Securi CAD by Foreseeti: A CAD Tool for Enterprise Cyber Security Management

Ekstedt, Mathias; Johnson, Pontus; Lagerström, Robert; Gorton, Dan; Nydren, Joakim; Shahzad, Khurram

doi:10.1109/edocw.2015.40

Cited by 38 publications

(34 citation statements)

References 20 publications

Supporting

Mentioning

Contrasting

Unclassified

Order By: Relevance

“…Hitherto, we have united the approaches of attack graphs and system modeling in our previous works like P2CySeMoL (Holm et al 2015) and securiCAD (Ekstedt et al 2015). Our central idea was to automatically generate probabilistic attack graphs based on a existing system specification.…”

Section: State Of the Artmentioning

confidence: 99%

“…Last, the collected information needs to be processed to detect all weaknesses that can be exploited. To address this, the use of attack simulations based on system architecture models have been proposed (e.g., Ekstedt et al 2015;Holm et al 2015). These approaches take a model of the system and simulate cyber-attacks to identify weaknesses.…”

Section: Introductionmentioning

confidence: 99%

See 1 more Smart Citation

powerLang: a probabilistic attack simulation language for the power domain

et al. 2020

Self Cite

View full text Add to dashboard Cite

Cyber-attacks these threats, the cyber security assessment of IT and OT infrastructures can foster a higher degree of safety and resilience against cyber-attacks. Therefore, the use of attack simulations based on system architecture models is proposed. To reduce the effort of creating new attack graphs for each system under assessment, domain-specific languages (DSLs) can be employed. DSLs codify the common attack logics of the considered domain.Previously, MAL (the Meta Attack Language) was proposed, which serves as a framework to develop DSLs and generate attack graphs for modeled infrastructures. In this article, powerLang as a MAL-based DSL for modeling IT and OT infrastructures in the power domain is proposed. Further, it allows analyzing weaknesses related to known attacks. To comprise powerLang, two existing MAL-based DSL are combined with a new language focusing on industrial control systems (ICS). Finally, this first version of the language was validated against a known cyber-attack.

show abstract

Section: State Of the Artmentioning

confidence: 99%

Section: Introductionmentioning

confidence: 99%

powerLang: a probabilistic attack simulation language for the power domain

et al. 2020

Self Cite

View full text Add to dashboard Cite

show abstract

“…The approaches of attack graphs and system modeling are united in our previous works: e.g., P2CySeMoL [8], and securiCAD [7]. The central idea of these works is to automatically generate probabilistic attack graphs from a given system specification.…”

Section: Related Workmentioning

confidence: 99%

“…Hitherto, we have proposed the use of attack simulations based on system architecture models (e.g., [7], [8]) to support these challenging tasks. Our approaches facilitate a model of the system and simulate cyber-attacks in order to identify the greatest weaknesses.…”

Section: Introductionmentioning

confidence: 99%

Creating Meta Attack Language Instances using ArchiMate: Applied to Electric Power and Energy System Cases

Hacks

Katsikeas

et al. 2019

2019 IEEE 23rd International Enterprise Distributed Object Computing Conference (EDOC)

Self Cite

View full text Add to dashboard Cite

Cyber-attacks on power assets can have disastrous consequences for individuals, regions, and whole nations. In order to respond to these threats, the assessment of power grids' and plants' cyber security can foster a higher degree of safety for the whole infrastructure dependent on power. Hitherto, we propose the use of attack simulations based on system architecture models. To reduce the effort of creating new attack graphs for each system of a given type, domain-specific attack languages may be employed. They codify common attack logics of the considered domain. Previously, MAL (the Meta Attack Language) was proposed, which serves as a framework to develop domain specific attack languages. We extend the tool set of MAL by developing an approach to model security domains in ArchiMate notation. Next, those models are used to create a MAL instance, which reflects the concepts modeled in ArchiMate. These instances serve as input to simulate attacks on certain systems. To show the applicability of our approach, we conduct two case studies in the power domain. On the one hand, we model a thermal power plant and possible attacks on it. On the other hand, we use the attack on the Ukrainian power grid for our case study.

show abstract

“…With that in mind, a tool was used for the design of the reference architecture model and the subsequent cyber security analysis. There are several tools proposed in the literature for the security analysis of cyber-physical systems, such as CyberSAGE (Vu et al 2014), as well as commercial tools such as Skybox (Corp 2018) and RedSeal (Inc 2018), and securi-CAD (foreseeti 2018; Ekstedt et al 2015). Commercial tools are more generic, i.e.…”

Section: Reference Model Language and Cyber Security Analysis Toolmentioning

confidence: 99%

Load balancing of renewable energy: a cyber security analysis

et al. 2018

Self Cite

View full text Add to dashboard Cite

Background: In the coming years, the increase of automation in electricity distribution grids, controlled by ICT, will bring major consequences to the cyber security posture of the grids. Automation plays an especially important role in load balancing of renewable energy where distributed generation is balanced to load in a way that the grid stability is ensured. Threats to the load balancing and the smart grid in general arise from the activities of misbehaving or rouge actors in combination with poor design, implementation, or configuration of the system that makes it vulnerable. It is urgent to conduct an in-depth analysis about the feasibility and imminency of these potential threats ahead of a cyber catastrophy. This paper presents a cyber security evaluation of the ICT part of the smart grid with a focus on load balancing of renewable energy. Method: The work builds on a load balancing centered smart grid reference architecture model that is designed as part of the evaluation with the help of SCADA system and smart grid experts. The smart grid load balancing architecture represented by the model is then analyzed using a threat modelling approach that is encapsulated in a tool called securiCAD. Countermeasures are introduced in the model to measure how much each improve the cyber security of the smart grid.

show abstract

Securi CAD by Foreseeti: A CAD Tool for Enterprise Cyber Security Management

Cited by 38 publications

References 20 publications

powerLang: a probabilistic attack simulation language for the power domain

powerLang: a probabilistic attack simulation language for the power domain

Creating Meta Attack Language Instances using ArchiMate: Applied to Electric Power and Energy System Cases

Load balancing of renewable energy: a cyber security analysis

Contact Info

Product

Resources

About