Adrien Bécue · Nora Cuppens-Boulahia Frédéric Cuppens · Sokratis Katsikas Costas Lambrinoudakis (Eds.) Security of Industrial 8 8 5 Control Systems and 9 S C Cyber Physical Systems N L First Workshop, CyberICS 2015 and First Workshop, WOS-CPS 2015 Vienna, Austria, September 21–22, 2015 Revised Selected Papers 123 Lecture Notes in Computer Science 9588 Commenced Publication in 1973 Founding and Former Series Editors: Gerhard Goos, Juris Hartmanis, and Jan van Leeuwen Editorial Board David Hutchison Lancaster University, Lancaster, UK Takeo Kanade Carnegie Mellon University, Pittsburgh, PA, USA Josef Kittler University of Surrey, Guildford, UK Jon M. Kleinberg Cornell University, Ithaca, NY, USA Friedemann Mattern ETH Zurich, Zürich, Switzerland John C. Mitchell Stanford University, Stanford, CA, USA Moni Naor Weizmann Institute of Science, Rehovot, Israel C. Pandu Rangan Indian Institute of Technology, Madras, India Bernhard Steffen TU Dortmund University, Dortmund, Germany Demetri Terzopoulos University of California, Los Angeles, CA, USA Doug Tygar University of California, Berkeley, CA, USA Gerhard Weikum Max Planck Institute for Informatics, Saarbrücken, Germany More information about this series at http://www.springer.com/series/7410 é Adrien B cue Nora Cuppens-Boulahia (cid:129) é é Fr d ric Cuppens Sokratis Katsikas (cid:129) Costas Lambrinoudakis (Eds.) Security of Industrial Control Systems and Cyber Physical Systems First Workshop, CyberICS 2015 and First Workshop, WOS-CPS 2015 Vienna, Austria, September 21–22, 2015 Revised Selected Papers 123 Editors Adrien Bécue Sokratis Katsikas AirbusDefence &Space Cybersecurity Centerfor Cyber andInformation Security Elancourt NorwegianUniversity of Scienceand France Technology Gjøvik Nora Cuppens-Boulahia Norway Télécom Bretagne Cesson-Sévigné Costas Lambrinoudakis France Department ofDigital Systems University of Piraeus Frédéric Cuppens Piraeus Télécom Bretagne Greece Cesson-Sévigné France ISSN 0302-9743 ISSN 1611-3349 (electronic) Lecture Notesin Computer Science ISBN 978-3-319-40384-7 ISBN978-3-319-40385-4 (eBook) DOI 10.1007/978-3-319-40385-4 LibraryofCongressControlNumber:2016941300 LNCSSublibrary:SL4–SecurityandCryptology ©SpringerInternationalPublishingSwitzerland2016 Thisworkissubjecttocopyright.AllrightsarereservedbythePublisher,whetherthewholeorpartofthe material is concerned, specifically the rights of translation, reprinting, reuse of illustrations, recitation, broadcasting, reproduction on microfilms or in any other physical way, and transmission or information storageandretrieval,electronicadaptation,computersoftware,orbysimilarordissimilarmethodologynow knownorhereafterdeveloped. Theuseofgeneraldescriptivenames,registerednames,trademarks,servicemarks,etc.inthispublication doesnotimply,evenintheabsenceofaspecificstatement,thatsuchnamesareexemptfromtherelevant protectivelawsandregulationsandthereforefreeforgeneraluse. Thepublisher,theauthorsandtheeditorsaresafetoassumethattheadviceandinformationinthisbookare believedtobetrueandaccurateatthedateofpublication.Neitherthepublishernortheauthorsortheeditors give a warranty, express or implied, with respect to the material contained herein or for any errors or omissionsthatmayhavebeenmade. Printedonacid-freepaper ThisSpringerimprintispublishedbySpringerNature TheregisteredcompanyisSpringerInternationalPublishingAGSwitzerland Preface This book presents the revised and selected papers of the First Workshop on Cyber- securityofIndustrialControlSystems(CyberICS2015)andtheFirstWorkshoponthe Security of Cyber-Physical Systems (WOS-CPS 2015), held in Vienna, Austria, September21–22,2015,co-locatedwiththe20thEuropeanSymposiumonResearchin Computer Security (ESORICS 2015). The volume contains six full papers and two shortpapersfrom thesubmissions toCyberICS andthree fullpapers from WOS-CPS. The two events aim to address the increasing number of cyber threats faced by cyber-physical systems operators around the world. Cyber-physical systems range in size, complexity, and criticality, from embedded