DHS Awards Cyber Physical System Contracts

Thursday, December 10, 2015 @ 06:12 PM gHale

The Department of Homeland Security (DHS) Science and Technology Directorate (S&T) awarded five contracts for $7.8 million for research on technologies to help defend against attacks on cyber physical systems.

These projects are part of the DHS S&T Cyber Security Division’s larger Cyber Physical Systems Security (CPSSEC) program.

NIST Working on Data Security Guide
Cyber Evaluation Tool Update Releases
Security Tool Shifts to Private Sector
Practice Guide for Utilities from NIST

The awards help address inherent vulnerabilities and strengthen security in the areas of automotive security, building control systems, and medical device security.

Award recipients include:
• New York University: $1.4 million
• University of Michigan: $1.2 million
• HRL Laboratories, LLC, of Malibu, California: $2.5 million
• Kansas State University:$900,000
• Medical Device Innovation, Safety and Security Consortium of The Bronx, New York: $1.8 million

“In our daily lives, we use a complex network of devices – in our cars, homes, offices and hospitals – all of which require attention from a homeland security perspective,” said DHS Under Secretary for Science and Technology Dr. Reginald Brothers. “S&T aims to be vigilant against these potential threats and address security in a serious way.”

Advances in networking, computing, sensing, and control systems enabled a broad range of Cyber Physical Systems devices, from the smart power grid to the Internet of Things. The new contracts will focus research and development efforts in these technical areas:

• Automotive Security: Build an infrastructure for secure and reliable update systems for government and privately-owned vehicles
• Building Control Systems: Develop early-warning systems as well as a layered architecture to enforce security and safety requirements in the event of a cyber-physical attack
• Medical Device Security: Support the creation of a safe and secure national biomedical device network and an automated risk management framework to integrate security in all phases of the device life cycle