论文信息 - A Study on Quantitative Risk Assessment Methods in Security Design for Industrial Control Systems

A Study on Quantitative Risk Assessment Methods in Security Design for Industrial Control Systems

In recent years, there has been progress in applying information technology to industrial control systems (ICS), which is expected to make the development cost of control devices and systems lower. On the other hand, the security threats are becoming important problems. In 2017, a command injection issue on a data logger was reported. In this paper, we focus on the risk assessment in security design for data loggers used in industrial control systems. Our aim is to provide a risk assessment method optimized for control devices and systems in such a way that one can prioritize threats more preciously, that would lead work resource (time and budget) can be assigned for more important threats than others. We discuss problems with application of the automotive-security guideline of JASO TP15002 to ICS risk assessment. Consequently, we propose a three-phase risk assessment method with a novel Risk Scoring Systems (RSS) for quantitative risk assessment, RSS-CWSS. The idea behind this method is to apply CWSS scoring systems to RSS by fixing values for some of CWSS metrics, considering what the designers can evaluate during the concept phase. Our case study with ICS employing a data logger clarifies that RSS-CWSS can offer an interesting property that it has better risk-score dispersion than the TP15002-specified RSS.

Hirotaka Yoshida | Hideaki Nishihara | Yasuyuki Kawanishi | Daisuke Souma | Yoichi Hata

[1] Jeffrey L. Hieb,et al. Cyber security risk assessment for SCADA and DCS networks. , 2007, ISA transactions.

[2] Dong Seong Kim,et al. Attack countermeasure trees (ACT): towards unifying the constructs of attack and defense trees , 2012, Secur. Commun. Networks.

[3] William H. Sanders,et al. Adversary-driven state-based system security evaluation , 2010, MetriSec '10.

[4] P ? ? ? ? ? ? ? % ? ? ? ? , 1991 .

[5] Sandip C. Patel,et al. A Risk-Assessment Model for Cyber Attacks on Information Systems , 2010, J. Comput..

[6] Christoph Schmittner,et al. Security Application of Failure Mode and Effect Analysis (FMEA) , 2014, SAFECOMP.

[7] Hunor Sándor,et al. Optimal security design in the Internet of Things , 2017, 2017 5th International Symposium on Digital Forensic and Security (ISDFS).

[8] Stamatis Karnouskos,et al. Stuxnet worm impact on industrial cyber-physical system security , 2011, IECON 2011 - 37th Annual Conference of the IEEE Industrial Electronics Society.

[9] Ketil Stølen,et al. Model-Driven Risk Analysis - The CORAS Approach , 2010 .

[10] Hirotaka Yoshida,et al. Detailed Analysis of Security Evaluation of Automotive Systems Based on JASO TP15002 , 2017, SAFECOMP Workshops.

[11] Dong Seong Kim,et al. Cyber security analysis using attack countermeasure trees , 2010, CSIIRW '10.