Risk Centric Threat Modeling

Ucedavélez, Tony; Morana, Marco

doi:10.1002/9781118988374

Cited by 109 publications

(33 citation statements)

References 0 publications

Supporting

Mentioning

Contrasting

Unclassified

Order By: Relevance

“…This approach has two main components; assets and threats. The assets taxonomy involves identifying assets, asset groups, asset types, asset details [34]. The threat taxonomy utilizes attack trees, attack graphs and assets' own failure modes in order to prioritize associated risk levels and then mapped to assets.…”

Section: Asset-centric Approachmentioning

confidence: 99%

“…The threat taxonomy utilizes attack trees, attack graphs and assets' own failure modes in order to prioritize associated risk levels and then mapped to assets. Methodologies based on the asset-centric approach include PASTA, OCTAVE and STRIDE 6.2.1 PASTA PASTA (Process for Attack Simulation and Threat Analysis) is an asset-centric approach to threat modeling [34]. This methodology was developed by Minded Security and VerSprite.…”

Section: Asset-centric Approachmentioning

confidence: 99%

See 1 more Smart Citation

An Enhanced Conceptual Security Model for Autonomous Vehicles

Zaabi¹,

Yeun²,

Damiani³

et al. 2020

Adv. sci. technol. eng. syst. j.

View full text Add to dashboard Cite

Connected and self-driving cars have emerged over the last decade as a leading example of cyber-physical systems, which seek to considerably enhance traffic safety, reduce emissions, decrease costs, and improve efficiency. Google, TESLA, Uber ATG are becoming pioneers in the autonomous vehicles industry. Autonomous vehicles can have a large codebase and with a large volume of messages exchanged. The concepts of connected driving, cooperative driving, and intelligent transportation systems increase the connectivity of vehicles to the internet or other cloud services. High connectivity, misconfiguration, and insecure coding widen the attack surface of autonomous vehicles. A conceptual model of autonomous vehicles is presented in this paper to better understand autonomous vehicles' attack surface. In addition, specific threat modeling techniques are discussed. Experiments were carried out to demonstrate the security risks to autonomous vehicles due to third party Electronic Control Units.

show abstract

Section: Asset-centric Approachmentioning

confidence: 99%

Section: Asset-centric Approachmentioning

confidence: 99%

An Enhanced Conceptual Security Model for Autonomous Vehicles

Zaabi¹,

Yeun²,

Damiani³

et al. 2020

Adv. sci. technol. eng. syst. j.

View full text Add to dashboard Cite

show abstract

“…Some of the threat modeling methods also provide a guide to discover security controls that effectively remove, counter, or mitigate all relevant vulnerabilities. For example, PASTA [27] includes the countermeasure indication process. Since PASTA focuses on the software security aspect, the countermeasures are derived as a form of additional security functions.…”

Section: Security Model Design Frameworkmentioning

confidence: 99%

Beyond PS-LTE: Security Model Design Framework for PPDR Operational Environment

Kim

2020

Security and Communication Networks

View full text Add to dashboard Cite

National disasters can threaten national security and require several organizations to integrate the functionalities to correspond to the event. Many countries are constructing a nationwide mobile communication network infrastructure to share information and promptly communicate with corresponding organizations. Public Safety Long-Term Evolution (PS-LTE) is a communication mechanism adopted in many countries to achieve such a purpose. Organizations can increase the efficiency of public protection and disaster relief (PPDR) operations by securely connecting the services run on their legacy networks to the PS-LTE infrastructure. This environment allows the organizations to continue facilitating the information and system functionalities provided by the legacy network. The vulnerabilities in the environment, which differ from commercial LTE, need to be resolved to connect the network securely. In this study, we propose a security model design framework to derive the system architecture and the security requirements targeting the restricted environment applied by certain technologies for a particular purpose. After analyzing the PPDR operation environment’s characteristics under the PS-LTE infrastructure, we applied the framework to derive the security model for organizations using PPDR services operated in their legacy networks through this infrastructure. Although the proposed security model design framework is applied to the specific circumstance in this research, it can be generally adopted for the application environment.

show abstract

“…Various security approaches have been proposed to address or mitigate potential threats [16]. Established methodologies, such as STRIDE [17], first documented internally at Microsoft, involve threat identification and modelling as key activities, while others, such as PASTA [18] take a comprehensive application-oriented and risk-based perspective. While these methodologies have been successfully applied in practice, they do not offer higher-level guidelines and do not sufficiently address risks introduced at the endpoint-level of the IoT stack, considering the real-time application context and integration with industrial control systems (ICSs), such as supervisory control and data acquisition (SCADA), distributed control systems (DCS), and programmable logic controllers (PLC).…”

Section: Introductionmentioning

confidence: 99%

A Design Approach to IoT Endpoint Security for Production Machinery Monitoring

Tedeschi

Emmanouilidis

Mehnen

et al. 2019

Sensors

View full text Add to dashboard Cite

The Internet of Things (IoT) has significant potential in upgrading legacy production machinery with monitoring capabilities to unlock new capabilities and bring economic benefits. However, the introduction of IoT at the shop floor layer exposes it to additional security risks with potentially significant adverse operational impact. This article addresses such fundamental new risks at their root by introducing a novel endpoint security-by-design approach. The approach is implemented on a widely applicable production-machinery-monitoring application by introducing real-time adaptation features for IoT device security through subsystem isolation and a dedicated lightweight authentication protocol. This paper establishes a novel viewpoint for the understanding of IoT endpoint security risks and relevant mitigation strategies and opens a new space of risk-averse designs that enable IoT benefits, while shielding operational integrity in industrial environments.

show abstract

Risk Centric Threat Modeling

Cited by 109 publications

References 0 publications

An Enhanced Conceptual Security Model for Autonomous Vehicles

An Enhanced Conceptual Security Model for Autonomous Vehicles

Beyond PS-LTE: Security Model Design Framework for PPDR Operational Environment

A Design Approach to IoT Endpoint Security for Production Machinery Monitoring

Contact Info

Product

Resources

About