Looking for a Black Cat in a Dark Room: Security Visualization for Cyber-Physical System Design and Analysis

Bakirtzis, Georgios; Simon, Brandon; Fleming, Craig; Elks, Carl

doi:10.1109/vizsec.2018.8709187

Cited by 14 publications

(9 citation statements)

References 20 publications

Supporting

Mentioning

Contrasting

Order By: Relevance

“…Tools and visualization methods using natural language processing can be used to aid this process. 18,19 As the system is refined, implementation choices with associated details emerge. It is at this phase in the lifecycle development where potential exploits or attack surfaces for the system architecture are captured.…”

Section: Threat Modelingmentioning

confidence: 99%

Cyberphysical Security Through Resiliency: A Systems-Centric Approach

et al. 2021

Self Cite

View full text Add to dashboard Cite

show abstract

Section: Threat Modelingmentioning

confidence: 99%

Cyberphysical Security Through Resiliency: A Systems-Centric Approach

et al. 2021

Self Cite

View full text Add to dashboard Cite

show abstract

“…For example, changing the definition of a single element to one that has no recorded attacks might significantly increase the security posture of the overall CPS. 1 Moreover, a full GUI is developed based on this methodology to implement further interactivity functions on top of CYBOK [23]. This is a natural progression of CYBOK since in-depth analysis requires the analyst to interact with the data through interactivity functions, for example, filtering, to facilitate effective exploration of the diverse types of data input and output to and by CYBOK [24].…”

Section: F Visualizationsmentioning

confidence: 99%

Data-Driven Vulnerability Exploration for Design Phase System Analysis

Bakirtzis

Simon

Collins

et al. 2020

IEEE Systems Journal

Self Cite

View full text Add to dashboard Cite

Applying security as a lifecycle practice is becoming increasingly important to combat targeted attacks in safetycritical systems. Among others there are two significant challenges in this area: (1) the need for models that can characterize a realistic system in the absence of an implementation and (2) an automated way to associate attack vector information; that is, historical data, to such system models. We propose the cybersecurity body of knowledge (CYBOK), which takes in sufficiently characteristic models of systems and acts as a search engine for potential attack vectors. CYBOK is fundamentally an algorithmic approach to vulnerability exploration, which is a significant extension to the body of knowledge it builds upon. By using CYBOK, security analysts and system designers can work together to assess the overall security posture of systems early in their lifecycle, during major design decisions and before final product designs. Consequently, assisting in applying security earlier and throughout the systems lifecycle.Index Terms-Cyber-physical systems, security, safety, modelbased engineering. arXiv:1909.02923v1 [eess.SY]

show abstract

“…Running the prototype tools shows that the total number of attack vectors returned by the search process is large (Table 1). Filtering functionality is implemented to manage these attack vectors [7]. But the general lessons stemming from the large result space is that it is highly sensitive to the fidelity of the model.…”

Section: Demonstration: Particle Separation Centrifugementioning

confidence: 99%

“…Although the theory and visualization techniques for transitioning to model-based cybersecurity analysis are advancing [2][3][4][5][6][7], there are still several challenges. The first is moving to mature software implementation of security modeling tools that can be run within already existing systems modeling tools.…”

Section: Introductionmentioning

confidence: 99%

Fundamental Challenges of Cyber-Physical Systems Security Modeling

Bakirtzis,

Ward,

Deloglos

et al. 2020

Preprint

Self Cite

View full text Add to dashboard Cite

Systems modeling practice lacks security analysis tools that can interface with modeling languages to facilitate security by design. Security by design is a necessity in the age of safety critical cyber-physical systems, where security violations can cause hazards. Currently, the overlap between security and safety is narrow. But deploying cyber-physical systems means that today's adversaries can intentionally trigger accidents. By implementing security assessment tools for modeling languages we are better able to address threats earlier in the system's lifecycle and, therefore, assure their safe and secure behavior in their eventual deployment. We posit that cyberphysical systems security modeling is practiced insufficiently because it is still addressed similarly to information technology systems.

show abstract

Looking for a Black Cat in a Dark Room: Security Visualization for Cyber-Physical System Design and Analysis

Cited by 14 publications

References 20 publications

Cyberphysical Security Through Resiliency: A Systems-Centric Approach

Cyberphysical Security Through Resiliency: A Systems-Centric Approach

Data-Driven Vulnerability Exploration for Design Phase System Analysis

Fundamental Challenges of Cyber-Physical Systems Security Modeling

Contact Info

Product

Resources

About