Software-Defined Networking Traffic Engineering Process for Operational Technology Networks

Abstract:

Network designs are often functional with little consideration for security. Growth and maintenance of critical infrastructure, mission-focused networks can be ad hoc and can preclude large-scale technology replacements, reconfigurations,or even patching. These restrictions are contributing factors to increased vulnerabilities. Over 90% of all attacks begin with phishing and include lateral movement (Frincke 2019). Adopting a Software-DefinedNetworking (SDN) approach is an effectivemitigation strategy for many existing vulnerabilities. Software-DefinedNetworks use a ‘deny-by-default’ approach to networking that restricts an adversary’s freedom of movement without impacting an organisation’s mission. SDN implementations require a process that identifiesan organisation’s mission-specificnetwork communications. A well-definedtraffiengineering process ensures that only known devices communicate with each other on specificports.


AUTHORS

Photo of William Hutton III

Pacific Northwest National Laboratory Richland, Washington, 
United States

William Hutton spent four years on active duty with the United States Army as a Military Intelligence and Electronic Warfare Specialist. He received his Ph.D. in Computer Science from Washington State University in 2018 and his B.A. in Philosophy from Central Washington University in 2002. William has over 35 years of software development and 24 years of system administration experience; he also spent five years working at the Pacific Northwest’s only operating nuclear reactor before coming to the Pacific Northwest National Laboratory. While at PNNL, William has focused on protecting critical infrastructure, including oversight of 100 private utilities’ cyber security plans and on-site assessments under the 2009 ARRA Smart Grid Investment Grant; cyber and physical security, including several cyber security patents; and vulnerability assessments in multiple sectors including finance, maritime shipping, as well as space vehicles and hydro, electric, and nuclear power.

Photo of Dr. A. David McKinnon

Pacific Northwest National Laboratory Richland, Washington, 
United States

Dr. A. David McKinnon is a Senior Cyber Security Researcher at the Pacific Northwest National Laboratory. His research interests are in cyber security and distributed sensor systems. Dr. McKinnon’s current focus is on enhancing cyber security within the energy sector. He has advised U.S. utilities on smart grid and resilient energy cyber security projects. He has also led a research and development team that successfully developed and then transitioned a bio-inspired cyber security software to industry. As an adjunct professor, Dr. McKinnon taught computer and network security courses at Washington State University. He is a member of the ACM and a senior member of the IEEE.

Photo of Mark Hadley

Pacific Northwest National Laboratory Richland, Washington, 
United States

Mark Hadley is a Senior Cybersecurity Researcher at PNNL. Mr. Hadley’s research and project management activities with PNNL focus on national security solutions in support of non-governmental organisations, the U.S. Departments of Energy, Defense, and Homeland Security. He is a nationally recognised leader in the fields of critical infrastructure protection and industrial control system security.

Journal of Information Warfare

The definitive publication for the best and latest research and analysis on information warfare, information operations, and cyber crime. Available in traditional hard copy or online.

Quick Links

View the latest issue of JIW.

Latest Edition

Purchase a subscription to JIW.

Subscribe

Keywords

C

C2
C2S
CDX
CIA
CIP
CPS

D

DNS
DoD
DoS

I

IA
ICS

S

SOA

X

XRY

Quill Logo

The definitive publication for the best and latest research and analysis on information warfare, information operations, and cyber crime. Available in traditional hard copy or online.

SUBSCRIBE NOW

Get in touch

  • Journal of Information Warfare
    114 Ballard Street
    Yorktown, VA
    23690
  • 757.871.3949
  • jiw@gbpts.com