Developing cyber resilient systems:

Ross, Ronald; Pillitteri, Victoria; Graubart, Richard; Bodeau, Deborah; McQuaid, Rosalie

doi:10.6028/nist.sp.800-160v2

Cited by 54 publications

(10 citation statements)

References 10 publications

Supporting

Mentioning

Contrasting

Unclassified

Order By: Relevance

“…It should be mentioned that our concerned elements and our breakdown types are extracted from the standards: NIST [44], MITER [45], ISO 61508 [46].…”

Section: Nfv Safety Ontologymentioning

confidence: 99%

Ontology-Based Solution for Handling Safety and Cybersecurity Interdependency in Safety-Critical Systems

Varvarigou¹,

Espes²,

Bersano³

2023

Latest Advances and New Visions of Ontology in Information Science

View full text Add to dashboard Cite

In case, safety-critical systems face an anomaly (either intentional or not), safety and cybersecurity impact humans and environment. Thus, they affect each other and so they are considered as interdependent. An ontology-based solution for safety is needed to handle this interdependency. We propose a new safety ontology for Network Function Virtualization (NFV) framework which is able to cover reliability, availability, maintainability, and integrity-related breakdown types, since they interact and influence safety according to ENISA. Our ontology allows us to have a uniformized representation of the potential anomalies that a system and its elements can face. Based on this representation, a decision-making process takes place to avoid potential conflicts between safety and cybersecurity in order to best handle their interdependency. The results of our implementation show that our ontology handles the safety and cybersecurity interdependency and has little impact on decision-making time, which makes it an effective methodology for NFV framework.

show abstract

“…It should be mentioned that our concerned elements and our breakdown types are extracted from the standards: NIST [44], MITER [45], ISO 61508 [46].…”

Section: Nfv Safety Ontologymentioning

confidence: 99%

Ontology-Based Solution for Handling Safety and Cybersecurity Interdependency in Safety-Critical Systems

Varvarigou¹,

Espes²,

Bersano³

2023

Latest Advances and New Visions of Ontology in Information Science

View full text Add to dashboard Cite

show abstract

“…MITRE 2017 presented a representative set of cyber resilience design principles and described factors used in selecting a set appropriate to a given system in different degrees throughout the system lifecycle (Bodeau and Graubart, 2017). These principles include security, resilient engineering, survivability and evolvability (Ross et al. , 2019).…”

Section: Related Workmentioning

confidence: 99%

Cyber resilience in supply chain system security using machine learning for threat predictions

Yeboah-Ofori

Swart

Opoku-Boateng

et al. 2022

CRR

View full text Add to dashboard Cite

PurposeCyber resilience in cyber supply chain (CSC) systems security has become inevitable as attacks, risks and vulnerabilities increase in real-time critical infrastructure systems with little time for system failures. Cyber resilience approaches ensure the ability of a supply chain system to prepare, absorb, recover and adapt to adverse effects in the complex CPS environment. However, threats within the CSC context can pose a severe disruption to the overall business continuity. The paper aims to use machine learning (ML) techniques to predict threats on cyber supply chain systems, improve cyber resilience that focuses on critical assets and reduce the attack surface.Design/methodology/approachThe approach follows two main cyber resilience design principles that focus on common critical assets and reduce the attack surface for this purpose. ML techniques are applied to various classification algorithms to learn a dataset for performance accuracies and threats predictions based on the CSC resilience design principles. The critical assets include Cyber Digital, Cyber Physical and physical elements. We consider Logistic Regression, Decision Tree, Naïve Bayes and Random Forest classification algorithms in a Majority Voting to predicate the results. Finally, we mapped the threats with known attacks for inferences to improve resilience on the critical assets.FindingsThe paper contributes to CSC system resilience based on the understanding and prediction of the threats. The result shows a 70% performance accuracy for the threat prediction with cyber resilience design principles that focus on critical assets and controls and reduce the threat.Research limitations/implicationsTherefore, there is a need to understand and predicate the threat so that appropriate control actions can ensure system resilience. However, due to the invincibility and dynamic nature of cyber attacks, there are limited controls and attributions. This poses serious implications for cyber supply chain systems and its cascading impacts.Practical implicationsML techniques are used on a dataset to analyse and predict the threats based on the CSC resilience design principles.Social implicationsThere are no social implications rather it has serious implications for organizations and third-party vendors.Originality/valueThe originality of the paper lies in the fact that cyber resilience design principles that focus on common critical assets are used including Cyber Digital, Cyber Physical and physical elements to determine the attack surface. ML techniques are applied to various classification algorithms to learn a dataset for performance accuracies and threats predictions based on the CSC resilience design principles to reduce the attack surface for this purpose.

