Situational Awareness Network for the Electric Power System: the Architecture and Testing Metrics

Bolzoni, Damiano; Wróbel, Michał R.

doi:10.15439/2016f50

Cited by 3 publications

(10 citation statements)

References 22 publications

Supporting

Mentioning

Contrasting

Order By: Relevance

“…The TI area, however, due to its novelty, required new consideration. When introducing metrics, specific criteria were taken into account, namely the metric should: enable consistent measuring be expressed as a cardinal number or percentage be represented in units of measure be contextually specific be achievable at a reasonable cost be straightforwardly implementable in the TI context at every stage of development …”

Section: Discussionmentioning

confidence: 99%

“…Three categories of metrics have been proposed: testing process metrics , cybersecurity metrics , and usability metrics . Testing process metrics facilitate the control and management of a testing procedure.…”

Section: Discussionmentioning

confidence: 99%

“…These methods deliver clusters of information that at a higher level still need to be analyzed by humans . Situation awareness networks (SANs) are technical architectures designed to provide SA by combining multiple sensors deployed in various system locations …”

Section: Collaborative Security Information Sharing Situation Awarementioning

confidence: 99%

“…SANs are technical architectures designed to provide SA by combining multiple sensors deployed in various system locations . Conceptually, SANs are the direct instantiation of the collaborative security paradigm.…”

Section: Situational Awareness Networkmentioning

confidence: 99%

“…A specialized SAN architecture was designed, which takes advantage of SIEM systems as well as diverse types of sensors, including communication protocols dedicated to energy systems . Data processing techniques, including data correlation (see Section 5.3), are implemented to reduce the number of false positives, increase detection efficiency, and facilitate the comprehension of reported information by human operators.…”

Section: Situational Awareness Networkmentioning

confidence: 99%

See 4 more Smart Citations

Threat intelligence platform for the energy sector

Wróbel

2019

Softw Pract Exp

Self Cite

View full text Add to dashboard Cite

In recent years, critical infrastructures and power systems in particular have been subjected to sophisticated cyberthreats, including targeted attacks and advanced persistent threats. A promising response to this challenging situation is building up enhanced threat intelligence (TI) that interlinks information sharing and fine-grained situation awareness. In this paper, a framework that integrates all levels of TI, ie, strategic, tactical, operational, and technical, is presented. The platform implements the centralized model of information exchange with peer-to-peer interactions between partners as an option. Several supportive solutions were introduced, including anonymity mechanisms or data processing and correlation algorithms. A data model that enables communication of cyberincident information, both in natural language and machine-readable formats, was defined. Similarly, security requirements for critical components were devised. A pilot implementation of the platform was developed and deployed in the operational environment, which enabled practical evaluation of the design. Also, the security of the anonymity architecture was analyzed.

show abstract

Section: Discussionmentioning

confidence: 99%

Section: Discussionmentioning

confidence: 99%

Section: Collaborative Security Information Sharing Situation Awarementioning

confidence: 99%

Section: Situational Awareness Networkmentioning

confidence: 99%

Section: Situational Awareness Networkmentioning

confidence: 99%

See 3 more Smart Citations

Threat intelligence platform for the energy sector

Wróbel

2019

Softw Pract Exp

Self Cite

View full text Add to dashboard Cite

show abstract

Developing novel solutions to realise the European Energy – Information Sharing & Analysis Centre

Wallis

Wróbel

2019

Decision Support Systems

Self Cite

View full text Add to dashboard Cite

For more effective decision making in preparation for and response to cyberevents in the energy sector, multilevel situation awareness, from technical to strategic is essential. With an uncertain picture of evolving threats, sharing of the latest cybersecurity knowledge among all sector stakeholders can inform and improve decisions and responses. This paper describes two novel solutions proposed during the formation of the European Energy -Information Sharing & Analysis Centre (EE-ISAC) to build situation awareness and support information sharing. The development of EE-ISAC towards regular information sharing among members is described. This demonstrates the foundations achieved so far upon which a situation awareness network can be built for the energy sector.

show abstract

Network Security Situation Awareness of Power Dispatching Automation System Based on LDA-RBF

Decheng

Shaoqun

et al. 2018

2018 5th IEEE International Conference on Cloud Computing and Intelligence Systems (CCIS)

View full text Add to dashboard Cite

Situational Awareness Network for the Electric Power System: the Architecture and Testing Metrics

Cited by 3 publications

References 22 publications

Threat intelligence platform for the energy sector

Threat intelligence platform for the energy sector

Developing novel solutions to realise the European Energy – Information Sharing & Analysis Centre

Network Security Situation Awareness of Power Dispatching Automation System Based on LDA-RBF

Contact Info

Product

Resources

About