Simulation-based framework for authenticating SCADA systems and cyber threat security in edge-based autonomous environments

• Published in: Simulation modelling practice and theory Vol. 140; p. 103078
• Main Authors: Mughaid, Ala, Alzu’bi, Shadi, Alkhatib, Ahmad A.A., AlZioud, Adel, Ghazo, Alaa Al, AL-Aiash, Issa
• Format: Journal Article
• Language: English
• Published: Elsevier B.V 01.04.2025
• Subjects: Cyber threat mitigation; Edge computing security; Intrusion detection and prevention systems (IDS/IPS); Modbus TCP/IP authentication; SCADA security; Simulation-based framework; SCADA security; Intrusion detection and prevention systems (IDS/IPS); Cyber threat mitigation; Modbus TCP/IP authentication; Simulation-based framework; Edge computing security
• ISSN: 1569-190X
• DOI: 10.1016/j.simpat.2025.103078

Supervisory Control and Data Acquisition (SCADA) systems are pivotal to critical industries, such as oil and gas, water treatment, and power generation, where they enable real-time monitoring and control over complex industrial processes. These systems commonly use protocols like Modbus/RTU, Modbus TCP/IP, DNP3, and IEC60870, each chosen to meet specific operational requirements. However, vulnerabilities in protocols like Modbus TCP/IP, especially in access control, authentication, and data integrity leave SCADA networks susceptible to cyber threats, with risks ranging from process disruption to data breaches or potential physical harm to infrastructure. This study proposes a simulation-based security framework for SCADA environments using the Modbus TCP/IP protocol, incorporating authentication through unique identification bytes, robust encryption to secure communications, and a layered Intrusion Detection and Prevention System (IDS/IPS) to detect and counteract malicious activities. The framework’s effectiveness is demonstrated through simulated scenarios and a real-world case study, showcasing significant resilience against common cyber threats faced by SCADA systems. •Introduced a simulated security framework to enhance SCADA system in industrial environments.•Authentication method utilizing unique identification bytes to secure Modbus TCP/IP.•Integrated cybersecurity Systems for robust cyber threat mitigation.•Validated the framework’s effectiveness through real-world attack simulations.•Achieved enhanced SCADA security without requiring infrastructure modifications.