A Framework for Design-Time Testing of Service-Based Applications at BPEL Level

Software applications created on top of the service-oriented architecture (SOA) are increasingly popular but testing them remains a challenge. In this paper a framework named TASSA for testing the functional and non-functional behaviour of service-based applications is presented. The paper focuses on the concept of design time testing, the corresponding testing approach and architectural integration of the consisting TASSA tools. The individual TASSA tools with sample validation scenarios were already presented with a general view of their relation. This paper’s contribution is the structured testing approach, based on the integral use of the tools and their architectural integration. The framework is based on SOA principles and is composable depending on user requirements.The work reported in this paper was supported by a research project funded by the National Scientific Fund, Bulgarian Ministry of Education, Youth and Science, via agreement no. DOO2-182

A Survey on Industrial Control System Testbeds and Datasets for Security Research

The increasing digitization and interconnection of legacy Industrial Control Systems (ICSs) open new vulnerability surfaces, exposing such systems to malicious attackers. Furthermore, since ICSs are often employed in critical infrastructures (e.g., nuclear plants) and manufacturing companies (e.g., chemical industries), attacks can lead to devastating physical damages. In dealing with this security requirement, the research community focuses on developing new security mechanisms such as Intrusion Detection Systems (IDSs), facilitated by leveraging modern machine learning techniques. However, these algorithms require a testing platform and a considerable amount of data to be trained and tested accurately. To satisfy this prerequisite, Academia, Industry, and Government are increasingly proposing testbed (i.e., scaled-down versions of ICSs or simulations) to test the performances of the IDSs. Furthermore, to enable researchers to cross-validate security systems (e.g., security-by-design concepts or anomaly detectors), several datasets have been collected from testbeds and shared with the community. In this paper, we provide a deep and comprehensive overview of ICSs, presenting the architecture design, the employed devices, and the security protocols implemented. We then collect, compare, and describe testbeds and datasets in the literature, highlighting key challenges and design guidelines to keep in mind in the design phases. Furthermore, we enrich our work by reporting the best performing IDS algorithms tested on every dataset to create a baseline in state of the art for this field. Finally, driven by knowledge accumulated during this survey's development, we report advice and good practices on the development, the choice, and the utilization of testbeds, datasets, and IDSs

Mitigating Insider Threat Risks in Cyber-physical Manufacturing Systems

Cyber-Physical Manufacturing System (CPMS)—a next generation manufacturing system—seamlessly integrates digital and physical domains via the internet or computer networks. It will enable drastic improvements in production flexibility, capacity, and cost-efficiency. However, enlarged connectivity and accessibility from the integration can yield unintended security concerns. The major concern arises from cyber-physical attacks, which can cause damages to the physical domain while attacks originate in the digital domain. Especially, such attacks can be performed by insiders easily but in a more critical manner: Insider Threats. Insiders can be defined as anyone who is or has been affiliated with a system. Insiders have knowledge and access authentications of the system\u27s properties, therefore, can perform more serious attacks than outsiders. Furthermore, it is hard to detect or prevent insider threats in CPMS in a timely manner, since they can easily bypass or incapacitate general defensive mechanisms of the system by exploiting their physical access, security clearance, and knowledge of the system vulnerabilities. This thesis seeks to address the above issues by developing an insider threat tolerant CPMS, enhanced by a service-oriented blockchain augmentation and conducting experiments & analysis. The aim of the research is to identify insider threat vulnerabilities and improve the security of CPMS. Blockchain\u27s unique distributed system approach is adopted to mitigate the insider threat risks in CPMS. However, the blockchain limits the system performance due to the arbitrary block generation time and block occurrence frequency. The service-oriented blockchain augmentation is providing physical and digital entities with the blockchain communication protocol through a service layer. In this way, multiple entities are integrated by the service layer, which enables the services with less arbitrary delays while retaining their strong security from the blockchain. Also, multiple independent service applications in the service layer can ensure the flexibility and productivity of the CPMS. To study the effectiveness of the blockchain augmentation against insider threats, two example models of the proposed system have been developed: Layer Image Auditing System (LIAS) and Secure Programmable Logic Controller (SPLC). Also, four case studies are designed and presented based on the two models and evaluated by an Insider Attack Scenario Assessment Framework. The framework investigates the system\u27s security vulnerabilities and practically evaluates the insider attack scenarios. The research contributes to the understanding of insider threats and blockchain implementations in CPMS by addressing key issues that have been identified in the literature. The issues are addressed by EBIS (Establish, Build, Identify, Simulation) validation process with numerical experiments and the results, which are in turn used towards mitigating insider threat risks in CPMS

