NCS3 - Reactive networks

Authors:

  • Tommy Gustafsson
  • Fredrik Mörnestedt

Publish date: 2015-04-23

Report number: FOI-R--4051--SE

Pages: 23

Written in: English

Keywords:

  • Secure systems
  • separation of services
  • network security
  • ICS.

Abstract

This report describes how the technology of reactive networking can be used to improve the protection of industrial control systems (ICS). In reactive networking, network components such as network switches are utilized to create an isolated path from a user to a service or server. As long as the isolated path is active, other traffic, such as Internet access, is blocked. The purpose with reactive networking is to make it more difficult for an antagonist outside of the network in question to actively control compromised computers on the inside.