Search
Close this search box.

Controls Laboratory

Environment for Cyber Research of Operational Technologies

The Controls Laboratory is an environment for government and private industry partners to experience the possible effects of kinetic cyber-physical attacks. This lab allows users to perform security research on industrial control systems (ICS) and supervisory control and data acquisition (SCADA) systems.

Controls Laboratory is a test range that uses multiple platforms capable of hosting simulated risk scenarios against real critical infrastructure (CI) processes.  enables the study of complete cyber warfare against our nation’s CI targets, which society relies on to maintain our way of life. It is highly adaptable, simulates numerous corporate network configurations, and provides control system hardware and kinetic outputs of various CI sectors. With the ability to host multiple concurrent simulations, analysts across the nation can interact with the environment while being both on- and off-site through extended range connections

Read More

Distinguishing Assets and Capabilities

What’s Unique About Our Environment?

  • Combines functional ICS/SCADA systems with threat actor tactics, techniques and procedures (TTPs).
  • Hosts simulations for both red and blue teams to experience specific threat actor TTPs.
  • Shows disruptive and destructive consequences of cyberattacks against ICS and how to defend against them.

 

Enables hands-on research of sensitive systems.  The core capabilities of the range include:

  • Study red team capabilities, techniques, artifacts and impacts within specific network configurations
  • Enabling blue teams to hone defensive skills and develop new processes for detecting malicious cyber activity
  • Validate and understand the impact of vulnerabilities within ICS hardware and configurations

This lab differs from traditional Operational Technology (OT) ranges in its focus on ICS technologies and the ability to simulate cyberattacks carried out to the point of physical disruption and destruction. Unlike attack scenarios of traditional ranges, ICS-generated attack scenarios integrate kinetic motion to successfully account for infrastructural interdependencies across unique test scenarios. The capability to accurately respond in real time enables this testing environment to go beyond static simulation and support teams engaging across the entire cyberattack life cycle — from internet entry points to external demilitarized zone, corporate local area network (LAN) and ICS networks, and physical components.

Facility Tours

Overview Video Tour of CELR Facility

ics-celr chemical skid

Chemical processing

ics-celr electric skid

Electrical distribution and transmission

ics-celr gas skid

Natural gas pipeline

ics-celr skid

Building management

Virtual Tour

CELR 360 Tour

Who Can Use this Lab?

This research zone permits its users to simulate speculative risk scenarios that would otherwise introduce unacceptable risk to production environments. This laboratory environment provides opportunities for enhancing the way government and industry partners defend ICS networks. Potential users include, but are not limited to:

  • Federal civilian agencies (e.g., Department of Energy, Justice, Interior)
  • Department of Defense Cyber Protection Teams (CPTs)
  • National Security Agency
  • U.S. asset owner operators
  • Vendors and integrators
  • Academia researchers
  • Third-party cyber firms and researchers
  • International partners

Historically, CISA designed CELR with critical infrastructure partners in mind and to serve as many industry groups as possible. The range is a common environment where a variety of partners can research, learn and share TTPs.

User Assets

  • Concurrent simulations supporting diverse user groups
  • Custom corporate environments ranging from small business to international conglomerates
  • 16 sector-specific scenarios for ICS skids
  • Remote access to simulations
cyber research skids

Tutorials and Use Cases

The videos below offer additional information on CELR and its use in research and training cybersecurity professionals on ICS and OT environments. These presentations were provided to the ICS community during previous Industrial Control System Joint Working Group (ICS-JWG) seminars to facilitate information sharing and reduce the risk to the nation’s industrial control systems. Sponsored by the Cybersecurity and Infrastructure Security Agency (CISA), the ICS-JWG provides a vehicle for communicating and partnering across all critical infrastructure (CI) sectors between federal agencies and departments, as well as private asset owners/operators of industrial control systems. The goal of ICS-JWG is to continue and enhance the collaborative efforts of the industrial control systems stakeholder community in securing CI by accelerating the design, development and deployment of secure industrial control systems.

More ICS Resources

Sponsor

CISA Logo 1

Cybersecurity and Infrastructure Security Agency (CISA) works with partners to defend against today’s threats and collaborates with industry to build more secure and resilient infrastructure for the future. CISA is at the heart of mobilizing a collective defense to understand and manage risk to our critical infrastructure. Our partners in this mission span the public and private sectors.

Participating Partners

johns hopkins university

DHS Program Office

CELR Program Office

Send a Message

INL Control Systems Program

Timothy Huddleston

Send a Message

NHS Media

Michelle Farrell

Send a Message

Battelle Energy Alliance manages INL for the U.S. Department of Energy’s Office of Nuclear Energy

Facebook Twitter Youtube Instagram Linkedin Pinterest Flickr

Idaho National Laboratory
1955 N. Fremont Ave.
Idaho Falls, ID 83415
866-495-7440

RESEARCH AREAS

ABOUT US

PARTNERSHIPS

CAREERS

NEWSROOM

Copyright © 2024 Idaho National Laboratory

Idaho National Laboratory