Name
Title | ||
|---|---|---|
Extracting Vulnerabilities in Industrial Control Systems using a Knowledge-Based System. |
Abstract | ||
|---|---|---|
Industrial Control Systems (ICS) are used for monitoring and controlling critical infrastructures such as power stations, waste water treatment facilities, traffic lights, and many more. Lately, these systems have become a popular target for cyber attacks. Both during their design and while operational, security is often an afterthought, leaving them vulnerable to all sorts of attacks. This paper presents a formal approach for analysing the security of Industrial Control Systems. A knowledge-based system, namely IDP, is used to analyse a model of the control system and extract system vulnerabilities. In this paper we present the input model of the methodology and the inferences and queries that allow the system to extract vulnerabilities. This methodology has been added to an existing framework where the user can model his system in the modeling language SysML. This SysML model then gets parsed into suitable IDP input. A fully working prototype has been developed and the approach has been validated on a real case study. |
Year | DOI | Venue |
|---|---|---|
2015 | 10.14236/ewic/ICS2015.1 | ICS-CSR |
DocType | Citations | PageRank |
Conference | 3 | 0.53 |
References | Authors | |
6 | 4 | |
Name | Order | Citations | PageRank |
|---|---|---|---|
| Laurens Lemaire | 1 | 9 | 2.96 |
| Jan Vossaert | 2 | 3 | 0.53 |
| Joachim Jansen | 3 | 22 | 3.85 |
| Vincent Naessens | 4 | 86 | 19.70 |