A Systems-Theoretic Security Model for Large Scale, Complex Systems Applied to the US Air Transportation System

Laracy, Joseph R.

doi:10.4236/ijcns.2017.105005

Cited by 8 publications

(3 citation statements)

References 24 publications

Supporting

Mentioning

Contrasting

Order By: Relevance

“…Laracy [27], [28] recognized the similarities between safety and security and proposed an extension of STAMP to security problems of critical infrastructure, such as the Air Transportation System. This approach was called STAMP-Sec [27].…”

Section: System-theoretic Accident Model and Processes (Stamp)mentioning

confidence: 99%

Cybersafety: A System-Theoretic Approach to Identify Cyber-Vulnerabilities & Mitigation Requirements in Industrial Control Systems

Khan

Madnick

2022

IEEE Trans. Dependable and Secure Comput.

View full text Add to dashboard Cite

Recent cyber-physical attacks, such as Stuxnet, Triton etc., have invoked an ominous realization about the vulnerability of critical infrastructure, including water, power and gas distribution systems. Traditional IT security-biased protection methods that focus on improving cyber hygiene are largely impotent in the face of targeted attacks by advanced cyber-adversaries. Thus, there is an urgent need to analyze the safety and security of critical infrastructure in a holistic fashion, leveraging the physics of the cyber-physical system. System-Theoretic Accident Model & Processes (STAMP) offers a powerful framework to analyze complex systems; hitherto, STAMP has been used extensively to perform safety analyses but an integrated safety and cybersecurity analysis of industrial control systems (ICS) has not been published. This paper uses the electrical generation and distribution system of an archetypal industrial facility to demonstrate the application of a STAMP-based method -called Cybersafety -to identify and mitigate cyber-vulnerabilities in ICS. The key contribution of this work is to differentiate the additional steps required to perform a holistic cybersecurity analysis for an ICS of significant size and complexity and to present the analysis in a structured format that can be emulated for larger systems with many interdependent subsystems.

show abstract

Section: System-theoretic Accident Model and Processes (Stamp)mentioning

confidence: 99%

Cybersafety: A System-Theoretic Approach to Identify Cyber-Vulnerabilities & Mitigation Requirements in Industrial Control Systems

Khan

Madnick

2022

IEEE Trans. Dependable and Secure Comput.

View full text Add to dashboard Cite

show abstract

“…Although originally developed for safety, many of the theory's constructs are applicable to security. David Zipkin has shown the applicability of the model on policies for managing malicious software [45] while Joseph R. Laracy has explored its use for bio-defense planning [46] and air transportation [47]. The model with security extensions that will be defined in this paper is referred to as STAMP-Sec.…”

Section: A New Approachmentioning

confidence: 99%

“…Unlike system safety models in which hazards are often "generated" endogenously within the socio-technical system, security threats may develop exogenously. While the "insider-threat" risk must be addressed, malicious actors outside of the system under discussion must be also modeled [47].…”

Section: Auditabilitymentioning

confidence: 99%

Systems Theory and Information Security: Foundations for a New Educational Approach

Laracy¹,

Marlowe²

2018

Information Security Education Journal (ISEJ)

Self Cite

View full text Add to dashboard Cite

Information security education has traditionally been approached with a variety of tools. Models such as Bell-LaPadula and Clark-Wilson, cryptography, and formal methods seek to design systems without certain classes of vulnerabilities. Red teaming seeks to find vulnerabilities that were missed and security software often removes the vulnerabilities. To a lesser extent, probabilistic risk assessment and game theory have also been applied to assess threats. However, on their own, in isolation, these approaches have not "solved" the information security crisis. Internet security in particular is an area of great concern given the plethora of vulnerabilities that enable threats to confidentiality, integrity, availability, non-repudiation, authorization, authentication, and auditability. A new approach to information security engineering education is necessary that views the Internet as a complex, socio-technical system. A systems perspective acknowledges that security can only be achieved through a holistic model that addresses technological architecture and software processes, organizational behavior, and human factors. This paper suggests a novel method for information security education to identify and characterize current deficiencies in a network security control structure, elucidate the relationship between software/systems engineering and security risks, and inform an architectural description of a secure information system architecture.

show abstract

Infrastructure and Complex Systems Automation

Filip

Leiviskä

2023

Springer Handbooks

View full text Add to dashboard Cite

A Systems-Theoretic Security Model for Large Scale, Complex Systems Applied to the US Air Transportation System

Cited by 8 publications

References 24 publications

Cybersafety: A System-Theoretic Approach to Identify Cyber-Vulnerabilities & Mitigation Requirements in Industrial Control Systems

Cybersafety: A System-Theoretic Approach to Identify Cyber-Vulnerabilities & Mitigation Requirements in Industrial Control Systems

Systems Theory and Information Security: Foundations for a New Educational Approach

Infrastructure and Complex Systems Automation

Contact Info

Product

Resources

About