Software-Defined Networking Traffic Engineering Process for Operational Technology Networks

Abstract:

Network designs are often functional with little consideration for security. Growth and maintenance of critical infrastructure, mission-focused networks can be ad hoc and can preclude large-scale technology replacements, reconfigurations,or even patching. These restrictions are contributing factors to increased vulnerabilities. Over 90% of all attacks begin with phishing and include lateral movement (Frincke 2019). Adopting a Software-DefinedNetworking (SDN) approach is an effectivemitigation strategy for many existing vulnerabilities. Software-DefinedNetworks use a ‘deny-by-default’ approach to networking that restricts an adversary’s freedom of movement without impacting an organisation’s mission. SDN implementations require a process that identifiesan organisation’s mission-specificnetwork communications. A well-definedtraffiengineering process ensures that only known devices communicate with each other on specificports.


AUTHORS

Photo of Dr. William Hutton III

Pacific Northwest National Laboratory
Richland, Washington, United States

Dr. William Hutton spent four years in active duty with the United States Army as a Military Intelligence and Electronic Warfare Specialist. He received his Ph.D. in Computer Science from Washington State University in 2018 and his B.A. in Philosophy from Central Washington University in 2002. Dr Hutton has over 35 years of software development and 25 years of system administration experience. He spent five years working at the Pacific Northwest’s only operating nuclear reactor before coming to the Pacific Northwest National Laboratory. While at PNNL Dr Hutton has focused on protecting critical infrastructure, including oversight of 100 private utilities’ cyber security plans and on-site assessments under the 2009 ARRA Smart Grid Investment Grant, cyber and physical security, including several cyber security patents, and vulnerability assessments in diverse sectors including finance, maritime shipping, as well as satellites, hydro, electric, and nuclear power.

 

Photo of Photo of Dr. A. David McKinnon

Pacific Northwest National Laboratory
Richland, Washington, United States

Dr. A. David McKinnon is a Senior Cyber Security Researcher at the Pacific Northwest National Laboratory. His research interests are in cyber security and distributed sensor systems. Dr. McKinnon's current focus is on enhancing cyber security within the energy sector. He has advised U.S. utilities on smart grid and resilient energy cyber security projects. He has also led a research and development team that successfully developed and then transitioned a bio-inspired cyber security software to industry. As an adjunct professor, Dr. McKinnon taught computer and network security courses at Washington State University. He is a member of the ACM and a senior member of the IEEE.

Photo of Mark Hadley

Pacific Northwest National Laboratory
Richland, Washington,United States

Mark Hadley is a Senior Cybersecurity Researcher at Pacific Northwest National Laboratory (PNNL). Mr. Hadley’s research and project management activities with PNNL focus on national security solutions in support of non-governmental organizations, the U.S. Departments of Energy, Department of Defense, and Homeland Security. He is a nationally recognized leader in the fields of critical infrastructure protection and industrial control system security. 

Journal of Information Warfare

The definitive publication for the best and latest research and analysis on information warfare, information operations, and cyber crime. Available in traditional hard copy or online.

Quick Links

View the latest issue of JIW.

Latest Edition

Purchase a subscription to JIW.

Subscribe

Keywords

A

AI
APT

C

C2
C2S
CDX
CIA
CIP
CPS

D

DNS
DoD
DoS

I

IA
ICS

M

S

SOA

X

XRY

Quill Logo

The definitive publication for the best and latest research and analysis on information warfare, information operations, and cyber crime. Available in traditional hard copy or online.

SUBSCRIBE NOW

Get in touch

Registered Agent and Mailing Address

  • Journal of Information Warfare
  •  ArmisteadTEC
  • Dr Leigh Armistead, President
  • 1624 Wakefield Drive
  • Virginia Beach, VA 23455

 757.510.4574

 JIW@ArmisteadTec.com