Risk Assessment Method For Cybersecurity Of Cyber-Physical Systems Based On Inter-Dependency Of Vulnerabilities - Citegraph

Paper Info

Title
Risk Assessment Method For Cybersecurity Of Cyber-Physical Systems Based On Inter-Dependency Of Vulnerabilities

Abstract
As cyber physical systems are used more extensively and thoroughly, cyber-attacks have become one of the utmost threats to the cybersecurity of cyber physical systems (CPS). It is possible that an adversary can damage a physical component with cyber-attacks (eg. The Stuxnet). Although many research has been done on risk assessment method, limited work has been published to quantify cybersecurity risk of CPS. This paper suggests a method to quantify the cybersecurity risk of CPS caused by cyber-attacks in terms of numeric value. To help quantitatively measure the risk, we present two indices, the successful-attack-probability index and the attack-impact index, based on vulnerability dependency graph. Furthermore, the successful-attack-probability index is calculated considering the interdependent relationship between vulnerabilities and the calculation of attack-impact index takes the impact on the physical domain resulting from cyber-attacks into account. Numerical example shows that the potential risk of system and the optimal attack target can be obtained. The proposed method can be extended to security investment analysis as well.

Year	Venue	Keywords
2015	2015 IEEE INTERNATIONAL CONFERENCE ON INDUSTRIAL ENGINEERING AND ENGINEERING MANAGEMENT (IEEM)	cyber-physical system, cybersecurity, vulnerability inter-dependency graph, risk assessment
Field	DocType	Citations
Interdependence,Computer security,Risk factor (computing),Risk assessment,Risk management,Cyber-physical system,Stuxnet,Engineering,Dependency graph,Vulnerability	Conference	0
PageRank	References	Authors
0.34	5	3

Authors (3 rows)

Cited by (0 rows)

References (5 rows)

Name	Order	Citations	PageRank
wenbo wu	1	0	0.34
Rui Kang	2	4	4.76
zi li	3	0	0.34

1