Cybersecurity of<scp>SCADA</scp>within Substations

Hahn, Adam; Sun, Chuanwen; Liu, Chen‐Ching

doi:10.1002/9781118755471.sgd055

Cited by 6 publications

(2 citation statements)

References 12 publications

Supporting

Mentioning

Contrasting

Unclassified

Order By: Relevance

“…ThecurrentglobalsecuritylandscapethathascausedGeneralDempsey(andmostofus)somuchangst hasasmuchtodowiththeidentificationofthreatagentsasitdoeswithhandlingthesophistication and complexity of current and future threats (Shaw, 2006). The cyberspace domain as we have notedprovidesanumberofdifferentchallengesforusamongstthembeingtheabilitytodetermine quicklythepotentialsourceofthethreatstodecideanappropriatecourseofaction(COA).Among thehighestoftheprioritiesistheneedtoreducethecybervulnerabilities.Theconflictswagedover historyinthefourconventionalwarfaredomains(air,space,sea,land)havebeenverydifferentin thedeterminationofwherethethreatsmayoriginate.Inthecyberspacedomain,however,because thepotentialsourcesofthethreatsaresoverydifficulttoimmediatelydetermine,averyspecialand differentsetofchallengesmustbeovercome.TheNationalInstituteofStandardsandTechnology (NIST),aswellasothergovernmentagencies,havedonealotofworkinclassifyingandcategorizing cyberthreats.Itisverymuchanissuethatgoesbeyondsimplydeliberateattacksthatcanbeattributed toindividuals,groups,governments,etc.,includingnaturaldisasters,e.g.,earthquakes,tornados, hurricanes,storms,pandemics.Inaddition,therecanbedisastersthatcanoccurdotounintended consequencesofhumanbehavior,e.g.,someonehitsthewrongswitchordoesnotturnofftheright switchandcausesamajorproblem.…”

Section: Reduce the Vulnerabilitiesmentioning

confidence: 99%

Quantifying Decision Making in the Critical Infrastructure via the Analytic Hierarchy Process (AHP)

Hurley

2017

International Journal of Cyber Warfare and Terrorism

View full text Add to dashboard Cite

Inthispaper,weexaminethebenefitsofamorequantifiablewaytomakedecisionsthatenablesenior leaderstobettermanagedisruptionofandattacksonthecriticalinfrastructure.Mostofthedecisions havebeenmadeusingintuitionandinsomecasesunrelatedexperiencesandhavenotparticularly workedtothebenefitofthesectors'performanceandstability.Muchofthisisduetothehistoryof thelogiccontrolsystemsandnetworksthatwerefairlyisolatedandmuchbetterprotected.Attempts toreducecostsandsecuremanyofthebenefitsofIP-basedenvironmentshaveunfortunatelynow alsointroducedsomeofthevulnerabilitiesindicativeofIP-basedsystemsintothelogicenvironments. Seniorleadershavenotbeenusedtothesenew'hybrid'informationtechnology/operationaltechnology (IT/OT)environmentswhichthoughcreatingnewopportunitiesalsointroducenewchallenges.The uniquenatureofthecriticalinfrastructureinwhichitisover80%-ownedbytheprivatesector,often regulatedbythefederalgovernment,andservestheinterestsanddemandsofthepublic,createsa non-trivialchallengeatmanydifferentlevels.Moretrustandcooperationbetweenthethreeelements ofsocietyissurelyadesiredinterestbythekeystakeholders,buttherearemanyconcernsinterms ofover-regulation,costs,andlossofintellectualpropertythathaveconsistentlysustainedalevelof discomfortbetweenthethreecommunitiesintermsoftheprioritiesandself-servinginterestsofeach other.Thechallengesofthelowasymmetryentryandattributionwithinthecyberdomainhaveraised theprofileofmanyactorswhowouldnotevenhavepreviouslyregisteredinthe'noise'onatrouble orproblemscale.Now,theabilitytodeterminethoseresponsible,aswellas,almostanyactorhaving theabilitytopresentachallengetotheenvironmenthavechangedmanyofthedynamicsintermsof howseniorleadersmustnowoperateandmanagetheappropriatesystemsandnetworks.Hence,for obviousreasons,seniorleadersaremuchmorecautiousintheirapproachtodecisionmakingbecause ofthepotentialconsequences.Thisisespeciallytruebecausecyberassets,thoughsovaluablecanbe alsosovulnerable.Inthisstudy,wewilldiscussamethodthatmovesdecisionfromalessarbitrary toamoredata-centric,quantifiableapproachthatdrivesleadershiptobetterandquickerdecisions.

show abstract

Section: Reduce the Vulnerabilitiesmentioning

confidence: 99%

Quantifying Decision Making in the Critical Infrastructure via the Analytic Hierarchy Process (AHP)

Hurley

2017

International Journal of Cyber Warfare and Terrorism

View full text Add to dashboard Cite

show abstract

“…Em contraste com os sistemas de informac ¸ões tradicionais, onde as propriedades de Confidencialidade e Integridade são consideradas prioritárias, nos sistemas industriais de infraestrutura crítica a Disponibilidade é fundamental [Hahn et al 2016]. Nesse contexto, uma das principais ameac ¸as consistem nos ataques de negac ¸ão de servic ¸o, do inglês Denial of Service (DoS).…”

Section: Introduc ¸ãOunclassified

Modelagem e Detecção de Ataques Grayhole ao Protocolo GOOSE usando o Framework ERENO

Gonçalves,

Quincozes,

Quincozes

et al. 2023

Anais Do XXIII Simpósio Brasileiro De Segurança Da Informação E De Sistemas Computacionais (SBSeg 2023)

View full text Add to dashboard Cite

A crescente necessidade de reforçar a segurança cibernética na infraestrutura crítica, especificamente em subestações elétricas que se comunicam através do protocolo Generic Object Oriented Substation Event (GOOSE), requer técnicas efetivas de detecção e prevenção de ameaças. Esse protocolo é definido pelo padrão IEC-61850 e protege dispositivos físicos notificando eventos como faltas elétricas. Entretanto, a sua adoção abre brechas para a exploração de vulnerabilidades através de ataques cujas assinaturas precisam ser mapeadas. Destaca-se uma lacuna na literatura referente à falta de assinaturas do ataque Grayhole. Neste artigo, é proposta a modelagem e implementação de tal ataque ao protocolo GOOSE. Ademais, tal modelagem é incorporada ao ERENO, um framework para geração de datasets de intrusões. A eficácia do dataset resultante é validada através de cinco algoritmos de aprendizado de máquina, com destaque para o algoritmo J48 que obteve 90,68% de F1-Score.

show abstract