Asset-Based Dynamic Impact Assessment of Cyberattacks for Risk Analysis in Industrial Control Systems

With the evolution of information, communications, and technologies, modern industrial control systems (ICSs) face more and more cybersecurity issues. This leads to increasingly severe risks in critical infrastructure and assets. Therefore, risk analysis becomes a significant yet not well investigated topic for prevention of cyberattack risks in ICSs. To tackle this problem, a dynamic impact assessment approach is presented in this paper for risk analysis in ICSs. The approach predicts the trend of impact of cybersecurity dynamically from full recognition of asset knowledge. More specifically, an asset is abstracted with properties of construction, function, performance, location, and business. From the function and performance properties of the asset, object-oriented asset models incorporating with the mechanism of common cyberattacks are established at both component and system levels. Characterizing the evolution of behaviors for single asset and system, the models are used to analyze the impact propagation of cyberattacks. Then, from various possible impact consequences, the overall impact is quantified based on the location and business properties of the asset. A special application of the approach is to rank critical system parameters and prioritize key assets according to impact assessment. The effectiveness of the presented approach is demonstrated through simulation studies for a chemical control system.

[1]  J. Adler,et al.  The critical conditions in thermal explosion theory with reactant consumption , 1964 .

[2]  Tadao Murata,et al.  Petri nets: Properties, analysis and applications , 1989, Proc. IEEE.

[3]  N. Lawrence Ricker,et al.  Model predictive control of a continuous, nonlinear, two-phase reactor , 1993 .

[4]  Mohammad Modarres,et al.  Function-centered modeling of engineering systems using the goal tree–success tree technique and functional primitives , 1999 .

[5]  Rainer Drath Description of Hybrid Systems by Modified Petri Nets , 2002 .

[6]  Karel Jezernik,et al.  Closed-loop matrix based model of discrete event systems for machine logic control design , 2005, IEEE Transactions on Industrial Informatics.

[7]  S. Shankar Sastry,et al.  Understanding the physical and economic consequences of attacks on control systems , 2009, Int. J. Crit. Infrastructure Prot..

[8]  Lars Michael Kristensen,et al.  Coloured Petri Nets - Modelling and Validation of Concurrent Systems , 2009 .

[9]  T. M. Chen,et al.  Stuxnet, the real start of cyber warfare? [Editor's Note] , 2010, IEEE Netw..

[10]  Deepa Kundur,et al.  Towards a Framework for Cyber Attack Impact Analysis of the Electric Smart Grid , 2010, 2010 First IEEE International Conference on Smart Grid Communications.

[11]  Thomas M. Chen,et al.  Petri Net Modeling of Cyber-Physical Attacks on Smart Grid , 2011, IEEE Transactions on Smart Grid.

[12]  Saurabh Amin,et al.  On Cyber Security for Networked Control Systems , 2011 .

[13]  Bo Guo,et al.  Extended GTST-MLD for aerospace system safety analysis. , 2012, Risk analysis : an official publication of the Society for Risk Analysis.

[14]  Hong Ji,et al.  Quantitative risk assessment model of hazardous chemicals leakage and application , 2012 .

[15]  Igor V. Kotenko,et al.  A Cyber Attack Modeling and Impact Assessment framework , 2013, 2013 5th International Conference on Cyber Conflict (CYCON 2013).

[16]  Stanko Strmcnik,et al.  Production modelling for holistic production control , 2013, Simul. Model. Pract. Theory.

[17]  Gregory A. Witte,et al.  Framework for Improving Critical Infrastructure Cybersecurity | NIST , 2014 .

[18]  Milos Manic,et al.  Cyber-Physical System Security With Deceptive Virtual Hosts for Industrial Control Networks , 2014, IEEE Transactions on Industrial Informatics.

[19]  Karen A. Scarfone,et al.  Guide to Industrial Control Systems (ICS) Security , 2015 .

[20]  MengChu Zhou,et al.  A Petri Net-Based Discrete-Event Control of Automated Manufacturing Systems With Assembly Operations , 2015, IEEE Transactions on Control Systems Technology.

[21]  Thoshitha T. Gamage,et al.  Analyzing the Cyber-Physical Impact of Cyber Events on the Power Grid , 2015, IEEE Transactions on Smart Grid.

[22]  Marcin Jamro,et al.  Testing communication tasks in distributed control systems with SysML and Timed Colored Petri Nets model , 2015, Comput. Ind..

[23]  Béla Genge,et al.  A system dynamics approach for assessing the impact of cyber attacks on critical infrastructures , 2015, Int. J. Crit. Infrastructure Prot..

[24]  Richard Candell,et al.  An Industrial Control System Cybersecurity Performance Testbed , 2015 .

[25]  Naixue Xiong,et al.  Design and Analysis of Multimodel-Based Anomaly Intrusion Detection Systems in Industrial Process Automation , 2015, IEEE Transactions on Systems, Man, and Cybernetics: Systems.

[26]  Richard Piggin Cyber security trends: What should keep CEOs awake at night , 2016, Int. J. Crit. Infrastructure Prot..

[27]  George F. List,et al.  A Modular Colored Stochastic Petri Net for Modeling and Analysis of Signalized Intersections , 2016, IEEE Transactions on Intelligent Transportation Systems.

[28]  Ing-Ray Chen,et al.  Modeling and Analysis of Attacks and Counter Defense Mechanisms for Cyber Physical Systems , 2016, IEEE Transactions on Reliability.

[29]  Michail Maniatakos,et al.  The Cybersecurity Landscape in Industrial Control Systems , 2016, Proceedings of the IEEE.

[30]  Ernest Foo,et al.  Securing DNP3 Broadcast Communications in SCADA Systems , 2016, IEEE Transactions on Industrial Informatics.

[31]  Mohammad Abdollahi Azgomi,et al.  A method for evaluating the consequence propagation of security attacks in cyber-physical systems , 2017, Future Gener. Comput. Syst..

[32]  Rasa Remenyte-Prescott,et al.  Quantitative risk prognostics framework based on Petri Net and Bow-Tie models , 2017, Reliab. Eng. Syst. Saf..

[33]  Ralf Möller,et al.  Context- and bias-free probabilistic mission impact assessment , 2017, Comput. Secur..

[34]  T. Li,et al.  Thermal radiation induced ignition of multipoint turbulent explosions , 2017 .