Please use this identifier to cite or link to this item:
A Threat-Vulnerability Based Risk Analysis Model for Cyber Physical System Security
|Title:||A Threat-Vulnerability Based Risk Analysis Model for Cyber Physical System Security|
|Issue Date:||04 Jan 2017|
|Abstract:||The ability to network machinery and devices that are otherwise isolated is highly attractive to industry. This has led to growth in the use of cyber-physical systems (CPSs) with existing infrastructure. However, coupling physical and cyber processes leaves CPSs vulnerable to security attacks. A threat-vulnerability based risk model is developed through a detailed analysis of CPS security attack structures and threats. The Stuxnet malware attack is used to test the viability of the proposed model. An analysis of the Natanz system shows that, with an actual case security-risk score at Mitigation level 5, the infested facilities barely avoided a situation worse than the one which occurred. The paper concludes with a discussion on the need for risk analysis as part of CPS security and highlights the future work of modelling and comparing existing security solutions using the proposed model so to identify the sectors where CPS security is still lacking.|
|Rights:||Attribution-NonCommercial-NoDerivatives 4.0 International|
|Appears in Collections:||Cyber-of-Things: Cyber-Crimes and Cyber-Security Minitrack|
Items in ScholarSpace are protected by copyright, with all rights reserved, unless otherwise indicated.