DARPA To Test Infrastructure Resilience

Increasing risks of cyber-attacks pose a challenge for US infrastructure security, such as the supply of electricity power, water and transportation. A joint exercise examines how to prepare for, and respond to, such a possible attack.

Perspecta Labs, played an integral role in the Defense Advanced Research Projects Agency’s (DARPA) Liberty Eclipse Phase II exercise in collaboration with the Department of Energy and the Department of Homeland Security to test grid recovery tools during a staged, multi-faceted cyberattack on a US power grid.

The realistic exercise actually replicated a cyberattack and monitored its recovery in real-time. Liberty Eclipse Phase II is the fourth and largest thus far in a series of exercises under DARPA’s Rapid Attack Detection Isolation and Characterisation Systems (RADICS) research program.

The RADICS objective was to develop technologies for detecting and responding to cyberattacks on critical US infrastructure, with an ultimate goal of enabling cyber and power engineers the ability to restore electrical service within seven days in the event of a major attack.

During the seven-day exercise, performers on the RADICS program were tasked with using performer-developed tools to provide comprehensive grid situational awareness, restore supervisory control and data acquisition (SCADA) and network infrastructure, cleanse substations and defeat active adversaries to establish two diverse paths in order to re-energize, interconnect and synchronise two utility operators in a black start scenario.

 “Our experience with developing solutions to protect the power grid gave us unique qualifications to support DARPA during this exercise,” said Petros Mouchtaris, Ph.D., president of Perspecta Labs.

“As leaders in cybersecurity awareness, monitoring and assessment services, we were able to validate the success of our research and tools while assisting our customer, DARPA, in achieving this major program milestone.”

In the exercise, Perspecta Labs tested various technologies transitioning to commercial use under the company’s SecureSmart offering.

These included the SHERLOC cyber-weapon hunting system featuring a new grid state consistency analyser called Jolt that integrates ground truth feeder state from Advanced Meter Infrastructure as a telemetry source.

Also the MANTESSA cyber-physical early detection and situational awareness system, featuring novel machine intelligence techniques and statistical inference of out-of-band measurements, field reports and other data sources.

Perspecta Labs also supported BAE Systems on the set up of a Secure Emergency Network. The company’s Distributed Assured and Dynamic Configuration (DADC) tool was used to efficiently generate error-free configurations for that network.

As a result of the exercise, the Perspecta Labs team gained actionable insight from utilities, observers and participants to improve the usability, expand the capabilities and continue the transition of its SHERLOC and MANTESSA solutions.

As a leader in smart grid security and monitoring, the company has been a major contributor on the RADICS program, conducting research and delivering technologies in three of five technical areas for situational awareness, secure communications, and threat detection and characterisation.

PRNewswire

You Might Also Read:

Cyber Attacks On Critical Infrastructure – A New Frontier In Global Conflict:

 

« Lack Of Tech Expertise At Board Level Puts Strategy At Risk
Three Ways the Pentagon Could Improve Cyber Intelligence »

Infosecurity Europe
CyberSecurity Jobsite
Perimeter 81

Directory of Suppliers

The PC Support Group

The PC Support Group

A partnership with The PC Support Group delivers improved productivity, reduced costs and protects your business through exceptional IT, telecoms and cybersecurity services.

TÜV SÜD Academy UK

TÜV SÜD Academy UK

TÜV SÜD offers expert-led cybersecurity training to help organisations safeguard their operations and data.

Directory of Cyber Security Suppliers

Directory of Cyber Security Suppliers

Our Supplier Directory lists 7,000+ specialist cyber security service providers in 128 countries worldwide. IS YOUR ORGANISATION LISTED?

NordLayer

NordLayer

NordLayer is an adaptive network access security solution for modern businesses — from the world’s most trusted cybersecurity brand, Nord Security. 

Infosecurity Europe, 3-5 June 2025, ExCel London

Infosecurity Europe, 3-5 June 2025, ExCel London

This year, Infosecurity Europe marks 30 years of bringing the global cybersecurity community together to further our joint mission of Building a Safer Cyber World.

AV Test

AV Test

The AV-TEST Institute is a leading international and independent service provider in the fields of anti-virus research and IT security.

Code Dx

Code Dx

Code Dx is a software application vulnerability correlation and management system.

Vaddy

Vaddy

Vaddy provide an automatic web vulnerability scanner for DevOps that performs robust security checks to ensure that web app code is secure.

LRQA

LRQA

LRQA is an award-winning global provider of cybersecurity services, bringing innovative thought leadership to the ever-evolving cybersecurity marketplace.

Fedco International

Fedco International

Fedco International is an IT and SCADA ICS Security consultancy firm.

QuickLaunch

QuickLaunch

QuickLaunch transforms how cloud-savvy institutions and companies manage human and device authentication, authorization, access control and integration.

Elevate Security

Elevate Security

Elevate is the leading Security Behavior Platform, changing employee security habits while giving security teams unprecedented visibility.

oneclick

oneclick

oneclick is a central access and distribution platform in the cloud, enabling the management of the entire technology stack for application provisioning.

Axellio

Axellio

Axellio provides economic, end-to-end cyber security solutions designed for your team, environment, and security objectives, providing packet level visibility across your network.

6clicks

6clicks

6clicks is an easy way to implement your risk and compliance program or achieve compliance with ISO 27001, SOC 2, PCI-DSS, HIPAA, NIST, FedRAMP and many other standards.

PatchAdvisor

PatchAdvisor

PatchAdvisor core services include Vulnerability Assessments/Penetration Testing, Application Vulnerability Assessments, and Incident Response.

Rhodian Group

Rhodian Group

Rhodian Group (formerly Adar) specialize in providing Technology, Cybersecurity, and Compliance services to the insurance industry.

EPIQ Infotech

EPIQ Infotech

EPIQ Infotech is a trusted consulting and implementation partner for Oracle JD Edwards and Amazon Web Services (AWS).

Novem CS

Novem CS

Novem CS are bespoke cyber security specialists providing a highly effective and specialised approach to solving your cyber security challenges.

Token Security

Token Security

Token is the new approach designed for the identity boom era. Introducing Machine-First Identity Security.

Maveris

Maveris

Maveris is an IT and cybersecurity company committed to helping organizations create secure digital solutions to accelerate their mission.