NCI WEBSITE
NORMA eResearch @NCI Library

Operational Technology Intrusion Detection Application for Power Grid Security Operations Centres

Tools

Cooney, Keith (2021) Operational Technology Intrusion Detection Application for Power Grid Security Operations Centres. Masters thesis, Dublin, National College of Ireland.

[thumbnail of Master of Science]
Preview
 PDF (Master of Science)
Download (3MB) | Preview
[thumbnail of Configuration manual]
Preview
 PDF (Configuration manual)
Download (1MB) | Preview

Abstract

The Electrical Power Grid provides our modern society with electricity. It is a complex, distributed, cyber-physical machine that supports not just our activity in the home but also what we do in our work such as factories, offices, healthcare facilities, banking, and communications. Critical National Infrastructure is a fundamental service, and its presence and reliability are often taking for granted until it fails. When we experience its absence, its effects on our lives are immediate and, if absent for a prolonged period, catastrophic. The modern power grid is much more data orientated due to its adoption of Internet Protocol (IP) which presents a greater attack surface for Threats to exploit. The power system incorporates industrial technologies such real time control & protection and energy management systems. These are known as Operational Technology (OT) which are somewhat distinct, but related to, Information Technology (IT). Data produced by these OT systems have not been utilised by IT security systems such as Security Incident Event Management systems (SIEM) to aid IT Security Operations Centres to analyse and respond to threats that occur on the OT estate. Modern SOC’s monitor IT assets whose critical equipment is hosted in premises and datacentres. However, a different type of SOC is required for monitoring OT power system assets (e.g., substations, transformers, high voltage switching devices, sensors, generators etc.). This OT/IT SOC must take information from IT system but also OT systems to provide improved situational awareness.

Item Type: Thesis (Masters)
Subjects: Q Science > QA Mathematics > Electronic computers. Computer science
T Technology > T Technology (General) > Information Technology > Electronic computers. Computer science
Q Science > QA Mathematics > Computer software > Computer Security
T Technology > T Technology (General) > Information Technology > Computer software > Computer Security
T Technology > TK Electrical engineering. Electronics. Nuclear engineering > Electricity Supply
Divisions: School of Computing > Master of Science in Cyber Security
Depositing User: Clara Chan
Date Deposited: 19 Oct 2021 12:53
Last Modified: 19 Oct 2021 12:53
URI: https://norma.ncirl.ie/id/eprint/5107

Actions (login required)

View Item View Item