Bridging industrial control systems design and testing through threat modeling-driven penetration testing - a microgrid case study

This academic paper describes a case study using threat modeling (identifying potential attacks on a system) combined with penetration testing (simulating attacks to find weaknesses) to improve the design and testing of industrial control systems, specifically focusing on a microgrid (a small-scale electrical grid that can operate independently). The research bridges the gap between how these critical infrastructure systems are designed and how they are tested for security vulnerabilities.