Impact Assessment of IT Security Breaches in Cyber-Physical Systems: Short paper

András Földvári; Gergely Biczók; Imre Kocsis; László Gönczy; András Pataricza

Impact Assessment of IT Security Breaches in Cyber-Physical Systems: Short paper

András Földvári Budapest University of Technology and Economics
Gergely Biczók Budapest University of Technology and Economics
Imre Kocsis Budapest University of Technology and Economics
László Gönczy Budapest University of Technology and Economics
András Pataricza Budapest University of Technology and Economics

Resumo

The increased cyber-attack surface in cyber-physical systems, the close coupling to vulnerable physical processes, and the potential for human casualties necessitate a careful extension of traditional safety methodologies, e.g., error propagation analysis (EPA), with cybersecurity capabilities. We propose a model-driven Information Technology/Operational Technology impact analysis method that supports identifying vulnerabilities, most critical attack strategies, and most dangerous threat actors by analyzing attack scenarios on an abstract functional model of the system. Our solution extends EPA, initially developed for dependability and safety analysis, with cybersecurity aspects to explore the safety impact of a cyber attack on a cyber-physical system. The paper presents the impact analysis workflow, the threat model, the pilot analysis tool, and a case study.

IEEE Xplore (English)

Publicado

2021-11-22

Como Citar

FÖLDVÁRI, András et al. Impact Assessment of IT Security Breaches in Cyber-Physical Systems: Short paper. Anais do Workshop on Validation and Verification of Future Cyber-physical Systems (WAFERS), [S.l.], nov. 2021. ISSN 0000-0000. Disponível em: <https://sol.sbc.org.br/index.php/wafers/article/view/19613>. Acesso em: 15 maio 2024.

Fomatos de Citação

Edição

2021: Anais do II Workshop on Validation and Verification of Future Cyber-physical Systems

Seção

Artigos