Enhancing Computer Security for Radiation Detection Systems

Radiation detection systems are comprised of a large number of fixed and mobile radiation detectors used for safety and security purposes for nuclear power energy production, nuclear fuel cycle activities, nuclear research reactor operation, medical applications, transportation of nuclear material, environmental monitoring, border control and major public events (among others). Radiation detection equipment, and associated computer-based systems, can be connected through hardware and software computer network components to wired and wireless networks, which may include the use of mobile infrastructure, cloud computing and other storage services.  This connectivity increases the possibility of compromise and manipulation of sensitive data.  Radiation detection systems rely on digital technologies that may be subject of a cyber-attack.  A cyber-attack that disrupts the confidentiality, integrity, and availability of the information that can be stored, manipulated and transmitted, could impact the security and safety of the facility, installation, or operational functions being performed. Therefore, the development of methodologies (e.g. process authentication and data encryption) and techniques (e.g. use of decoupling mechanism, and application of defensive computer security architecture) to increase radiation detection systems' computer security, while maintaining effectiveness, is important.This CRP will research detection system technologies, and investigate cyber threat capabilities, to develop new approaches (methodologies and techniques) for security measures that support the use of radiation detection systems, which includes the configuration and calibration mechanisms and data communication protocols. The results of this CRP are intended to strengthen Member States’ capabilities to secure digitally-based systems used for the detection of nuclear and other radioactive material.