In Quest of Benchmarking Security Risks to Cyber-Physical Systems

We present a generic yet practical framework for assessing security risks to cyberphysical systems (CPSs). Our framework can be used to benchmark security risks when information is less than perfect, and interdependencies of physical and computational components may result in correlated failures. Su...

Full description

Saved in:
Bibliographic Details
Published in:IEEE network 2013-01, Vol.27 (1), p.1
Main Authors: Amin, Saurabh, Schwartz, Galina A, Hussain, Alefiya
Format: Article
Language:English
Subjects:
Benchmarks
Embedded systems
Network security
Risk assessment
Technology
Online Access:Get full text
Tags: Add Tag
No Tags, Be the first to tag this record!
Description
Summary:We present a generic yet practical framework for assessing security risks to cyberphysical systems (CPSs). Our framework can be used to benchmark security risks when information is less than perfect, and interdependencies of physical and computational components may result in correlated failures. Such environments are prone to externalities, and can cause huge societal losses. We focus on the risks that arise from interdependent reliability failures (faults) and security failures (attacks). We advocate that a sound assessment of these risks requires explicit modeling of the effects of both technology-based defenses and institutions necessary for supporting them. Thus, we consider technology-based security defenses grounded in information security tools and fault-tolerant control in conjunction with institutional structures. Our game-theoretic approach to estimating security risks facilitates more effective defenses, especially against correlated failures. [PUBLICATION ABSTRACT]
ISSN:0890-8044
1558-156X