I've seen this before: Sharing cyber-physical incident knowledge

Faeq Alrimawi, Liliana Pasquale, Deepak Mehta, Bashar Nuseibeh

Research output: Chapter in Book/Report/Conference proceedingConference contributionpeer-review

Abstract

An increasing number of security incidents in cyber-physical systems (CPSs) arise from the exploitation of cyber and physical components of such systems. Knowledge about how such incidents arose is rarely captured and used systematically to enhance security and support future incident investigations. In this paper, we propose an approach to represent and share incidents knowledge. Our approach captures incident patterns-common aspects of incidents occurring in different CPSs. Our approach then allows incident patterns to be instantiated for different systems to assess if and how such patterns can manifest again. To support our approach, we provide two meta-models that represent, respectively, incident patterns and the cyber-physical systems themselves. The incident meta-model captures the characteristics of incidents, such as assets and activities. The system meta-model captures cyber and physical components and their interactions, which may be exploited during an incident. We demonstrate the feasibility of our approach in the application domain of smart buildings, by tailoring the system meta-model to represent components and interactions in this domain.

Original languageEnglish
Title of host publicationProceedings - 2018 ACM/IEEE 1st International Workshop on Security Awareness from Design to Deployment, SEAD 2018
PublisherInstitute of Electrical and Electronics Engineers Inc.
Pages33-40
Number of pages8
ISBN (Electronic)9781450357272
DOIs
Publication statusPublished - 25 Sep 2018
Externally publishedYes
Event1st ACM/IEEE International Workshop on Security Awareness from Design to Deployment, SEAD 2018 - Gothenburg, Sweden
Duration: 27 May 2018 → …

Publication series

NameProceedings - 2018 ACM/IEEE 1st International Workshop on Security Awareness from Design to Deployment, SEAD 2018

Conference

Conference1st ACM/IEEE International Workshop on Security Awareness from Design to Deployment, SEAD 2018
Country/TerritorySweden
CityGothenburg
Period27/05/18 → …

Keywords

  • Cyber-Physical Systems
  • Incident Pattern
  • Meta-model
  • Smart Buildings

Fingerprint

Dive into the research topics of 'I've seen this before: Sharing cyber-physical incident knowledge'. Together they form a unique fingerprint.

Cite this