TY - GEN
T1 - Software engineering challenges for investigating cyber-physical incidents
AU - Alrimawi, Faeq
AU - Pasquale, Liliana
AU - Nuseibeh, Bashar
N1 - Publisher Copyright:
© 2017 IEEE.
PY - 2017/7/3
Y1 - 2017/7/3
N2 - Cyber-Physical Systems (CPS) are characterized by the interplay between digital and physical spaces. This characteristic has extended the attack surface that could be exploited by an offender to cause harm. An increasing number of cyber-physical incidents may occur depending on the configuration of the physical and digital spaces and their interplay. Traditional investigation processes are not adequate to investigate these incidents, as they may overlook the extended attack surface resulting from such interplay, leading to relevant evidence being missed and testing flawed hypotheses explaining the incidents. The software engineering research community can contribute to addressing this problem, by deploying existing formalisms to model digital and physical spaces, and using analysis techniques to reason about their interplay and evolution. In this paper, supported by a motivating example, we describe some emerging software engineering challenges to support investigations of cyber-physical incidents. We review and critique existing research proposed to address these challenges, and sketch an initial solution based on a meta-model to represent cyber-physical incidents and a representation of the topology of digital and physical spaces that supports reasoning about their interplay.
AB - Cyber-Physical Systems (CPS) are characterized by the interplay between digital and physical spaces. This characteristic has extended the attack surface that could be exploited by an offender to cause harm. An increasing number of cyber-physical incidents may occur depending on the configuration of the physical and digital spaces and their interplay. Traditional investigation processes are not adequate to investigate these incidents, as they may overlook the extended attack surface resulting from such interplay, leading to relevant evidence being missed and testing flawed hypotheses explaining the incidents. The software engineering research community can contribute to addressing this problem, by deploying existing formalisms to model digital and physical spaces, and using analysis techniques to reason about their interplay and evolution. In this paper, supported by a motivating example, we describe some emerging software engineering challenges to support investigations of cyber-physical incidents. We review and critique existing research proposed to address these challenges, and sketch an initial solution based on a meta-model to represent cyber-physical incidents and a representation of the topology of digital and physical spaces that supports reasoning about their interplay.
KW - CPS
KW - Cyber-physical systems
KW - Digital investigation
KW - Incidents
UR - http://www.scopus.com/inward/record.url?scp=85027445849&partnerID=8YFLogxK
U2 - 10.1109/SEsCPS.2017.9
DO - 10.1109/SEsCPS.2017.9
M3 - Conference contribution
AN - SCOPUS:85027445849
T3 - Proceeding - 2017 IEEE/ACM 3rd International Workshop on Software Engineering for Smart Cyber-Physical Systems, SEsCPS 2017
SP - 34
EP - 40
BT - Proceeding - 2017 IEEE/ACM 3rd International Workshop on Software Engineering for Smart Cyber-Physical Systems, SEsCPS 2017
PB - Institute of Electrical and Electronics Engineers Inc.
T2 - 3rd IEEE/ACM International Workshop on Software Engineering for Smart Cyber-Physical Systems, SEsCPS 2017
Y2 - 21 May 2017
ER -