A Reactive Security Framework for operational wind parks using Service Function Chaining

Konstantinos Fysarakis, Nikolaos E. Petroulakis, Andreas Roos, Khawar Abbasi, Petra Vizarreta, George Petropoulos, Ermin Sakic, George Spanoudakis, Ioannis Askoxylakis
2017 2017 IEEE Symposium on Computers and Communications (ISCC)  
The innovative application of 5G core technologies, namely Software Defined Networking (SDN) and Network Function Virtualization (NFV), can help reduce capital and operational expenditures in industrial networks. Nevertheless, SDN expands the attack surface of the communication infrastructure, thus necessitating the introduction of additional security mechanisms. A wind park is a good example of an industrial application relying on a network with strict performance, security, and reliability
more » ... uirements, and was chosen as a representative example of industrial systems. This work highlights the benefit of leveraging the flexibility of SDN/NFV-enabled networks to deploy enhanced, reactive security mechanisms for the protection of the industrial network, via the use of Service Function Chaining. Moreover, a proof of concept implementation of the reactive security framework for an industrial-grade wind park network is presented. The framework is equipped with SDN and SCADA honeypots, modelled on (and deployable to) an actual, operating wind park, allowing continuous monitoring of the industrial network and detailed analysis of potential attacks, thus isolating attackers and enabling the assessment of their level of sophistication.
doi:10.1109/iscc.2017.8024604 dblp:conf/iscc/FysarakisPRAVPS17 fatcat:glxdvgjlg5ee3jl3yjfd6pxpau