|
Title:
|
USING OPEN SOURCE INTELLIGENCE FOR RISK ASSESSMENT TO THE U.S. POWER GRID |
|
Author(s):
|
Darren R. Hayes |
|
ISBN:
|
978-989-8533-60-9 |
|
Editors:
|
Piet Kommers and Pedro Isaías |
|
Year:
|
2017 |
|
Edition:
|
Single |
|
Keywords:
|
Critical Infrastructure, Network Security, SCADA, OSINT |
|
Type:
|
Full Paper |
|
First Page:
|
121 |
|
Last Page:
|
128 |
|
Language:
|
English |
|
Cover:
|
|
|
Full Contents:
|
click to dowload 
|
|
Paper Abstract:
|
The United States electrical grid is at serious risk of cyber-attacks based on existing state-sponsored capabilities manifested in recent times and based on the findings of this research. The Obama Administration has made improving the security of Americas critical infrastructure a priority. This research sought to identify how vulnerable critical infrastructure networks actually might be. This paper demonstrates how open source tools and resources were used to effectively profile the network infrastructure of one of the largest entities operating on the United States electrical grid, by using open source intelligence (OSINT) gathered from the World Wide Web (Web). This study successfully profiled one major utility using open source intelligence and clearly identifies vectors of attack for an adversary. This research also managed to profile key information technology (IT) staff at the company and profile the software and hardware used in its critical systems. Results from this research can be utilized to integrate the use of OSINT to identify vulnerabilities and devise improvements to network and physical security. |
|
|
|
|
|
|
