RESEARCH ACTIVITIES
- Definition and construction of cybersecurity testing environments in critical infrastructures. The emulation of supervisory and control systems is carried out in the industrial, buildings and electric power field, using structures and elements similar to those used in real infrastructures.
- Study and analysis of vulnerabilities and attack techniques that affect the supervision and control systems of critical infrastructures and their communication protocols.
- Experimental verification of threats on test environments and implementation of countermeasures to protect the system against them.
- Development of techniques based on the passive monitoring of network traffic and the application of complex rules for the detection of intrusions in control and monitoring systems.
- Development of techniques for visual analysis of data to improve the interpretation of potentially interesting events for security in the monitoring systems used for detection and response to incidents.
- Development of tools to support the prevention, detection, filtering and response to security incidents in supervisory and control systems in the industrial, building and electric power sectors.
EDUCATIONAL ACTIVITIES
- Introduction to cybersecurity in critical infrastructure monitoring and control systems.
- Analysis of the attack surface of a control system. Description and analysis of typical threats.
- Segmentation and protection of industrial networks: switches, routers and industrial firewalls.
- Security for external access: VPNs.
- Security in SCADA systems and security for external access: VPNs.
RESEARCH PROJECTS
LABORATORY OF CYBERSECURITY IN THE SYSTEMS OF CONTROL OF SUBSTATIONS AND ELECTRIC TRANSFORMATION CENTERS (UNLE15-EE-2943).
Funding entity: Ministry of Economy and Competitiveness
Name of the program: Plan of Aids and Infrastructures and Scientific-Technical Equipment of the State Subprogram of Scientific Infrastructures and Equipment of the year 2015.
Dates: 01/01/2016 – 12/31/2017
Duration: 3 years.
LABORATORY OF RESEARCH IN CYBERSECURITY OF CRITICAL INFRASTRUCTURE OF THE UNIVERSITY OF LEÓN (UNLE13-3E-1578).
Funding entity: Ministry of Economy, Industry and Competitiveness
Name of the program: Aid and Infrastructure Plan and Scientific-Technical Equipment of the State Subprogram of Scientific Infrastructures and Equipment of the year 2013.
Start date: 11/19/2014.
Duration: 2 years.
STARTING OF LINES OF RESEARCH APPLIED IN SYSTEMS OF SUPERVISION AND CONTROL, INDUSTRIAL.
NATIONAL INSTITUTE OF CYBERSECURITY (INCIBE). Addendum No. 17
Start-up of applied research lines in Supervision and Industrial Control Systems.
Dates: from February 1, 2016 to January 31, 2017.
EXPERT ADVICE IN INDUSTRIAL CONTROL SYSTEMS ORIENTED TO THE DESIGN OF NEW SERVICES RELATED TO INDUSTRIAL CONTROL SYSTEMS.
Agreement: General Directorate of INTECO (National Institute of Communication Technologies S.A.)
Expert advice in industrial control systems oriented to the design of new services related to industrial control systems.
Duration: from January 28, 2015 to July 28, 2015.
DEVELOPMENT OF INDUSTRIAL LABORATORY TO CARRY OUT SECURITY EVALUATIONS OF ITS ELEMENTS
Research contract
Development of an industrial laboratory to carry out security assessments of its elements, based on the methodology developed in the European project SCADA LAB: SCADA Laboratory and testbed as a service for critical infrastructure protection.
FINANCIAL ENTITY: Innovative business grouping for the security of networks and information systems (AEI security).
DURATION: From: May 15, 2013 to May 14, 2014.
Total number of months: 12.