As smart buildings move towards open communication technologies, providing access to the Building Automation System (BAS) through the intranet, or even remotely through the Internet, has become a common practice. However, BAS was historically developed as a closed environment and designed with limited cyber-security considerations. Thus, smart buildings are vulnerable to cyber-attacks with the increased accessibility. This study introduces the development and capability of a Hardware-in-the-Loop (HIL) testbed for testing and evaluating the cyber-physical security of typical BASs in smart buildings. The testbed consists of three subsystems: (1) a real-time HIL emulator simulating the behavior of a virtual building as well as the Heating, Ventilation, and Air Conditioning (HVAC) equipment via a dynamic simulation in Modelica; (2) a set of real HVAC controllers monitoring the virtual building operation and providing local control signals to control HVAC equipment in the HIL emulator; and (3) a BAS server along with a web-based service for users to fully access the schedule, setpoints, trends, alarms, and other control functions of the HVAC controllers remotely through the BACnet network. The server generates rule-based setpoints to local HVAC controllers. Based on these three subsystems, the HIL testbed supports attack/fault-free and attack/fault-injection experiments at various levels of the building system. The resulting test data can be used to inform the building community and support the cyber-physical security technology transfer to the building industry.
翻译:随着智能建筑转向开放的通信技术,通过内联网或甚至通过互联网远程进入建筑自动化系统(BAS)已成为一种常见做法,然而,BAS历来是作为一个封闭环境开发的,设计时网络安全考虑有限,因此智能建筑容易受到网络攻击,因为无障碍程度提高,本研究报告介绍了硬件在Loop(HIL)测试台的发展和能力,用于测试和评价智能建筑中典型BAS的网络物理安全。测试台由三个子系统组成:(1) 实时HIL模拟器模拟虚拟建筑的行为,以及通过模拟模型进行动态模拟,使智能建筑的暖化、通风和空调设备设计。(2) 一套真正的HVAC控制器,监测虚拟建筑运作,提供地方控制HVAC在智能模拟器中的典型BVAC设备;以及(3) 一种BAS服务器,连同一个网络服务,供用户全面访问时间表、设置床位、警报模拟器模拟虚拟建筑的行为,以及通过HARC的H-AC系统测试系统系统系统向HARC的系统系统测试系统系统系统进行远程控制。