SNOK tested in research project

Results from the CybWin research project are ready

Understanding the threat landscape for critical infrastructure is demanding, and testing cyber security on operational infrastructure can involve very high risk. We are therefore grateful to have been part of the research project CybWin, where we were able to test the detection capacity of our self-developed Cybersecurity Monitoring System, SNOK™. This project gave us the opportunity to really test our technology, also against some of the largest players in the world, with good results.

Five different steps that made up an attack were carried out in a controlled experiment. SNOK™ immediately detected 4 out of 5 steps. SNOK™ did the best of the general IDS solutions, only beaten by a specialized solution for this type of decentralized power station.

Read about the results and the different solutions in the research report here.

Tabell som viser at SecureNOK avdekket 4 av 5 steg som ble utført i det kontrollerte eksperimentet.

Already in 2019, IFE (Institute for Energy Technology) started the construction of its Cybersecurity Center. At the same time, the research project CybWin was funded by the Research Council of Norway and kicked off. The project consortium consisted of owners of Norwegian critical infrastructure, Norwegian and international research institutes/universities as well as Secure-NOK as the sole supplier of cyber security solutions. Siemens, Norges Vassdrags og Energidirektorat (NVE) and KraftCERT have contributed in addition to the ten project partners: IFE, NTNU, Secure-NOK AS, Avinor Flysikring AS, Statnett, KraftCERT, VTT Technical Research Center of Finland Ltd, EUROCONTROL and Korean Advanced Institute of Science and Technology (KAIST).

Shunt Reactor : Maintain voltage electricity

CybWin deals with cyber security in critical infrastructure. The project has developed several testbeds for carrying out cyber security experiments. One of the testbeds is a Hardware In the Loop (HIL) digital power station. The project carried out realistic attack scenarios and documented detection results from four monitoring solutions in addition to SNOK®. The realistic attack scenarios are of the type that are too risky to test in operational power stations. PHD candidate Jon-Martin Storm (NVE/University of Oslo), has recently published a research article from this experiment, the result can be read here:

The project has enabled the IFE Security Center, operated by the SNOK Cybersecurity Monitoring System, to conduct controlled scientific experiments for security testing and human performance evaluation.