Search
Close this search box.

Control Systems Cybersecurity

A multi-sector, interdisciplinary approach to securing digital systems and critical functions.

INL’s cyber and controls expertise guided by intel-informed threat analysis provides unique products and capabilities. U.S. critical infrastructure that provides electrical power, clean water and other vital services to ensure our national security, lifeline services and economic prosperity are vulnerable to cyberattacks. All critical infrastructure relies on industrial control systems to serve as the command center for these vital assets.

To achieve mission success, INL combines seasoned control systems cybersecurity analysts, experienced power engineers, cyber researchers, and control systems experts to perform cutting-edge analysis, research and development. This supports national security initiatives that strengthen the security and resilience of critical infrastructure against cyberattacks.

Capabilities

INL has a team of power, controls, electrical and systems engineering experts that incorporates experience and application of controls in critical lifeline sectors and expanded vendor-specific expertise.
  • OpDefender – INL-developed a hardware and software device that filters out dangerous control systems commands, preventing hackers from taking over industrial facilities.

Cybersecurity researchers perform vulnerability assessments that illuminate and alert both the manufacturers and end users to equipment weaknesses, need for added protections, mitigation research or patch development.

Analysts combine traditional all-source threat analysis with the technical acumen of understanding engineering and systems documentation, OT networks, programming languages, and foreign language skills to produce technically sound analytic products.

INL’s uses a multi-phase methodology based on critical function assurance (CFA) approach to identify, prioritize and mitigate the risk inherent in delivering critical functions that depend on digital technology.

The Controls Resource Laboratory is an environment for government and private industry partners to experience the possible effects of kinetic cyber-physical attacks. CRL allows users to perform security research on industrial control systems (ICS) and supervisory control and data acquisition (SCADA) systems.

The What: Cyber-Informed Engineering (CIE)

A framework and tools for a change in philosophy and engineering practices for building secure system designs for existing infrastructure and to withstand the modern and future cyber-adversary.

The How: Consequence-Driven Cyber-informed Engineering (CCE)

Providing critical infrastructure owners and operators a four-phase process for safeguarding their critical operations.

Cybercore Integration Center – INL, in partnership with the state of Idaho, has invested in this facility to advance the cybersecurity of vital cyber-physical systems through leadership, federal partnerships, and research and development. The Center offers 80,000-square-foot, state-of-the-art facility equipped with secure office space, conference rooms and configurable laboratories. 

Over 150,000 square feet of laboratory space dedicated to OT cybersecurity, grid and wireless security, and infrastructure resiliency. Assets include:

  • An 890 square mile desert Site with scaleable test ranges and an unmanned aerial runway.
  • A supervisory control and data acquisition (SCADA) systems laboratory with remote industry and academic access for security research.
  • Electric vehicle and battery security research and testing.
Cybercore Integration Center
Energy Systems Lab
Cybercore University Lab
Control Systems Analysis Center
Bench-scale research
Controls Engineering Lab

Related Energy Programs and Resources

Cyber Testing Resilience for Industrial Control Systems
(CyTRICS)

ASSESSMENT
CyTRICS methodologies allow: identification of high-priority technology (OT) components; performance of expert testing; sharing of information about vulnerabilities in the digital supply chain; and improvements in component design and manufacturing.  
Learn more

Cybersecurity Operational Technology Environment (CyOTE)

ANALYSIS TOOLS
CyOTE improves the sector’s ability to detect and respond to anomalous behavior that indicates potential malicious activity in OT networks.
Learn more

Liberty Eclipse

EXERCISE
The Liberty Eclipse Program is a public and private sector partnership that promotes energy sector preparedness and resilience for energy emergencies stemming from a cyberattack.
Learn more

OT Defender Fellowship

This fellowship gives an opportunity to more fully understand the cyberattack strategies and tactics that both state and nonstate actors use to target U.S. energy infrastructure. 
Learn more

CyberStrike Training

This program enhances the ability of energy sector owners and operators to prepare for a cyber incident impacting operational technology.
Learn more

Software Bill of Materials

Partnering to support SBOM adoption by the energy sector through a proof of concept community.  
Learn more

Supply Chain Cybersecurity Principles

TOOLS
These principles aim to create an enduring framework to drive best practices today, while informing international coordination to advance those practices into the future.
Learn more

Cyber SHIELD

EXERCISE
Cyber SHIELD tools and assessments are open-source, and INL-hosted engagements are available to utility-scale renewable owner/operators.
Learn more

Cybersecurity Training and Workforce Development

INL provides innovative training and development opportunities to meet emerging threats and workforce demands aimed at securing industrial control systems (ICS) across sectors.

ICS Cybersecurity Training

A collaboration with Cybersecurity Infrastructure Security Agency

Cybersecurity
Internships

Full-time paid internships offered.

U.S. Air Force Fellowship

Two distinguished USAF members selected annually.

STEM Cyber Summer Camps

Offered annually in eastern Idaho.

Additional Cybersecurity Tools

Idaho National Laboratory