IT vs. OT Security: A Time to Consider a Change in CIA to Include Resilienc

Conklin, Wm. Arthur

doi:10.1109/hicss.2016.331

Cited by 26 publications

(11 citation statements)

References 1 publication

Supporting

Mentioning

Contrasting

Unclassified

Order By: Relevance

“…Some key differences between IT and OT security revolve around the risks associated with loss of operation, asset availability, communication latency, architectural differences and contingency management strategies [122]- [124].…”

Section: Risk Assessment Methodologymentioning

confidence: 99%

Cyber-Physical Energy Systems Security: Threat Modeling, Risk Assessment, Resources, Metrics, and Case Studies

Zografopoulos¹,

Ospina²,

Liu³

et al. 2021

Preprint

View full text Add to dashboard Cite

Cyber-physical systems (CPS) are interconnected architectures that employ analog, digital, and communication resources for their interaction with the physical environment. CPS are the backbone of enterprise, industrial, and critical infrastructure. Thus, their vital importance, makes them prominent targets for malicious attacks aiming to disrupt their operations. Attacks targeting cyber-physical energy systems (CPES), given their mission-critical nature, can have disastrous consequences. The security of CPES can be enhanced leveraging testbed capabilities to replicate power systems operation, discover vulnerabilities, develop security countermeasures, and evaluate grid operation under fault-induced or maliciously constructed scenarios. In this paper, we provide a comprehensive overview of the CPS security landscape with emphasis on CPES. Specifically, we demonstrate a threat modeling methodology to accurately represent the CPS elements, their interdependencies, as well as the possible attack entry points and system vulnerabilities. Leveraging the threat model formulation, we present a CPS framework designed to delineate the hardware, software, and modeling resources required to simulate the CPS and construct high-fidelity models which can be used to evaluate the system's performance under adverse scenarios. The system performance is assessed using scenario-specific metrics, while risk assessment enables the system vulnerability prioritization factoring the impact on the system operation. The overarching framework for modeling, simulating, assessing, and mitigating attacks in a CPS is illustrated using four representative attack scenarios targeting CPES. The key objective of this paper is to demonstrate a stepby-step process that can be used to enact in-depth cybersecurity analyses, thus leading to more resilient and secure CPS.

show abstract

Section: Risk Assessment Methodologymentioning

confidence: 99%

Cyber-Physical Energy Systems Security: Threat Modeling, Risk Assessment, Resources, Metrics, and Case Studies

Zografopoulos¹,

Ospina²,

Liu³

et al. 2021

Preprint

View full text Add to dashboard Cite

show abstract

“…For example, as noted by Ladkin and others, some computer evidence would satisfy what they termed the 'Tapper Condition' i.e., having immediately discernible flaws/faults due to their simplistic nature (2020). A lot of these are Operational Technology systems, which are hardware and software that monitor or regulate physical processes (Conklin, 2016) such as speedometers, and unlike Information Technology systems, ascertaining their reliability is relatively easier (Ladkin, and others, 2020). In view of this reality, it is problematic to treat all forms of eevidence identically with respect to preconditions for admissibility.…”

Section: Unique Challenges For E-evidencementioning

confidence: 99%

Admission of electronic evidence

Rutenberg¹,

Kiptinness²,

Sugow³

2021

DEESLR

View full text Add to dashboard Cite

In its provision for the admissibility of electronic evidence, the Kenyan Evidence Act includes two apparently conflicting provisions. Under section 106B, the Evidence Act prescribes conditions for admissibility, and uses the concept of a certificate as a means of proof of authenticity. On the other hand, under section 78A, electronic evidence is admissible, with no mention of the use of a certificate. There has been conflicting jurisprudence as a result. This paper proposes that section 106B ought to be repealed to give way to the section 78A presumption of admissibility due to numerous issues associated with the certificate. Index words: Kenya; Evidence Act; conditions for admissibility; electronic evidence; conflicting jurisprudence; Commonwealth Model Law on Electronic Evidence

show abstract

“…However, it also comes with many challenges which must be surpassed-cybersecurity being crucial. Massive digitalization of industrial processes, growing convergence between information technologies (IT) and operational technologies (OT), the increasing interconnectivity of the different systems are the main reasons for cybersecurity being a challenge [5][6][7][8][9][10][11]. For example, cyber-attacks are a significant incident.…”

Section: Introductionmentioning

confidence: 99%

Application Perspective on Cybersecurity Testbed for Industrial Control Systems

Pospíšil

Blažek

Kuchař

et al. 2021

Sensors

View full text Add to dashboard Cite

In recent years, the Industry 4.0 paradigm has accelerated the digitalization process of the industry, and it slowly diminishes the line between information technologies (IT) and operational technologies (OT). Among the advantages, this brings up the convergence issue between IT and OT, especially in the cybersecurity-related topics, including new attack vectors, threats, security imperfections, and much more. This cause raised new topics for methods focused on protecting the industrial infrastructure, including monitoring and detection systems, which should help overcome these new challenges. However, those methods require high quality and a large number of datasets with different conditions to adapt to the specific systems effectively. Unfortunately, revealing field factory setups and infrastructure would be costly and challenging due to the privacy and sensitivity causes. From the lack of data emerges the new topic of industrial testbeds, including sub-real physical laboratory environments, virtual factories, honeynets, honeypots, and other areas, which helps to deliver sufficient datasets for mentioned research and development. This paper summarizes related works in the area of industrial testbeds. Moreover, it describes best practices and lessons learned for assembling physical, simulated, virtual, and hybrid testbeds. Additionally, a comparison of the essential parameters of those testbeds is presented. Finally, the findings and provided information reveal research and development challenges, which must be surpassed.

show abstract

IT vs. OT Security: A Time to Consider a Change in CIA to Include Resilienc

Cited by 26 publications

References 1 publication

Cyber-Physical Energy Systems Security: Threat Modeling, Risk Assessment, Resources, Metrics, and Case Studies

Cyber-Physical Energy Systems Security: Threat Modeling, Risk Assessment, Resources, Metrics, and Case Studies

Admission of electronic evidence

Application Perspective on Cybersecurity Testbed for Industrial Control Systems

Contact Info

Product

Resources

About