Securing industrial control system environments: the missing piece

Ani, Uchenna; Daniel, Nneka; Oladipo, Francisca; Adewumi, Sunday E.

doi:10.1080/23742917.2018.1554985

Cited by 10 publications

(8 citation statements)

References 78 publications

Supporting

Mentioning

Contrasting

Order By: Relevance

“…Ani et al [16] and Akbarzadeh & Katsikas [17] introduced the concept of functional dependency modelling analysis that evaluates the cascading effect of physical connections of ICS components within a three-level architecture and analyses the security features in each level. Based on the identified assets, the authors used the Attack tree method to define cyber events (what would happen to the system), considering known threats and vulnerabilities within the level.…”

Section: Related Workmentioning

confidence: 99%

Extended Dependency Modeling Technique for Cyber Risk Identification in ICS

et al. 2023

View full text Add to dashboard Cite

Complex systems such as Industrial Control Systems (ICS) are designed as a collection of functionally dependent and highly connected units with multiple stakeholders. Identifying the risk of such complex systems requires an overall view of the entire system. Dependency modelling (DM) is a highly participative methodology that identifies the goals and objectives of a system and the required dependants to satisfy these goals. Researchers have proved DM to be suitable for identifying and quantifying impact and uncertainty in complex environments. However, there exist limitations in the current expressions of DM that hinder its complete adaptation for risk identification in a complex environment such as ICS. This research investigates how the capability of DM could be extended to address the identified limitations and proposes additional variables to address phenomena that are unique to ICS environments. The proposed extension is built into a system-driven ICS dependency modeller, and we present an illustrative example using a scenario of a generic ICS environment. We reflect that the proposed technique supports an improvement in the initial user data input in the identification of areas of risk at the enterprise, business process, and technology levels.

show abstract

Section: Related Workmentioning

confidence: 99%

Extended Dependency Modeling Technique for Cyber Risk Identification in ICS

et al. 2023

View full text Add to dashboard Cite

show abstract

“…Although some of the frameworks in Table 2 are specific to the water sector, the majority are more generic for all types of CI. An evaluation of these has revealed that even though ICS cybersecurity requirements are not adequately addressed by information security, IT security and security audit assurance practices ( Krotofil et al , 2019; Ani et al , 2018; Weiss, 2014), these are still widely used in ICS environments for the protection of CI (Knowles et al , 2015). A process flow of the development of the CI cybersecurity capability framework is shown in Figure 6.…”

Section: Cybersecurity Resilience Framework For Critical Infrastructu...mentioning

confidence: 99%

Cybersecurity capabilities for critical infrastructure resilience

Malatji

Solms

2021

ICS

View full text Add to dashboard Cite

Purpose For many innovative organisations, Industry 4.0 paves the way for significant operational efficiencies, quality of goods and services and cost reductions. One of the ways to realise these benefits is to embark on digital transformation initiatives that may be summed up as the intelligent interconnectivity of people, processes, data and cyber-connected things. Sadly, this interconnectivity between the enterprise information technology (IT) and industrial control systems (ICS) environment introduces new attack surfaces for critical infrastructure (CI) operators. As a result of the ICS cybersecurity risk introduced by the interconnectivity between the enterprise IT and ICS networks, the purpose of this study is to identify the cybersecurity capabilities that CI operators must have to attain good cybersecurity resilience. Design/methodology/approach A scoping literature review of best practice international CI protection frameworks, standards and guidelines were conducted. Similar cybersecurity practices from these frameworks, standards and guidelines were grouped together under a corresponding National Institute of Standards and Technology (NIST) cybersecurity framework (CF) practice. Practices that could not be categorised under any of the existing NIST CF practices were considered new insights, and therefore, additions. Findings A CI cybersecurity capability framework comprising 29 capability domains (cybersecurity focus areas) was developed as an adaptation of the NIST CF with an added dimension. This added dimension emphasises cloud computing and internet of things (IoT) security. Each of the 29 cybersecurity capability domains is executed through various capabilities (cybersecurity processes and procedures). The study found that each cybersecurity capability can further be operationalised by a set of cybersecurity controls derived from various frameworks, standards and guidelines, such as COBIT®, CIS®, ISA/IEC 62443, ISO/IEC 27002 and NIST Special Publication 800-53. Practical implications CI sectors are immediately able to adopt the CI cybersecurity capability framework to evaluate their levels of resilience against cyber-attacks, given new attack surfaces introduced by the interconnectivity of cyber-connected things between the enterprise and ICS levels. Originality/value The authors present an added dimension to the NIST framework for CI cyber protection. In addition to emphasising cryptography, IoT and cloud computing security aspects, this added dimension highlights the need for an integrated approach to CI cybersecurity resilience instead of a piecemeal approach.

show abstract

“…In addition, responses in form of solutions are typically responsive to, and trail similar paths as the direction of growing malicious events. Moreover, these sectors appear not to be suffering increasing cyber-attacks judging by known recorded incidents [43]. While it may be rational to focus solutions where there are greater threats and risk challenges, the potentials for common cause failures are very imminent, hence, it is crucial to also give a good measure of attention other CI sectors.…”

Section: Transportation Water and Waste Water And Chemical Industriesmentioning

confidence: 99%

A review of critical infrastructure protection approaches: improving security through responsiveness to the dynamic modelling landscape

Ani¹,

Watson²,

Nurse³

et al. 2019

Living in the Internet of Things (IoT 2019)

View full text Add to dashboard Cite

As new technologies such as the Internet of Things (IoT) are integrated into Critical National Infrastructures (CNI), new cybersecurity threats emerge that require specific security solutions. Approaches used for analysis include the modelling and simulation of critical infrastructure systems using attributes, functionalities, operations, and behaviours to support various security analysis viewpoints, recognising and appropriately managing associated security risks. With several critical infrastructure protection approaches available, the question of how to effectively model the complex behaviour of interconnected CNI elements and to configure their protection as a system-of-systems remains a challenge. Using a systematic review approach, existing critical infrastructure protection approaches (tools and techniques) are examined to determine their suitability given trends like IoT, and effective security modelling and analysis issues. It is found that empirical-based, agent-based, system dynamics-based, and network-based modelling are more commonly applied than economic-based and equation-based techniques, and empirical-based modelling is the most widely used. The energy and transportation critical infrastructure sectors reflect the most responsive sectors, and no one Critical Infrastructure Protection (CIP) approach -tool, technique, methodology or framework -provides a 'fit-for-all' capacity for all-round attribute modelling and simulation of security risks. Typically, deciding factors for CIP choices to adopt are often dominated by trade-offs between 'complexity of use' and 'popularity of approach', as well as between 'specificity' and 'generality' of application in sectors. Improved security modelling is feasible via; appropriate tweaking of CIP approaches to include a wider scope of security risk management, functional responsiveness to interdependency, resilience and policy formulation requirements, and collaborative information sharing between public and private sectors.

show abstract

Securing industrial control system environments: the missing piece

Cited by 10 publications

References 78 publications

Extended Dependency Modeling Technique for Cyber Risk Identification in ICS

Extended Dependency Modeling Technique for Cyber Risk Identification in ICS

Cybersecurity capabilities for critical infrastructure resilience

A review of critical infrastructure protection approaches: improving security through responsiveness to the dynamic modelling landscape

Contact Info

Product

Resources

About