Protecting water and wastewater utilities from cyber‐physical threats

Clark, Robert M.; Hakim, Simon; Panguluri, Srinivas

doi:10.1111/wej.12340

Cited by 13 publications

(11 citation statements)

References 15 publications

Supporting

Mentioning

Contrasting

Order By: Relevance

“…Cyber threats represent some of the most serious challenges to critical water infrastructure. Prior to adopting the legislative actions summarized in this article, federal and state governments had largely left water and wastewater utilities with the responsibility of staving off cyber threats (Clark et al 2017(Clark et al , 2018Elkind and Gillum 2021). Recent threats on critical infrastructure belie the wisdom of this approach.…”

Section: Discussionmentioning

confidence: 99%

Strengthening Cybersecurity of Water Infrastructure through Legislative Actions

You

2022

J American Water Resour Assoc

View full text Add to dashboard Cite

Many water and wastewater utilities are vulnerable to cyberattacks and cyber intrusions. The COVID‐19 pandemic has exacerbated this weakness by moving water‐related employees to remote work, which has increased vulnerability to cyber threats. However, policymakers recognize the need to strengthen the cybersecurity resilience of water infrastructure, as evidenced by legislative activity. This article reviews four cases of recently adopted cybersecurity legislation at the federal and state levels. The empirical focus is on (1) the America’s Water Infrastructure Act of 2018, (2) the Internet of Things Cybersecurity Improvement Act of 2020, (3) the New Jersey Water Quality Accountability Act, and (4) the New York Water Supply Emergency Plans. The legislative review recapitulates the core components of these legislative efforts to amplify strategies for securing and improving water infrastructure.

show abstract

Section: Discussionmentioning

confidence: 99%

Strengthening Cybersecurity of Water Infrastructure through Legislative Actions

You

2022

J American Water Resour Assoc

View full text Add to dashboard Cite

show abstract

“…For anomalous identification in intelligent pervasive computing networks, references employed a stan-Journal of Software Engineering and Applications dard route searching approach. The researchers devised a strategy for detecting attacks depending on the Statistical linear relationship between two sensors [15].…”

Section: Methodsmentioning

confidence: 99%

“…IDSs are classified into two categories: biometrics and training techniques. Moreover, signature-based strategies are excellent at recognizing frequent attacks using databases and pre-defined identifiers but useless at identifying unexpected or innovative assaults [15]. On the other hand, learningbased algorithms attempt to uncover operational patterns or patterns that improve the precision with which unplanned intrusions are dealt with when detected.…”

Section: Dominant Theories/hypothesismentioning

confidence: 99%

Increasing Threats to United States of America Infrastructure Based on Cyber-Attacks

Shawe,

McAndrew

2023

JSEA

View full text Add to dashboard Cite

The United States of America faces an increasing number of threats to its critical infrastructure due to cyber-attacks. With the constant advancement of technology and the interconnectedness of various systems, the vulnerabilities in the nation's infrastructure have become more pronounced. Cyber-attacks on critical infrastructure, such as power grids, transportation networks, and financial systems, pose a significant risk to national security and public safety. These attacks can disrupt essential services, cause economic losses, and potentially have severe consequences for the well-being of individuals and communities. The rise of cyber-terrorism is also a concern. Cyber-terrorists can exploit vulnerabilities in cyberspace to compromise infrastructure systems, causing chaos and panic among the population. The potential for destructive attacks on critical infrastructure is a pressing issue requiring constant attention and proactive measures.

show abstract

“…The interdependence of ICT equipment and other components makes it clear that the challenges posed by cybersecurity include IT-related dangers and physical threats [10]. Therefore, various mitigation efforts have been implemented to protect the water sector against threats to cybersecurity.…”

Section: Cybersecurity In the Water Sectormentioning

confidence: 99%

Risk Analysis of Water Grid Systems Using Threat Modeling

Rahim

Jamil

Cob

et al. 2022

J. Phys.: Conf. Ser.

View full text Add to dashboard Cite

Critical infrastructure systems consist of physical and cyber assets that are essential to the operation of the economy and the government. As one of the most important critical infrastructures worldwide, the water sector has become vulnerable to new risks in the form of cyber threats that can severely impact public health, and are difficult to detect. A water grid system (WGS) plays an important role in guarding the business processes of the water sector against possible threats and risks. Threat modeling can be used to analyze threats to the WGS. It is applied to identify points of access to the assets and devices of the system, classify threats to them, assess the risks posed by them, and suggest mitigation measures. Each threat is classified based on its type according to the STRIDE methodology, and the results of the threat classification can be used to assess the level of risk by using the DREAD methodology. This yields a risk rating for each threat that can be used to devise mitigation measures to minimize the risk posed by it. Through the threat modeling stage, it is known that the high-risk threats on WGSs are tampering with a risk score of 14, denial of service threats with a risk score of 13, and repudiation threats with a risk score of 12. The results of the ranking are used to formulate recommendations in the form of mitigation controls against these threats.

show abstract

Protecting water and wastewater utilities from cyber‐physical threats

Cited by 13 publications

References 15 publications

Strengthening Cybersecurity of Water Infrastructure through Legislative Actions

Strengthening Cybersecurity of Water Infrastructure through Legislative Actions

Increasing Threats to United States of America Infrastructure Based on Cyber-Attacks

Risk Analysis of Water Grid Systems Using Threat Modeling

Contact Info

Product

Resources

About