Attack Surface Metrics and Privilege-based Reduction Strategies for Cyber-Physical Systems

06/16/2018
by   Ali Tamimi, et al.
0

Cybersecurity risks are often managed by reducing the system's attack surface, which includes minimizing the number of interconnections, privileges, and impacts of an attack. While attack surface reduction techniques have been frequently deployed in more traditional information technology (IT) domains, metrics tailored to cyber-physical systems (CPS) have not yet been identified. This paper introduces attack surface analysis metrics and algorithms to evaluate the attack surface of a CPS. The proposed approach includes both physical system impact metrics, along with a variety of cyber system properties from the software (network connections, methods) and operating system (privileges, exploit mitigations). The proposed algorithm is defined to incorporate with the Architecture Analysis & Design Language (AADL), which is commonly used to many CPS industries to model their control system architecture, and tools have been developed to automate this analysis on an AADL model. Furthermore, the proposed approach is evaluated on a distribution power grid case study, which includes a 7 feeder distribution system, AADL model of the SCADA control centers, and analysis of the OpenDNP3 protocol library used in many real-world SCADA systems.

READ FULL TEXT
research
03/22/2019

Limitations on Observability of Effects in Cyber-Physical Systems

Increased interconnectivity of Cyber-Physical Systems, by design or othe...
research
08/17/2022

On the Elements of Datasets for Cyber Physical Systems Security

Datasets are essential to apply AI algorithms to Cyber Physical System (...
research
10/31/2017

A Model-Based Approach to Security Analysis for Cyber-Physical Systems

Evaluating the security of cyber-physical systems throughout their life ...
research
01/03/2018

Impact Assessment of Hypothesized Cyberattacks on Interconnected Bulk Power Systems

The first-ever Ukraine cyberattack on power grid has proven its devastat...
research
03/06/2018

Secure Minimum Time Planning Under Environmental Uncertainty: an Extended Treatment

Cyber Physical Systems (CPS) are becoming ubiquitous and affect the phys...
research
02/20/2022

Behind Closed Doors: Process-Level Rootkit Attacks in Cyber-Physical Microgrid Systems

Embedded controllers, sensors, actuators, advanced metering infrastructu...
research
11/20/2021

Inter-Domain Fusion for Enhanced Intrusion Detection in Power Systems: An Evidence Theoretic and Meta-Heuristic Approach

False alerts due to misconfigured/ compromised IDS in ICS networks can l...

Please sign up or login with your details

Forgot password? Click here to reset