Giuseppe Settanni , Florian Skopik , Yegor Shovgenya , Roman Fiedler , Helmut Kaufmann , Tobias Gebhardt , Christophe Ponchel , Klaus Theuerkauf , Konstantin Boettinger , Mark Carolan , Damien Conroy , Gavin Davey , Pia Olli , Heimo Pentikaeinen
3rd International Symposium for ICS & SCADA Cyber Security Research 2015 (ICS-CSR 2015) (ICS-CSR)
Industrial Control System & SCADA Cyber Security Research (ICS-CSR)
17 - 18 September 2015
Today’s Industrial Control Systems (ICSs) operating in critical infrastructures (CIs) are becoming more and more complex, moreover they are extensively interconnected with corporate information systems for monitoring, management and maintenance. This increasingly exposes ICSs to modern advanced cyber threats. Existing security solutions try to prevent, detect, and react to cyber threats by employing security measures that typically do not cross the organization’s boundaries. However, novel targeted multistage attacks take advantage of interdependencies between organizations and sequentially affect different infrastructures. A coordinated effort to timely reveal such attacks, and promptly outline mitigation strategies is therefore required. In this positioning paper we introduce a collaborative approach to cyber incident information analysis for gaining situational awareness in a European control system security network.