Propostas Submetidas

• Engenharia Informática
• Engenharia e Ciência de Dados
• Segurança Informática
• Design e Multimédia
• Inteligência Artifical
• Computação Musical e Design de Som
• Acertar o Rumo - Programação em Java

Titulo Estágio

Realistic IIoT-Driven ICS Testbed and Execution of C2-Based Data Exfiltration

Local do Estágio

DEI-FCTUC

Enquadramento

This project focuses on the development of a realistic Industrial IoT (IIoT) IIoT-driven Industrial Control Systems (ICS) testbed for the implementation and execution of Command and Control (C2)-based data exfiltration techniques. The environment will include encrypted data flows reflecting the full ICS data lifecycle, including data creation, processing, transmission, and storage.
The objective is to execute C2-based Advanced Persistent Threat (APT) data exfiltration attacks against operational encrypted systems and evaluate their impact. The testbed will later be used to validate the effectiveness of encrypted data protection models under C2 attack conditions. The project scope is strictly limited to C2-based techniques, and all testing will be carried out in an execution-focused environment.

Objetivo

The major goal is Development of a Realistic IIoT-Driven ICS Testbed and Execution of C2-Based Data Exfiltration Techniques for Validation of Encrypted Data Protection Models.

The subgoals are:
- Execute C2-based APT data exfiltration attacks.
- Assess the impact of encrypted systems.

Additionally, the results can be published in a scientific publication.

Plano de Trabalhos - Semestre 1

T1.1 – Analysis of the C2 based APT techniques.
T1.2 – Analysis of ICS testbeds.
T1.3 – Design of the IIoT Driven Testbed with support for encryption.
T1.4 – Write the intermediary report.

Plano de Trabalhos - Semestre 2

Task 2.1: Development of the IIoT-Driven ICS Testbed with Encrypted Data Flows.
Task 2.2: Implementation and Execution of C2-Based Data Exfiltration Techniques.
Task 2.3: Validation of Encrypted Data Protection Models Against C2 Attacks.

Condições

The student will have access to all the computational resources necessary to carry out the work. A workspace at CISUC (Centre for Informatics and Systems of the University of Coimbra) will also be made available. Evaluation through simulation may be carried out using the computational resources available in the department.

Observações

Why this is interesting?
• Possibility to contribute to advance security in securing APT threats;
• Possibility to contribute to emerging use cases and new technologies;

Supervisors:
- Bruno Sousa
- Vasco Pereira
- Saad Khan (PhD Student)

Proposal in the scope of CS-Lab activities.

Orientador

Bruno Sousa
bmsousa@dei.uc.pt 📩