infrastrutture San Felice (MI), 26 giugno Pagina 15 Internal Assessment functions Information extraction and fusion from different existing tools and SCADA data bases. Use the previous information to evaluate the current functional status of the LCCI. Predict the possible future states, based on the actual state and the future scheduled events.

IRRIIS GdS: La Security nei sistemi di controllo e automazione, nelle reti e infrastrutture San Felice (MI), 26 giugno Pagina 16 Internal Assessment Workflow

IRRIIS GdS: La Security nei sistemi di controllo e automazione, nelle reti e infrastrutture San Felice (MI), 26 giugno Pagina 17 Internal Assessment Benefits Provide the local operator with a unique picture about the current and future internal LCCI state, allowing him to enable or disable information sharing with the neighbouring LCCIs. Provide input for neighbouring LCCIs about the local infrastructure status. Provide input for neighbouring LCCIs about the future predicted infrastructure states.

IRRIIS GdS: La Security nei sistemi di controllo e automazione, nelle reti e infrastrutture San Felice (MI), 26 giugno Pagina 18 Incident Knowledge Analyser functions It will be able to assess and fuse information from multiple databases containing past incidences. It will check immediately whether on-going failures are notified as causes of major incidents in the past. It will extract possible known cascading effects of on-going failures. It will store new incidents.

IRRIIS GdS: La Security nei sistemi di controllo e automazione, nelle reti e infrastrutture San Felice (MI), 26 giugno Pagina 19 Incident Knowledge Analyser fire switch room for high voltage destroyed no power locally trains affected outage of antennas no mobile phone fire in distribution station Rabbits dogs Power short in 150KV-10KV transformer station High temperature weakening of cables households affected 1/7 1/1 4/4 1/1 7/7 1/7 1/1 1/2 Rabbit or dogs makes power short in 150KV-10KV transformer station households affected. | local, medium impact in the Eindhoven area | happenend in: Veldhonen (Netherland), started at 13:00, ended at 18:00

IRRIIS GdS: La Security nei sistemi di controllo e automazione, nelle reti e infrastrutture San Felice (MI), 26 giugno Pagina 20 Incident Knowledge Analyser Benefits Each LCCI operator can make the most of the available knowledge about all the known disruptions, being warned if an on-going failure already happened in the past and led to disruption of operation even if that occurred in other LCCIs (in fact, not all the LCCIs must have experienced the same failures and the related disruptions). LCCI can make the most of findings by other sources, for example research or training outcomes.

IRRIIS GdS: La Security nei sistemi di controllo e automazione, nelle reti e infrastrutture San Felice (MI), 26 giugno Pagina 21 Risk Estimator functions Reasoning about the states of processes and services, mainly focusing on the services to be exchanged with other LCCIs. Estimating the levels of risks associated to services exchanges with other LCCIs. Working on a service-process model of the LCCIs by making use of a fuzzy rules-based mechanism.

IRRIIS GdS: La Security nei sistemi di controllo e automazione, nelle reti e infrastrutture San Felice (MI), 26 giugno Pagina 22 Visualisation of the levels of risks associated to the services LCCI internal state estimation After external & internal states correlation

IRRIIS GdS: La Security nei sistemi di controllo e automazione, nelle reti e infrastrutture San Felice (MI), 26 giugno Pagina 23 Risk Estimator workflow and relations with other add-on components ISRIA INPUTS Internal status table External status table Rule Based Correlation Module Current State DB Expert Rules DB IKA Historical status facts GUI DEMP OUTPUTSINTELLIGENCE Rule Editor Maps of Risks Maps of Risks LEGEND IA: Internal Assesment ISR: Information Subscriber & Reader IKA: Incident Knowledge Analyser DEMP: Display of Emergency Management Procedures GUI: Graphical User Interface Estimated State DB

IRRIIS GdS: La Security nei sistemi di controllo e automazione, nelle reti e infrastrutture San Felice (MI), 26 giugno Pagina 24 Risk Estimator Benefits Make operators more aware about the global LCCIs state, correlating local LCCI and external LCCIs states. Give to the LCCIs operators schematic pictures evidencing the potential risks to loss internal and external services. Improve coordination between the LCCI operator and the neighbouring LCCIs.

IRRIIS GdS: La Security nei sistemi di controllo e automazione, nelle reti e infrastrutture San Felice (MI), 26 giugno Pagina 25 Proposed DEMONSTRATION Logic Set up LAMPSSys RTI GUI Logger Tool 1 Electricity Simulator LCCI 1 Data Telecom Simulator Tool 2 Agent / Scenario Behaviours Analysis 1Analysis 2 Fault / Attack Tool Analysis 3 MIT LCCI 1 Ambiente di simulazione (SimCIP) MIT LCCI 2 Communication Component Add-on Component Comunicazione nellambiente reale Comunicazione nellambiente simulato Ambiente reale (Sistemi SCADA) LCCI 2 Data Middleware

IRRIIS GdS: La Security nei sistemi di controllo e automazione, nelle reti e infrastrutture San Felice (MI), 26 giugno Pagina 26 GUI Logger LAMPSSys RTI Agent / Scenario Behaviours Electricity Simulator Com Simulator LCCI Data Fault / Attack Tool Tool 1 Tool 2 Analysis 1, 2, 3.. SimCIP MIT 1 Electrical LCCI MIT 2 TeleCommunication LCCI Proposed TESTBED Physical Configuration

Feedback: Privacy Policy Feedback
Do Not Sell My Personal Information
About project: SlidePlayer Terms of Service

© 2025 SlidePlayer.com. Inc. All rights reserved.