Development of Cyber-Attack Scenarios for Nuclear Power Plants Using Scenario Graphs

Modern nuclear power plants (NPPs) use a variety of digital technologies, with new technologies such as wireless sensor networks also under active consideration. Consequently, like other critical infrastructure at increasing risk of cyber-attacks, cyber security for NPPs has become an issue of growi...

Full description

Saved in:
Bibliographic Details
Published in:International journal of distributed sensor networks 2015-01, Vol.2015 (9), p.836258
Main Authors: Ahn, Woogeun, Chung, Manhyun, Min, Byung-Gil, Seo, Jungtaek
Format: Article
Language:English
Subjects:
Analysis
Computer information security
Control
Cyberterrorism
Data security
Design analysis
Distributed control systems
Federal regulation
Graphs
Infrastructure
Innovations
Methods
Network security
Networks
Nuclear power generation
Nuclear power plants
Office automation
Process controls
Risk
Safety and security measures
Security management
Security programs
Sensors
Trends
Wireless networks
Wireless sensor networks
Work stations
Citations: Items that this one cites
Items that cite this one
Online Access:Get full text
Tags: Add Tag
No Tags, Be the first to tag this record!
Description
Summary:Modern nuclear power plants (NPPs) use a variety of digital technologies, with new technologies such as wireless sensor networks also under active consideration. Consequently, like other critical infrastructure at increasing risk of cyber-attacks, cyber security for NPPs has become an issue of growing concern. The development of cyber-attack scenarios is therefore a crucial part of cyber security plans for NPPs. However, regulatory guidelines for NPPs only mention the necessity for cyber-attack scenarios, their application methods, and simple examples, without outlining any systematic method to actually develop comprehensive cyber-attack scenarios. This paper proposes a method for developing NPP cyber-attack scenarios that reflect the inherent characteristics and architecture of NPPs using scenario graphs, a type of attack model. Further, the process of modeling scenario graphs using the proposed method and a process for developing new attack scenarios by combining several scenario graphs are discussed. In the scenario graphs, large and complicated system structures are conceptually divided, facilitating identification of components of cyber-attacks. Attack scenarios developed using these scenario graphs can be used extensively to develop design basis threats (DBTs), risk assessments, and penetration tests. Thus, they are important for establishing cyber security plans and programs.
ISSN:1550-1329
1550-1477
1550-1477
DOI:10.1155/2015/836258