Design, Control and Protection of Modular Multilevel Converter (MMC)-Based Multi-Terminal HVDC System

Even though today’s transmission grids are predominantly based on the high voltage alternating current (HVAC) scheme, interests on high voltage direct current (HVDC) are growing rapidly during the past decade, due to the increased penetration of remote renewable energy. Voltage source converter (VSC) type is preferred over the traditional line-commutated converter (LCC) for this application, due to the advantages like smaller station footprint and no need for strong interfacing ac grid. As the state-of-the-art VSC topology, modular multilevel converter (MMC) is mostly considered. Most renewable energy sources, such as wind and solar, is usually sparsely located. Multi-terminal HVDC (MTDC) provides better use of transmission infrastructure, higher transmission flexibility and reliability, than building multiple point-to-point HVDCs. This dissertation studies the MMC-based MTDC system, including design, control and protection. Passive components design methodology in MMC is developed, with practical consideration. The developed arm inductance selection criterion considers the implementation of circulating current suppression control. And the unbalanced voltage among submodule capacitor is taken into account for submodule capacitance design. Circulating current suppression control is found to impact the MMC operating range. The maximum modulation index reduction is calculated utilizing a decoupled MMC model. A four-terminal HVDC testbed is developed, with similar control and communication architectures of the practical projects implemented. Several most typical operation scenarios and controls are demonstrated or proposed. In order to allow HVDC disconnects to online trip a line, dc line current control is proposed through station control. Utilizing the dc line current control, an automatic dc line current limiting control is proposed. Both controls have been verified in the developed testbed. A systematic dc fault protection strategy of MTDC utilizing hybrid dc circuit breaker is developed, including a new fast and selective fault detection method taking advantage of the hybrid dc circuit breaker special operation mechanism. Detailed criteria and control methods to assist system recovery are presented. A novel fault tolerant MMC topology is proposed with a hybrid submodule by adding an ultra-fast mechanical switch. The converter power loss can be almost the same as the half-bridge MMC, and 1/3 reduction compared to the similar clamp-double topology

NASA Capability Roadmaps Executive Summary

This document is the result of eight months of hard work and dedication from NASA, industry, other government agencies, and academic experts from across the nation. It provides a summary of the capabilities necessary to execute the Vision for Space Exploration and the key architecture decisions that drive the direction for those capabilities. This report is being provided to the Exploration Systems Architecture Study (ESAS) team for consideration in development of an architecture approach and investment strategy to support NASA future mission, programs and budget requests. In addition, it will be an excellent reference for NASA's strategic planning. A more detailed set of roadmaps at the technology and sub-capability levels are available on CD. These detailed products include key driving assumptions, capability maturation assessments, and technology and capability development roadmaps

