A Formal Model and Verification for HESTIA: An Automated, Adversary-Aware Risk Assessment Process for Cyber Infrastructure

Abstract: Due to the characteristics and connectivity of today's critical infrastructure systems, cyberattacks on these systems are currently difficult to prevent in an efficient and sustainable manner. Prevention and mitigation strategies need accurate identification and evaluation of: system vulnerabilities, potential threats and attacks, and applicable hardening measures. Furthermore, the ability to prioritize hardening measures based on accurate assessments of risk is needed. In addition, the consideration of the av… Show more

“…Critical infrastructure organizations have been experiencing a technological transition for their devices from Industrial Control Systems (ICS) to CPS [1]. The transition is opening previously unavailable or limited networking capabilities to improve operational capabilities and efficiencies for industrial systems and infrastructure such as the power grid [1]. Expanded use of networked communications in turn is increasing the attack vectors for the organizations, especially from outside actors [2].…”

Hands-on Lab Exercises for Onsite and Remote Education Delivery in a CPS Communication Systems Course Using ISAAC

“…Critical infrastructure organizations have been experiencing a technological transition for their devices from Industrial Control Systems (ICS) to CPS [1]. The transition is opening previously unavailable or limited networking capabilities to improve operational capabilities and efficiencies for industrial systems and infrastructure such as the power grid [1]. Expanded use of networked communications in turn is increasing the attack vectors for the organizations, especially from outside actors [2].…”

Hands-on Lab Exercises for Onsite and Remote Education Delivery in a CPS Communication Systems Course Using ISAAC