S. Fluchs scite author profile

S. Fluchs

2Publications

5Citation Statements Received

72Citation Statements Given

How they've been cited

How they cite others

Affiliations

Helmut Schmidt University

Publications

Order By: Most citations

Evaluation of Visual Notations as a Basis for ICS Security Design Decisions

2023

View full text Add to dashboard Cite

For making informed security decisions during the design of industrial control systems (ICS), engineers need to process large amounts of security-relevant information outside their area of expertise. This problem moves the presentation of the security-relevant information into focus: security-relevant engineering information must be presented to security decision-makers in a way that enables them to decide upon security measures to build a defensible system. Visual representations have the potential to effectively convey suchlike information, thus saving the engineers' brain capacity for the security decision-making. However, research shows that this potential is only realized if the visualizations are carefully constructed for cognitive effectiveness. As a prerequisite for constructing a visual language for security engineering in the future, this paper explores two scientific questions: 1) what are the requirements for visualizing security-relevant engineering information in a way that enables engineers to make security decisions during ICS design? and 2) which existing visual languages meet (parts of) these requirements? The evaluation of existing visualizations reveals that there is a need for an improved, specialized visual language for security engineering that builds upon established engineering visualizations like piping and instrumentation diagrams and network maps, represents all security-relevant information as icons to achieve semantic transparency, and includes filtering mechanisms to reduce the complexity of each single diagram. The paper finishes with defining the main pillars of a future visual language that should allow ICS engineers to quickly capture security-relevant information and guide them through the process of selecting the right security measures to design a defensible ICS.INDEX TERMS Automation engineering, industrial control system security, security by design, visual language.

show abstract

Ein Systemmodell für Security-Engineering

Fluchs¹,

Schmidt²,

Mendl-Heinisch³

2019

TeSi

View full text Add to dashboard Cite

Security und effizienter Betrieb werden oft als unvereinbare Gegensätze beschrieben. Dabei stehen sie einer gemeinsamen Herausforderung gegenüber: Das Engineering muss effizienter und flexibler werden, und dafür müssen Engineering-Informationen maschinenlesbar werden. Dieser Beitrag legt die Grundlagen für ein Security-Systemmodell, abbildbar in AutomationML, mit dem Ziel, Security-Engineering „by Design“ in den Automation-Engineering-Prozess zu integrieren.

show abstract

scite is a Brooklyn-based organization that helps researchers better discover and understand research articles through Smart Citations–citations that display the context of the citation and describe whether the article provides supporting or contrasting evidence. scite is used by students and researchers from around the world and is funded in part by the National Science Foundation and the National Institute on Drug Abuse of the National Institutes of Health.

Contact Info

customersupport@researchsolutions.com

10624 S. Eastern Ave., Ste. A-614

Henderson, NV 89052, USA

This site is protected by reCAPTCHA and the Google Privacy Policy and Terms of Service apply.

Blog Terms and Conditions API Terms Privacy Policy Contact Cookie Preferences Do Not Sell or Share My Personal Information

Made with 💙 for researchers

Part of the Research Solutions Family.

S. Fluchs

Evaluation of Visual Notations as a Basis for ICS Security Design Decisions

Ein Systemmodell für Security-Engineering

Contact Info

Product

Resources

About