Simulation-based framework for authenticating SCADA systems and cyber threat security in edge-based autonomous environments

IF 3.5 2区计算机科学 Q2 COMPUTER SCIENCE, INTERDISCIPLINARY APPLICATIONS

Simulation Modelling Practice and Theory Pub Date : 2025-01-20 DOI:10.1016/j.simpat.2025.103078

Ala Mughaid , Shadi Alzu’bi , Ahmad A.A. Alkhatib , Adel AlZioud , Alaa Al Ghazo , Issa AL-Aiash

{"title":"Simulation-based framework for authenticating SCADA systems and cyber threat security in edge-based autonomous environments","authors":"Ala Mughaid , Shadi Alzu’bi , Ahmad A.A. Alkhatib , Adel AlZioud , Alaa Al Ghazo , Issa AL-Aiash","doi":"10.1016/j.simpat.2025.103078","DOIUrl":null,"url":null,"abstract":"<div><div>Supervisory Control and Data Acquisition (SCADA) systems are pivotal to critical industries, such as oil and gas, water treatment, and power generation, where they enable real-time monitoring and control over complex industrial processes. These systems commonly use protocols like Modbus/RTU, Modbus TCP/IP, DNP3, and IEC60870, each chosen to meet specific operational requirements. However, vulnerabilities in protocols like Modbus TCP/IP, especially in access control, authentication, and data integrity leave SCADA networks susceptible to cyber threats, with risks ranging from process disruption to data breaches or potential physical harm to infrastructure. This study proposes a simulation-based security framework for SCADA environments using the Modbus TCP/IP protocol, incorporating authentication through unique identification bytes, robust encryption to secure communications, and a layered Intrusion Detection and Prevention System (IDS/IPS) to detect and counteract malicious activities. The framework’s effectiveness is demonstrated through simulated scenarios and a real-world case study, showcasing significant resilience against common cyber threats faced by SCADA systems.</div></div>","PeriodicalId":49518,"journal":{"name":"Simulation Modelling Practice and Theory","volume":"140 ","pages":"Article 103078"},"PeriodicalIF":3.5000,"publicationDate":"2025-01-20","publicationTypes":"Journal Article","fieldsOfStudy":null,"isOpenAccess":false,"openAccessPdf":"","citationCount":"0","resultStr":null,"platform":"Semanticscholar","paperid":null,"PeriodicalName":"Simulation Modelling Practice and Theory","FirstCategoryId":"94","ListUrlMain":"https://www.sciencedirect.com/science/article/pii/S1569190X25000139","RegionNum":2,"RegionCategory":"计算机科学","ArticlePicture":[],"TitleCN":null,"AbstractTextCN":null,"PMCID":null,"EPubDate":"","PubModel":"","JCR":"Q2","JCRName":"COMPUTER SCIENCE, INTERDISCIPLINARY APPLICATIONS","Score":null,"Total":0}

引用次数: 0

Abstract

Supervisory Control and Data Acquisition (SCADA) systems are pivotal to critical industries, such as oil and gas, water treatment, and power generation, where they enable real-time monitoring and control over complex industrial processes. These systems commonly use protocols like Modbus/RTU, Modbus TCP/IP, DNP3, and IEC60870, each chosen to meet specific operational requirements. However, vulnerabilities in protocols like Modbus TCP/IP, especially in access control, authentication, and data integrity leave SCADA networks susceptible to cyber threats, with risks ranging from process disruption to data breaches or potential physical harm to infrastructure. This study proposes a simulation-based security framework for SCADA environments using the Modbus TCP/IP protocol, incorporating authentication through unique identification bytes, robust encryption to secure communications, and a layered Intrusion Detection and Prevention System (IDS/IPS) to detect and counteract malicious activities. The framework’s effectiveness is demonstrated through simulated scenarios and a real-world case study, showcasing significant resilience against common cyber threats faced by SCADA systems.

查看原文本刊更多论文

求助全文

约1分钟内获得全文求助全文

来源期刊

Simulation Modelling Practice and Theory 工程技术-计算机：跨学科应用

CiteScore

9.80

自引率

4.80%

发文量

142

审稿时长

21 days

期刊介绍： The journal Simulation Modelling Practice and Theory provides a forum for original, high-quality papers dealing with any aspect of systems simulation and modelling. The journal aims at being a reference and a powerful tool to all those professionally active and/or interested in the methods and applications of simulation. Submitted papers will be peer reviewed and must significantly contribute to modelling and simulation in general or use modelling and simulation in application areas. Paper submission is solicited on: • theoretical aspects of modelling and simulation including formal modelling, model-checking, random number generators, sensitivity analysis, variance reduction techniques, experimental design, meta-modelling, methods and algorithms for validation and verification, selection and comparison procedures etc.; • methodology and application of modelling and simulation in any area, including computer systems, networks, real-time and embedded systems, mobile and intelligent agents, manufacturing and transportation systems, management, engineering, biomedical engineering, economics, ecology and environment, education, transaction handling, etc.; • simulation languages and environments including those, specific to distributed computing, grid computing, high performance computers or computer networks, etc.; • distributed and real-time simulation, simulation interoperability; • tools for high performance computing simulation, including dedicated architectures and parallel computing.