System-aware security for nuclear power systems

As shown in the recently publicized Stuxnet attack in Iran, there are significant threats of embedded infections by the producers of equipment that support our nations nuclear power plants that cannot be completely addressed by advancing perimeter security solutions. In this paper we layout a new systems engineering focused approach for addressing these threats: referred to as System-Aware Security for Nuclear Power Systems. This security architecture resides at the application layer and is based on smart reusable system security services. Furthermore, to show how such an architecture can enhance the security of nuclear power systems, this paper present a vision for this architectural formulation for a Nuclear Power Plant Turbine Control System.

[1]  Tatsuaki Okamoto,et al.  Receipt-Free Electronic Voting Schemes for Large Scale Elections , 1997, Security Protocols Workshop.

[2]  Anita K. Jones,et al.  Reflections on Cybersecurity , 2009, Science.

[3]  Leslie Lamport,et al.  The Byzantine Generals Problem , 1982, TOPL.

[4]  Barry M. Horowitz,et al.  System-Aware Cyber Security , 2011, 2011 Eighth International Conference on Information Technology: New Generations.

[5]  Chris Rose,et al.  A Break in the Clouds: Towards a Cloud Definition , 2011 .

[6]  Barry M. Horowitz,et al.  An architectural systems engineering methodology for addressing cyber security , 2011, Syst. Eng..

[7]  Michael R. Clarkson,et al.  Civitas: Toward a Secure Voting System , 2008, 2008 IEEE Symposium on Security and Privacy (sp 2008).

[8]  Igor Nai Fovino,et al.  Integrating cyber attacks within fault trees , 2009, Reliab. Eng. Syst. Saf..