论文信息 - An Architecture for the Analysis and Management of Security in Industrial Control Systems

An Architecture for the Analysis and Management of Security in Industrial Control Systems

The security of Industrial Control Systems (ICS) has become an important topic. Attacks such as the Stuxnet worm have shown that inadequately protecting control systems could have disastrous consequences for society. Our research focuses on the creation of a tool that aims to enhance the security of Industrial Control Systems. It will be possible for system owners and operators to model their control systems in our tool. Using formal methodologies, the tool can extract a list of vulnerabilities in the system. Users can reason about the effects on system security of component changes or newly discovered vulnerabilities.

Vincent Naessens | Jorn Lapon | Laurens Lemaire

[1] Lars Nordström,et al. A case study applying the cyber security modeling language , 2010 .

[2] Michael K. Reiter,et al. Homeland Security , 2004, IEEE Internet Comput..

[3] Johan Wittocx,et al. The IDP system: A model expansion system for an extension of classical logic , 2008 .

[4] Guillermo A. Francia,et al. Security Best Practices and Risk Assessment of SCADA and Industrial Control Systems , 2012 .

[5] Johan Wittocx,et al. The IDP system , 2010 .

[6] Ralph Langner. To Kill a Centrifuge A Technical Analysis of What Stuxnet ’ s Creators Tried to Achieve , 2013 .

[7] Eric Chien,et al. W32.Duqu: The Precursor to the Next Stuxnet , 2012, LEET.

[8] Mathias Ekstedt,et al. The Cyber Security Modeling Language: A Tool for Assessing the Vulnerability of Enterprise System Architectures , 2013, IEEE Systems Journal.

[9] Karen A. Scarfone,et al. Guide to Industrial Control Systems (ICS) Security , 2015 .