show abstract

“…В останні роки актуалізуються питання комплексного забезпечення показників гарантування нормального функціонування ІКС, які раніше виокремлювалися в різні дисципліни. Кіберінциденти у галузі енергопостачання України, розбір яких наведено в проектах американських стандартів NIST [1,2], чи злам інфраструктури SoftServe [3], який негативно вплинув на рейтинг вітчизняної ІТ сфери, інші приклади підтверджують необхідність комплексного розгляду проблем гарантоздатності ІКС критичних та бізнес-критичних ІКС.…”

Section: вступunclassified

Методологія Забезпечення Гарантоздатності Інформаційно-Керуючих Систем З Використанням Багатоцільових Стратегій Обслуговування

Поночовний¹,

Харченко²

2020

reks

View full text Add to dashboard Cite

The article considers the methodology of ensuring the dependability of information and control systems using multi-purpose maintenance strategies. The relevance of research is due to the need to ensure the functioning of dependable information and control systems in the face of changes in requirements, environmental parameters, and the manifestation of unspecified failures of their components. The methodology is presented at the system level as a combination of the concept of multi-purpose maintenance, as well as the principles of taking into account changes in the information and control system and environment during the life cycle; comprehensive consideration of different types of failures, and the effects of change; multi-purpose maintenance and combines a set of new models and methods for determining the parameters of dependability information and control systems and the choice of parameters for their maintenance procedures. The proposed concept of multi-purpose maintenance is obtained by developing the Fon-Neumann paradigm and is formulated as a concept of building reliable and secure systems from insufficiently dependable components and multi-purpose maintenance on combined strategies in changing conditions and environment. The scope of the proposed concept is applicable in cases where the principles of von-Neumann do not allow building a viable system due to economic, temporal, or other reasons. In this case, the use of principles, methods, and models that are conceptual, extends to information and control systems built using maintained components and system multi-purpose service strategies. The proposed principle of taking into account changes involves the expansion of the classical control circuit of the fault-tolerant system, which response to the fault occurrence as errors and failures. The principle of comprehensive consideration of different types of failures and the effects of change is a continuation of the principles of unity and connection during the procedures of system analysis. It is also a logical continuation of the facet arrangement of fault types and chains of causal relationships from faults and defects to faults, failures, and errors. Within the framework of the proposed methodology, multi-purpose maintenance strategies, a set of options for goals, types, processes, properties, and parameters of information and control systems have been developed, which reduces model uncertainty and justifies practical measures to ensure dependability at different stages of the life cycle.

show abstract

Developing cyber resilient systems:

Cited by 54 publications

References 10 publications

Ontology-Based Solution for Handling Safety and Cybersecurity Interdependency in Safety-Critical Systems

Ontology-Based Solution for Handling Safety and Cybersecurity Interdependency in Safety-Critical Systems

Cyber resilience in supply chain system security using machine learning for threat predictions

Методологія Забезпечення Гарантоздатності Інформаційно-Керуючих Систем З Використанням Багатоцільових Стратегій Обслуговування

Contact Info

Product

Resources

About