DARPA To Test Infrastructure Resilience

Uploaded on 2019-02-26 in GOVERNMENT-Defence, FREE TO VIEW, GOVERNMENT-National, INTELLIGENCE--USA, TECHNOLOGY--Resilience

Increasing risks of cyber-attacks pose a challenge for US infrastructure security, such as the supply of electricity power, water and transportation. A joint exercise examines how to prepare for, and respond to, such a possible attack.

Perspecta Labs, played an integral role in the Defense Advanced Research Projects Agency’s (DARPA) Liberty Eclipse Phase II exercise in collaboration with the Department of Energy and the Department of Homeland Security to test grid recovery tools during a staged, multi-faceted cyberattack on a US power grid.

The realistic exercise actually replicated a cyberattack and monitored its recovery in real-time. Liberty Eclipse Phase II is the fourth and largest thus far in a series of exercises under DARPA’s Rapid Attack Detection Isolation and Characterisation Systems (RADICS) research program.

The RADICS objective was to develop technologies for detecting and responding to cyberattacks on critical US infrastructure, with an ultimate goal of enabling cyber and power engineers the ability to restore electrical service within seven days in the event of a major attack.

During the seven-day exercise, performers on the RADICS program were tasked with using performer-developed tools to provide comprehensive grid situational awareness, restore supervisory control and data acquisition (SCADA) and network infrastructure, cleanse substations and defeat active adversaries to establish two diverse paths in order to re-energize, interconnect and synchronise two utility operators in a black start scenario.

 “Our experience with developing solutions to protect the power grid gave us unique qualifications to support DARPA during this exercise,” said Petros Mouchtaris, Ph.D., president of Perspecta Labs.

“As leaders in cybersecurity awareness, monitoring and assessment services, we were able to validate the success of our research and tools while assisting our customer, DARPA, in achieving this major program milestone.”

In the exercise, Perspecta Labs tested various technologies transitioning to commercial use under the company’s SecureSmart offering.

These included the SHERLOC cyber-weapon hunting system featuring a new grid state consistency analyser called Jolt that integrates ground truth feeder state from Advanced Meter Infrastructure as a telemetry source.

Also the MANTESSA cyber-physical early detection and situational awareness system, featuring novel machine intelligence techniques and statistical inference of out-of-band measurements, field reports and other data sources.

Perspecta Labs also supported BAE Systems on the set up of a Secure Emergency Network. The company’s Distributed Assured and Dynamic Configuration (DADC) tool was used to efficiently generate error-free configurations for that network.

As a result of the exercise, the Perspecta Labs team gained actionable insight from utilities, observers and participants to improve the usability, expand the capabilities and continue the transition of its SHERLOC and MANTESSA solutions.

As a leader in smart grid security and monitoring, the company has been a major contributor on the RADICS program, conducting research and delivering technologies in three of five technical areas for situational awareness, secure communications, and threat detection and characterisation.

PRNewswire

You Might Also Read:

Cyber Attacks On Critical Infrastructure – A New Frontier In Global Conflict:

 

« Lack Of Tech Expertise At Board Level Puts Strategy At Risk
Three Ways the Pentagon Could Improve Cyber Intelligence »

CyberSecurity Jobsite
Perimeter 81
Cyrin

Real Attacks. Real Tools. Real Scenarios.
Schedule a demo

Go Cyber

Training that transforms behaviours

Sign Up: Cyber Security Intelligence Newsletter

Directory of Suppliers

IT Governance

IT Governance

IT Governance is a leading global provider of information security solutions. Download our free guide and find out how ISO 27001 can help protect your organisation's information.

NordLayer

NordLayer

NordLayer is an adaptive network access security solution for modern businesses — from the world’s most trusted cybersecurity brand, Nord Security. 

DigitalStakeout

DigitalStakeout

DigitalStakeout enables cyber security professionals to reduce cyber risk to their organization with proactive security solutions, providing immediate improvement in security posture and ROI.

Jooble

Jooble

Jooble is a job search aggregator operating in 71 countries worldwide. We simplify the job search process by displaying active job ads from major job boards and career sites across the internet.

ZenGRC

ZenGRC

ZenGRC - the first, easy-to-use, enterprise-grade information security solution for compliance and risk management - offers businesses efficient control tracking, testing, and enforcement.

Steptoe & Johnson

Steptoe & Johnson

Steptoe is an international law firm with offices in the USA, Europe and China. Practice areas include Cybersecurity, Privacy & National Security.

Equilibrium Security Services

Equilibrium Security Services

Equilibrium Security Services is a specialist cyber security company providing a full spectrum of IT security solutions from consultancy to design & implementation and managed security services.

GuardKnox

GuardKnox

GuardKnox protects the users of connected vehicles against threats that can endanger their physical safety and the safety of their personal information.

Rogue Wave Software

Rogue Wave Software

At Rogue Wave, our mission is to simplify your hardest problems, improve software quality and security, and shorten the time it takes to deliver value.

Avira

Avira

Avira provide a portfolio of antivirus, security and performance applications for Windows, Android, Mac, and iOS.

ITU Arab Regional Cyber Security Center (ITU-ARCC)

ITU Arab Regional Cyber Security Center (ITU-ARCC)

ITU-ARCC acts as ITU’s cybersecurity hub in the Arab Region localizing and coordinating cybersecurity initiatives.

Business Continuity

Business Continuity

Business Continuity delivers integrated IT solutions for cybersecurity, virtualization, cloud platforms and operational security solutions.

CIRISK

CIRISK

CIRISK offers a wide range of services from consulting to audit or project management to help you develop your cyber security or information security strategy.

Cyber Threat Defense (CT Defense)

Cyber Threat Defense (CT Defense)

CT Defense specialize in penetration testing and security assessments.

GrrCON

GrrCON

GrrCON is an information security and hacking conference that provides the Midwest InfoSec community with a fun atmosphere to come together and engage with like minded people.

Quantexa

Quantexa

Quantexa automates millions of operational decisions, at scale, across multiple business units, including Anti-Money Laundering, Know-Your-Customer, Fraud, Credit Risk and Customer Intelligence.

TempoCap

TempoCap

TempoCap is a European growth-stage technology fund with offices in London and Berlin. We invest across a variety of high- growth sectors including cybersecurity.

Coastline Cybersecurity

Coastline Cybersecurity

Coastline Cyber is a cybersecurity consulting firm dedicated to helping organizations strengthen their security posture by reducing risks, mitigating threats, and protecting against attacks.

SoConnect

SoConnect

SoConnect provides safe, secured, and taken care of IT, with infrastructure built around you and your business.

Cythera

Cythera

Cythera is an Australian cyber security company with in-house cyber security professionals providing world-class cyber protection to medium to large companies all over Australia.

Secure Domains

Secure Domains

Secure Domains is the first company in the GCC to offer cloud-based DNS firewall services and security through its flagship SaaS product, DNS Armor.