A COGNITIVE ARCHITECTURE FOR AMBIENT INTELLIGENCE

L’Ambient Intelligence (AmI) è caratterizzata dall’uso di sistemi pervasivi per monitorare l’ambiente e modificarlo secondo le esigenze degli utenti e rispettando vincoli definiti globalmente. Questi sistemi non possono prescindere da requisiti come la scalabilità e la trasparenza per l’utente. Una tecnologia che consente di raggiungere questi obiettivi è rappresentata dalle reti di sensori wireless (WSN), caratterizzate da bassi costi e bassa intrusività. Tuttavia, sebbene in grado di effettuare elaborazioni a bordo dei singoli nodi, le WSN non hanno da sole le capacità di elaborazione necessarie a supportare un sistema intelligente; d’altra parte senza questa attività di pre-elaborazione la mole di dati sensoriali può facilmente sopraffare un sistema centralizzato con un’eccessiva quantità di dettagli superflui. Questo lavoro presenta un’architettura cognitiva in grado di percepire e controllare l’ambiente di cui fa parte, basata su un nuovo approccio per l’estrazione di conoscenza a partire dai dati grezzi, attraverso livelli crescenti di astrazione. Le WSN sono utilizzate come strumento sensoriale pervasivo, le cui capacità computazionali vengono utilizzate per pre-elaborare i dati rilevati, in modo da consentire ad un sistema centralizzato intelligente di effettuare ragionamenti di alto livello. L’architettura proposta è stata utilizzata per sviluppare un testbed dotato degli strumenti hardware e software necessari allo sviluppo e alla gestione di applicazioni di AmI basate su WSN, il cui obiettivo principale sia il risparmio energetico. Per fare in modo che le applicazioni di AmI siano in grado di comunicare con il mondo esterno in maniera affidabile, per richiedere servizi ad agenti esterni, l’architettura è stata arricchita con un protocollo di gestione distribuita della reputazione. È stata inoltre sviluppata un’applicazione di esempio che sfrutta le caratteristiche del testbed, con l’obiettivo di controllare la temperatura in un ambiente lavorativo. Quest’applicazione rileva la presenza dell’utente attraverso un modulo per la fusione di dati multi-sensoriali basato su reti bayesiane, e sfrutta questa informazione in un controllore fuzzy multi-obiettivo che controlla gli attuatori sulla base delle preferenze dell’utente e del risparmio energetico.Ambient Intelligence (AmI) systems are characterized by the use of pervasive equipments for monitoring and modifying the environment according to users’ needs, and to globally defined constraints. Furthermore, such systems cannot ignore requirements about ubiquity, scalability, and transparency to the user. An enabling technology capable of accomplishing these goals is represented by Wireless Sensor Networks (WSNs), characterized by low-costs and unintrusiveness. However, although provided of in-network processing capabilities, WSNs do not exhibit processing features able to support comprehensive intelligent systems; on the other hand, without this pre-processing activities the wealth of sensory data may easily overwhelm a centralized AmI system, clogging it with superfluous details. This work proposes a cognitive architecture able to perceive, decide upon, and control the environment of which the system is part, based on a new approach to knowledge extraction from raw data, that addresses this issue at different abstraction levels. WSNs are used as the pervasive sensory tool, and their computational capabilities are exploited to remotely perform preliminary data processing. A central intelligent unit subsequently extracts higher-level concepts in order to carry on symbolic reasoning. The aim of the reasoning is to plan a sequence of actions that will lead the environment to a state as close as possible to the users’ desires, taking into account both implicit and explicit feedbacks from the users, while considering global system-driven goals, such as energy saving. The proposed conceptual architecture was exploited to develop a testbed providing the hardware and software tools for the development and management of AmI applications based on WSNs, whose main goal is energy saving for global sustainability. In order to make the AmI system able to communicate with the external world in a reliable way, when some services are required to external agents, the architecture was enriched with a distributed reputation management protocol. A sample application exploiting the testbed features was implemented for addressing temperature control in a work environment. Knowledge about the user’s presence is obtained through a multi-sensor data fusion module based on Bayesian networks, and this information is exploited by a multi-objective fuzzy controller that operates on actuators taking into account users’ preference and energy consumption constraints

A Viable Residential DC Microgrid for Low Income Communities – Architecture, Protection and Education

The availability of fossil fuels in the future and the environmental effects such as the carbon footprint of the existing methodologies to produce electricity is an increasing area of concern. In rural areas of under-developed parts of the world, the problem is lack of access to electrification. DC microgrids have become a proven solution to electrification in these areas with demonstrated exceptional quality of power, high reliability, efficiency, and simplified integration between renewable energy sources (principally solar PV) and energy storage. In the United States, a different problem occurs that can be addressed with the same DC microgrid approach that is finding success internationally. In disinvested, underserved communities with high unemployment and low wages, households contribute a significant portion of their income towards the fixed cost of their electrical utility connection, which by law must be supplied to every household. In order to realize such a microgrid in these communities, there are three major areas which need to be accounted for. Firstly, there needs to be a custom architecture for the community under consideration and it needs to be economical to match the needs of the underserved community. Secondly, DC microgrid for home energy interconnection is potentially less complex and less expensive to deploy, operate and maintain however, faster protection is a key element to ensuring resilience, viability and adoptability. Lastly, these types of efforts will be sustainable only if the people in the community are educated and invested in the same as they are the key stakeholders in these systems. This dissertation presents an approach to make the DC Microgrid economically feasible for low income households by reducing the cost they incur on electric bills. The approach is to overlay a DC system into homes that have a utility feed in order to incorporate renewable energy usage into an urban setting for the express purpose of driving down individual household utility costs. The results show that the incorporation of a certain level of “smart” appliances and fixtures into the renovation of vacated homes and the use of a microgrid to enable sharing of renewable energy, such as solar power combined with energy storage, between homes in the proposed architecture yields the least expensive option for the patrons. The development of solid state circuit breakers that interface between the microgrid and the home DC power panels helps in faster protection of the DC system. In this dissertation, a SiC JFET based device is designed and built to protect against DC faults at a faster rate than the available solutions. The prototype is tested for verification and used to discriminate against short circuit faults and the results show the successful fault discrimination capabilities of the device. A basic system level simulation with the protection device is implemented using Real Time Hardware in the loop platform. Finally, as a part of engaging the community members, the high school kids in the area who might potentially be living in some of the houses in this community are being educated about the microgrid, appliances and other technologies to get a better understanding of STEM and hopefully inspiring them to pursue a career in STEM in the future