skip to main content
OSTI.GOV title logo U.S. Department of Energy
Office of Scientific and Technical Information

Title: Safe Active Scanning for Energy Delivery Systems Final Report

Abstract

The Department of Energy’s Cybersecurity for Energy Delivery Systems Program has funded Safe(r) Active Scanning for Energy Delivery Systems, led by Lawrence Livermore National Laboratory, to investigate and analyze the impacts of active scanning in the operational environment of energy delivery systems. In collaboration with Pacific Northwest National Laboratory and Idaho National Laboratory, active scans across three testbeds including 38 devices were performed. This report gives a summary of the initial literature survey performed on the SASEDS project as well as industry partner interview summaries and main findings from Phase 1 of the project. Additionally, the report goes into the details of scanning techniques, methodologies for testing, testbed descriptions, and scanning results, with appendices to elaborate on the specific scans that were performed. As a result of testing, a single device out of 38 exhibited problems when actively scanned, and a reboot was required to fix it. This single failure indicates that active scanning is not likely to have a detrimental effect on the safety and resilience of energy delivery systems. We provide a path forward for future research that could enable wide adoption of active scanning and lead utilities to incorporate active scanning as part of their default networkmore » security plans to discover and rectify rogue devices, adversaries, and services that may be on the network. This increased network visibility will allow operational technology cybersecurity practitioners to improve their situational awareness of networks and their vulnerabilities.« less

Authors:
 [1];  [1];  [1];  [1];  [1]
  1. Lawrence Livermore National Lab. (LLNL), Livermore, CA (United States)
Publication Date:
Research Org.:
Lawrence Livermore National Lab. (LLNL), Livermore, CA (United States)
Sponsoring Org.:
USDOE
OSTI Identifier:
1409972
Report Number(s):
LLNL-TR-740556
DOE Contract Number:  
AC52-07NA27344
Resource Type:
Technical Report
Country of Publication:
United States
Language:
English
Subject:
24 POWER TRANSMISSION AND DISTRIBUTION; 97 MATHEMATICS, COMPUTING, AND INFORMATION SCIENCE

Citation Formats

Helms, J., Salazar, B., Scheibel, P., Engels, M., and Reiger, C. Safe Active Scanning for Energy Delivery Systems Final Report. United States: N. p., 2017. Web. doi:10.2172/1409972.
Helms, J., Salazar, B., Scheibel, P., Engels, M., & Reiger, C. Safe Active Scanning for Energy Delivery Systems Final Report. United States. doi:10.2172/1409972.
Helms, J., Salazar, B., Scheibel, P., Engels, M., and Reiger, C. Sat . "Safe Active Scanning for Energy Delivery Systems Final Report". United States. doi:10.2172/1409972. https://www.osti.gov/servlets/purl/1409972.
@article{osti_1409972,
title = {Safe Active Scanning for Energy Delivery Systems Final Report},
author = {Helms, J. and Salazar, B. and Scheibel, P. and Engels, M. and Reiger, C.},
abstractNote = {The Department of Energy’s Cybersecurity for Energy Delivery Systems Program has funded Safe(r) Active Scanning for Energy Delivery Systems, led by Lawrence Livermore National Laboratory, to investigate and analyze the impacts of active scanning in the operational environment of energy delivery systems. In collaboration with Pacific Northwest National Laboratory and Idaho National Laboratory, active scans across three testbeds including 38 devices were performed. This report gives a summary of the initial literature survey performed on the SASEDS project as well as industry partner interview summaries and main findings from Phase 1 of the project. Additionally, the report goes into the details of scanning techniques, methodologies for testing, testbed descriptions, and scanning results, with appendices to elaborate on the specific scans that were performed. As a result of testing, a single device out of 38 exhibited problems when actively scanned, and a reboot was required to fix it. This single failure indicates that active scanning is not likely to have a detrimental effect on the safety and resilience of energy delivery systems. We provide a path forward for future research that could enable wide adoption of active scanning and lead utilities to incorporate active scanning as part of their default network security plans to discover and rectify rogue devices, adversaries, and services that may be on the network. This increased network visibility will allow operational technology cybersecurity practitioners to improve their situational awareness of networks and their vulnerabilities.},
doi = {10.2172/1409972},
journal = {},
number = ,
volume = ,
place = {United States},
year = {Sat Sep 30 00:00:00 EDT 2017},
month = {Sat Sep 30 00:00:00 EDT 2017}
}

Technical Report:

Save / Share: