IFE Cybersecurity Centre provides facilities and competence to investigate cybersecurity threats to operational technologies and to evaluate protection mechanisms. The Cybersecurity Centre provides a realistic environment to study how people, process and technology interact and together can provide holistic solutions for handling cybersecurity incidents.
The Cybersecurity Centre, established in 2019, is the IFE’s newest facility offering research, innovation and consultancy services in cybersecurity. The Centre has its foundations in IFE’s several decades of R&D expertise in operational safety and security of critical infrastructures. The Centre brings together researchers and engineers from multiple disciplines – security engineering, safety risk management, human factors, process engineering and simulation, IoT, etc – to develop holistic solutions for cybersecurity.
The Cybersecurity Centre provides a realistic environment, that could be used by the industry to investigate scenarios such as: How can a cyber-attack compromise a system and its environment? What is the consequence of the attack on the system and how can it propagate to other systems? What are the most effective strategies to respond to an attack? How well is the organisation processes and humans prepared to respond to the attack? How to design a system to reduce its vulnerabilities? The Cybersecurity Centre can equally be used by the academia for education and training of future cybersecurity professionals.
IFE Cybersecurity Centre together with IFE’s simulator-based research facility for studying human behaviour and performance in complex operating environments (HAMMLAB) provides an unique environment to study how security teams and control room staff can collaborate to safeguard the plant or organisation from cybersecurity threats.
The Centre provides hardware-in-the-loop simulators with:
- highly configurable testbed with real, simulated and emulated components of real-world critical infrastructure
- tools for vulnerability assessment, RAMS (reliability, availability, maintainability, safety) assessment, attack injection, incident monitoring, detection and response
- high-fidelity simulation technologies for cybersecurity and RAMS events prediction
- tools for evaluation of human preparedness and decision-making during incident response process and for operational safety
Security risk management
- Assess the vulnerabilities and threats to the system and identify best practices to mitigate the threats.
- Evaluate security management processes and procedures for handling cybersecurity incidents
Incident response using simulation technologies and tools
- Simulate process, equipment, control room and security in operational environments
- Simulate attack scenarios to investigate the impact on the systems and its environment
- Evaluate effective response strategies to handle an attack
- Evaluate human, e.g. operators and security teams, preparedness to handle attacks
- Simulation platforms are useful when it is impossible to perform cybersecurity testing/exercises on operational systems (unacceptable risks)
Cybersecurity monitoring and detecting solutions
- Evaluate suitability of cybersecurity solutions (e.g. IDS, firewall) to an operational environment
- Risk communication and visualization providing a meaningful real-time risk picture
- Situational awareness