Please use this identifier to cite or link to this item: http://hdl.handle.net/10125/41890

A Threat-Vulnerability Based Risk Analysis Model for Cyber Physical System Security

File SizeFormat 
paper0741.pdf2.38 MBAdobe PDFView/Open

Item Summary

Title: A Threat-Vulnerability Based Risk Analysis Model for Cyber Physical System Security
Authors: Ledwaba, Lehlogonolo
Venter, H.S.
Keywords: Cyber-Physical Systems
Risk Analysis
Security
Stuxnet
Issue Date: 04 Jan 2017
Abstract: The ability to network machinery and devices that are otherwise isolated is highly attractive to industry. This has led to growth in the use of cyber-physical systems (CPSs) with existing infrastructure. However, coupling physical and cyber processes leaves CPSs vulnerable to security attacks. A threat-vulnerability based risk model is developed through a detailed analysis of CPS security attack structures and threats. The Stuxnet malware attack is used to test the viability of the proposed model. An analysis of the Natanz system shows that, with an actual case security-risk score at Mitigation level 5, the infested facilities barely avoided a situation worse than the one which occurred. The paper concludes with a discussion on the need for risk analysis as part of CPS security and highlights the future work of modelling and comparing existing security solutions using the proposed model so to identify the sectors where CPS security is still lacking.
Pages/Duration: 10 pages
URI/DOI: http://hdl.handle.net/10125/41890
ISBN: 978-0-9981331-0-2
DOI: 10.24251/HICSS.2017.720
Rights: Attribution-NonCommercial-NoDerivatives 4.0 International
Appears in Collections:Cyber-of-Things: Cyber-Crimes and Cyber-Security Minitrack



Items in ScholarSpace are protected by copyright, with all rights reserved, unless otherwise indicated.