The Cybersecurity and Infrastructure Security Agency (CISA) has collaborated with MITRE, a nonprofit organization, to create a specialized cyberattack emulation platform designed specifically for operational technology (OT) networks.
Furthermore, this initiative extends the capabilities of MITRE Caldera, an open-source tool aimed at streamlining cybersecurity testing by allowing teams to emulate adversaries and test platform responses to attacks.
The development of this platform for OT is a joint effort between the Homeland Security Systems Engineering and Development Institute (HSSEDI) and CISA, with the goal of enhancing the resiliency of critical infrastructure. This tool, an extension of the original Caldera platform, is now available for public use.
Nick Tsamis, Chief Engineer at MITRE Cybersecurity, highlighted the challenges that cybersecurity teams face when working within the unique constraints of OT systems. The tool, known as Caldera for OT, is intended to provide operational stakeholders with easy-to-use and adaptable capabilities to effectively protect critical infrastructure and share knowledge within the OT cybersecurity community.
This initiative is crucial in addressing cyber threats to OT systems, with Eric Goldstein, Executive Assistant Director for Cybersecurity at CISA, emphasizing the need for actionable tools and resources to support the critical infrastructure community.
The collaboration evolved from automated adversary emulation simulations conducted at CISA’s Control Environment Laboratory Resource (CELR), focusing on research in operational technology.
As OT and industrial control systems are integral to various sectors, including public transportation, commerce, water, and electricity, enhancing their cybersecurity defenses is of utmost importance.
Researchers have noted a significant increase in ransomware attacks targeting industrial infrastructure, underscoring the urgency of initiatives like Caldera for OT in safeguarding critical systems.