systems used in smart vehicles, to SCADAandindustrialcontrolsystemslikeenergyandwaterdistributionsystems,smart transportation systems etc. The papers that have been accepted cover topics related to themanagementofcybersecurityinthesesystemsincludingsecuritymonitoring,trust management, attackexecution models, forensics, economics, and training. April 2016 Adrien Bécue Nora Cuppens-Boulahia Frédéric Cuppens Sokratis Katsikas Costas Lambrinoudakis Organization First Workshop on Cybersecurity of Industrial Control Systems (CyberICS 2015) General Chair Adrien Bécue Airbus Defence and Space, France Program Committee Co-chairs Nora Cuppens-Boulahia Télécom Bretagne, France Frédéric Cuppens Télécom Bretagne, France Program Committee Ari Takanen Codenomicon, Finland David Espes University of Brest, France Ernesto Damiani University of Milan, Italy Jean Leneutre Telecom ParisTech, France Joaquin Garcia-Alfaro Telecom SudParis, France Jozef Vyskoc VaF, Slovakia Khan Ferdous Wahid Airbus Group Innovations, Germany Mauro Conti University of Padua, Italy Michele Bezzi Sap, France Mourad Debbabi Concordia University, Canada Radu State University of Luxembourg, Luxembourg Reda Yaich IMT-Telecom Bretagne, France Safaa Hachana IMT-Telecom Bretagne, France Samiha Ayed IMT-Telecom-Bretagne, France Waël Kanoun Alcatel-Lucent Bell Labs, France Yves Roudier EURECOM, France VIII Organization First Workshop on the Security of Cyber-Physical Systems (WOS-CPS 2015) Program Committee Co-chairs Sokratis Katsikas Center for Cyber and Information Security, Norwegian University of Science and Technology, Norway; University of Piraeus, Greece Costas Lambrinoudakis University of Piraeus, Greece Program Committee Alcaraz Cristina University of Malaga, Spain Debar Hervé Télécom SudParis, France Gollmann Dieter Hamburg University of Technology, Germany Lopez Javier University of Malaga, Spain Mauw Sjouke University of Luxembourg, Luxembourg Mitchell Chris Royal Holloway, University of London, UK Petit Jonathan University College Cork, Ireland Röning Juha University of Oulu, Finland Samarati Pierangela Università degli Studi di Milano, Italy Song Houbing West Virginia University, USA Wolthusen Stephen Royal Holloway, University of London, UK Zanero Stefano Politecnico di Milano, Italy Contents CyberICS 2015 Papers The Economics of Cybersecurity: From the Public Good to the Revenge of the Industry . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 3 Danilo D’Elia Teaching Industrial Control System Security Using Collaborative Projects . . . 16 Thuy D. Nguyen and Mark A. Gondree Trust Establishment in Cooperating Cyber-Physical Systems. . . . . . . . . . . . . 31 Andre Rein, Roland Rieke, Michael Jäger, Nicolai Kuntze, and Luigi Coppolino Security Monitoring for Industrial Control Systems. . . . . . . . . . . . . . . . . . . 48 Alessio Coletta and Alessandro Armando WirelessHART NetSIM: A WirelessHART SCADA-Based Wireless Sensor Networks Simulator . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 63 Lyes Bayou, David Espes, Nora Cuppens-Boulahia, and Frédéric Cuppens Remote Attestation for Embedded Systems. . . . . . . . . . . . . . . . . . . . . . . . . 79 Markku Kylänpää and Aarne Rantala WOS-CPS 2015 Papers LiMon - Lightweight Authentication for Tire Pressure Monitoring Sensors. . . 95 Cristina Solomon and Bogdan Groza Umbra: Embedded Web Security Through Application-Layer Firewalls . . . . . 112 Travis Finkenauer and J. Alex Halderman Towards Standardising Firewall Reporting . . . . . . . . . . . . . . . . . . . . . . . . . 127 Dinesha Ranathunga, Matthew Roughan, Phil Kernick, and Nick Falkner CyberICS 2015 Short Papers Forensics in Industrial Control System: A Case Study. . . . . . . . . . . . . . . . . 147 Pieter Van Vliet, M.-T. Kechadi, and Nhien-An Le-Khac X Contents An Attack Execution Model for Industrial Control Systems Security Assessment . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 157 Ziad Ismail, Jean Leneutre, and Alia Fourati Author Index . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 169