ICALEPCS 2025 - The 20th International Conference on Accelerator and Large Experimental Physics Control Systems

Session

WEBG MC06 Infrastructure and Cyber Security

WEBG

24 Sept 2025, 11:00

Grand Ballroom (Palmer House Hilton Chicago)

Conveners

WEBG MC06 Infrastructure and Cyber Security

• Miroslaw Dach (Lawrence Berkeley National Laboratory)
• Thomas Birke (Helmholtz-Zentrum Berlin für Materialien und Energie)

24. 20yrs (trying to) securing controls (WEBG001)

Stefan Lueders (European Organization for Nuclear Research)

24/09/2025, 11:00

MC06: Control System Infrastructure and Cyber Security

Contributed Oral Presentation

Computer security is a marathon ran by some of us since decades. Trying to keep the malicious evil out while not inhibiting or strongly impacting accelerator operations and data taking. This talk shall review what worked and what less, and takes a view onto the upcoming challenges in maintaining a fair balance between operations and “security”.

465. HEPS control system network traffic detection with deep learning techniques (WEBG002)

Jiarong Wang (Institute of High Energy Physics)

24/09/2025, 11:15

MC06: Control System Infrastructure and Cyber Security

Contributed Oral Presentation

The High Energy Photon Source (HEPS) is a low-emittance synchrotron radiation-based light source located in suburban Beijing. The HEPS control system encompasses both the accelerator and the beamlines. The system design principles incorporate industrial standards, a global timing system, and modular subsystems. The development of effective cybersecurity techniques for the HEPS control system...

170. Centralized EPICS channel access for VDI users at NSLS-II via CA Gateway architecture (WEBG003)

Anton Derbenev (National Synchrotron Light Source II)

24/09/2025, 11:30

MC06: Control System Infrastructure and Cyber Security

Contributed Oral Presentation

At NSLS-II, EPICS servers for the accelerator and beamlines reside on dedicated VLANs isolated for security and network bandwidth. Since clients must run applications within respective networks, this poses a challenge for enabling centralized observability and control for staff with various roles. We have created a portal to access EPICS process variables (PVs) across the facility, using...

282. TIPPSS for navigating a changing cybersecurity landscape at the Electron-Ion Collider and other scientific research facilities (WEBG004)

Florence Hudson (Columbia University), Linh Nguyen (Brookhaven National Laboratory)

24/09/2025, 11:45

MC06: Control System Infrastructure and Cyber Security

Contributed Oral Presentation

The Electron-Ion Collider (EIC) aims to unlock the secrets of the strong nuclear force and revolutionize our understanding of the fundamental structure of visible matter. It is being built at Brookhaven National Laboratory (BNL) and could possibly be the only large collider built in the world in the next 20-30 years, during the “Age of AI”. This creates the very unique opportunity for a...

418. Cyber Secure Experimental Physics and Industrial Control System (WEBG005)

George McIntyre (SLAC National Accelerator Laboratory)

24/09/2025, 12:00

MC06: Control System Infrastructure and Cyber Security

Contributed Oral Presentation

Secure PVAccess (SPVA) brings production-grade cybersecurity to the
Experimental Physics and Industrial Control System (EPICS) framework
by encapsulating the PVAccess protocol within Transport Layer Security
(TLS). It integrates X.509 certificate-based authentication with
common laboratory-wide services such as Kerberos and LDAP, and delivers a full certificate authority, management, and...