TY - GEN
T1 - ExSol
T2 - 7th Workshop on Modeling and Simulation of Cyber-Physical Energy Systems, MSCPES 2019
AU - Lamp, Josephine
AU - Rubio-Medrano, Carlos E.
AU - Zhao, Ziming
AU - Ahn, Gail Joon
N1 - Funding Information:
ACKNOWLEDGMENTS AND DISCLAIMER This material is based upon work supported by the Department of Energy under Award Number DE-OE0000780 and by a grant from the Center for Cybersecurity and Digital Forensics at Arizona State University. The work of Josephine Lamp and Ziming Zhao was performed during the time they were affiliated to Arizona State University. Any opinions, findings or recommendations expressed in this material are those of the author(s) and do not necessarily reflect the views of United States Government or any agency thereof.
Publisher Copyright:
© 2019 IEEE.
PY - 2019/4
Y1 - 2019/4
N2 - No longer just prophesized about, cyber-attacks to Energy Delivery Systems (EDS), e.g., the power grid, gas and oil industries, are now very real dangers, resulting in non-trivial economical losses and an erosion of the public's confidence in EDS infrastructures. In such a context, performing risk analysis for EDS is difficult due to their innate diversity and interdependencies, along with an always-increasing threatscape and attack vectors. With this in mind, this paper presents ExSol, a collaborative, real-time, requirements-based risk assessment framework that features an approach for modeling real-life EDS infrastructures, a technique that retrieves well-defined security requirements from an EDS ontology, and a methodology for calculating risk for a single asset and for an entire system. In addition, we also provide experimental evidence that includes several attack case scenarios, which showcase the effectiveness of our proposed approach for being fully deployed in practice.
AB - No longer just prophesized about, cyber-attacks to Energy Delivery Systems (EDS), e.g., the power grid, gas and oil industries, are now very real dangers, resulting in non-trivial economical losses and an erosion of the public's confidence in EDS infrastructures. In such a context, performing risk analysis for EDS is difficult due to their innate diversity and interdependencies, along with an always-increasing threatscape and attack vectors. With this in mind, this paper presents ExSol, a collaborative, real-time, requirements-based risk assessment framework that features an approach for modeling real-life EDS infrastructures, a technique that retrieves well-defined security requirements from an EDS ontology, and a methodology for calculating risk for a single asset and for an entire system. In addition, we also provide experimental evidence that includes several attack case scenarios, which showcase the effectiveness of our proposed approach for being fully deployed in practice.
UR - http://www.scopus.com/inward/record.url?scp=85068844592&partnerID=8YFLogxK
UR - http://www.scopus.com/inward/citedby.url?scp=85068844592&partnerID=8YFLogxK
U2 - 10.1109/MSCPES.2019.8738791
DO - 10.1109/MSCPES.2019.8738791
M3 - Conference contribution
AN - SCOPUS:85068844592
T3 - 7th Workshop on Modeling and Simulation of Cyber-Physical Energy Systems, MSCPES 2019 - Held as part of CPS Week, Proceedings
BT - 7th Workshop on Modeling and Simulation of Cyber-Physical Energy Systems, MSCPES 2019 - Held as part of CPS Week, Proceedings
PB - Institute of Electrical and Electronics Engineers Inc.
Y2 - 15 April 2019
ER -