What is the Industrial Cybersecurity Laboratory?

The Industrial Cybersecurity Laboratory is ZIUR's core infrastructure. This is where we conduct cybersecurity trials and tests on components, systems, processes and various technologies used in the industrial sector which are vulnerable to cyber attacks.

The laboratory is fitted out to simulate a small-scale industrial environment network in line with the extent these technologies are used in Gipuzkoa's industrial processes

This infrastructure provides practical and experimental knowledge in terms of the ramifications cybersecurity has and the use of technology in advanced production models. Using a variety of technological and cybersecurity tests, we test potential hypotheses regarding existing risks, thereby obtaining vital production process digitalisation insight. We will be able to address cybersecurity threats using good practices and recommendations.

Processes implemented at the ZIUR Laboratory

Industrial Process Testing

The Laboratory provides both training and learning. It is used to experiment and also to train personnel who work in Gipuzkoa's industrial companies, technology centres, educational centres and vocational training centres. 

We also have automation and control devices and safety devices which can be connected according to the industrial process we want to emulate or present.

Three types of demonstrations can be performed at the ZIUR laboratory:

  • Virtual laboratory: This presents the lower levels, even up to level 2, of the software simulation-based Purdue model. 
  • Physical Laboratory: This is based on models which compile and control variables in the real industrial process through the use of hardware. A series of cyber attacks are simulated to affect the processes and so as to be able to strengthen them by using industrial cybersecurity solutions. 
     

Network Security Laboratory

In terms of industrial network security, ZIUR's laboratory is geared towards:

  • Testing new cyber-security measures and features developed or implemented in industrial networks.
  • Assessing and testing various manufacturers' proposals for the same cybersecurity threat and being able to compare them. 
  • Testing new cybersecurity tools that reduce risks on automation and control systems to test how they suit an industrial environment and to compare them.
  • Checking the effect of different network structures and protection measures on the industrial process.

This laboratory will simulate a specific and representative industrial process equivalent to the processes carried out in companies in Gipuzkoa. ZIUR boasts an infrastructure that is flexible enough to accommodate a significant amount of network items and it has been designed such that separate networks, zones and lines can be easily created.
 

Product Security Laboratory

The core objective is low-level analysis of operating items in the industrial processes nearest to the production line (from the sensors to the management network) as well as other equipment that will be connected to the industrial network, equipped with different technologies such as PLC, RTU, HMI, SCADA or MES.

This laboratory has the following capabilities:

  • Testing and assessing cybersecurity measures or features designed to improve the intrinsic safety of automation and control system components.
  • Testing, evaluating and comparing different manufacturers' proposals for the same cybersecurity-related feature. 

This laboratory is used to test new devices that have been developed by industrial companies in Gipuzkoa as well as products from other manufacturers that may be included in our industry. Working with ZIUR allows companies to assess the security of the products they manufacture and/or those it will roll out from their production system.
 

Industrial Cybersecurity Laboratory

The cybersecurity laboratory serves to conduct verification tests on the components or on complete specific industrial automation and control systems. 

Component, system or product cybersecurity is assessed according to how they are used in the plants of the companies that use them. The ultimate goal is to identify the deployment method's weaknesses. The most appropriate arrangements for each component and system are also assessed.

It is used to test vulnerabilities or attacks on specific systems and to try and replicate the implications, analysing the previous stages and the results so as to be able to create commitment indicators, tactics, techniques and attack methods (IoC and TTP).
 

How does it work?

The centre's staff runs the ZIUR laboratory. This facility focuses on addressing various purposes, according to the requirements identified in each case. Its technical infrastructure and associated services mean it is possible to reproduce or present the specific case to be simulated.

Management

A collaborative laboratory

Management is a core aspect of this laboratory. We seek to establish collaborations and create a space where shared activities can be conducted, arising from projects that are defined collaboratively between the concerned parties. 

ZIUR seeks to create and identify this collaboration and to channel it - amongst other things - by means of this laboratory.

  • It serves as a practical tool to identify and implement workshops and training activities.
  • For specific projects which companies request, making the existing technological platform available to them either with or without operating personnel.
  • For research projects involving different collaborating organisations
     

Equipment

State-of-the-art technology

The technology at our facilities is state-of-the-art. Consequently, the facilities of the Centre supplement and support the capacity of the companies in this sector, technology centres and universities.

This is a separate space which is designed to address the industry's regulatory requirements which apply to experimentation activities. It hosts standard services, both IT [information technology] and OT [ operation technology], and tools used to analyse and test the security of the analysed products.
 

We test

  • Cybersecurity technology
  • In-house or purchased products of industrial companies
  • Components
  • Systems

The following can be performed at the Laboratory

  • A product you have purchased can be tested
  • A pilot project can be performed
  • R+D+i projects can be performed