A threat-vulnerability based risk analysis model for cyber physical system security

Ledwaba, Lehlogonolo; Venter, HS

dc.contributor.author	Ledwaba, Lehlogonolo
dc.contributor.author	Venter, HS
dc.date.accessioned	2017-09-29T06:46:33Z
dc.date.available	2017-09-29T06:46:33Z
dc.date.issued	2017-01
dc.identifier.citation	Ledwaba, L. and Venter, H.S. 2017. A threat-vulnerability based risk analysis model for cyber physical system security. Proceedings of the 50th Hawaii International Conference on System Sciences, 4-7 January 2017, Kona, Hawaii, USA	en_US
dc.identifier.isbn	978-0-9981331-0-2
dc.identifier.uri	https://scholarspace.manoa.hawaii.edu/handle/10125/41890
dc.identifier.uri	https://www.researchgate.net/publication/312092805_A_Threat-Vulnerability_Based_Risk_Analysis_Model_for_Cyber_Physical_System_Security
dc.identifier.uri	http://aisel.aisnet.org/hicss-50/st/cyber-of-things/3/
dc.identifier.uri	http://hdl.handle.net/10204/9613
dc.description	Proceedings of the 50th Hawaii International Conference on System Sciences, 4-7 January 2017, Kona, Hawaii, USA	en_US
dc.description.abstract	The ability to network machinery and devices that are otherwise isolated is highly attractive to industry. This has led to growth in the use of cyber-physical systems (CPSs) with existing infrastructure. However, coupling physical and cyber processes leaves CPSs vulnerable to security attacks. A threat-vulnerability based risk model is developed through a detailed analysis of CPS security attack structures and threats. The Stuxnet malware attack is used to test the viability of the proposed model. An analysis of the Natanz system shows that, with an actual case security-risk score at Mitigation level 5, the infested facilities barely avoided a situation worse than the one which occurred. The paper concludes with a discussion on the need for risk analysis as part of CPS security and highlights the future work of modelling and comparing existing security solutions using the proposed model so to identify the sectors where CPS security is still lacking.	en_US
dc.language.iso	en	en_US
dc.publisher	AIS Electronic Library	en_US
dc.relation.ispartofseries	Worklist;18748
dc.subject	Risk Analysis	en_US
dc.subject	Cyber physical systems	en_US
dc.subject	Security	en_US
dc.subject	Stuxnet	en_US
dc.subject	Risk Model	en_US
dc.title	A threat-vulnerability based risk analysis model for cyber physical system security	en_US
dc.type	Conference Presentation	en_US
dc.identifier.apacitation	Ledwaba, L., & Venter, H. (2017). A threat-vulnerability based risk analysis model for cyber physical system security. AIS Electronic Library. http://hdl.handle.net/10204/9613	en_ZA
dc.identifier.chicagocitation	Ledwaba, Lehlogonolo, and HS Venter. "A threat-vulnerability based risk analysis model for cyber physical system security." (2017): http://hdl.handle.net/10204/9613	en_ZA
dc.identifier.vancouvercitation	Ledwaba L, Venter H, A threat-vulnerability based risk analysis model for cyber physical system security; AIS Electronic Library; 2017. http://hdl.handle.net/10204/9613 .	en_ZA
dc.identifier.ris	TY - Conference Presentation AU - Ledwaba, Lehlogonolo AU - Venter, HS AB - The ability to network machinery and devices that are otherwise isolated is highly attractive to industry. This has led to growth in the use of cyber-physical systems (CPSs) with existing infrastructure. However, coupling physical and cyber processes leaves CPSs vulnerable to security attacks. A threat-vulnerability based risk model is developed through a detailed analysis of CPS security attack structures and threats. The Stuxnet malware attack is used to test the viability of the proposed model. An analysis of the Natanz system shows that, with an actual case security-risk score at Mitigation level 5, the infested facilities barely avoided a situation worse than the one which occurred. The paper concludes with a discussion on the need for risk analysis as part of CPS security and highlights the future work of modelling and comparing existing security solutions using the proposed model so to identify the sectors where CPS security is still lacking. DA - 2017-01 DB - ResearchSpace DP - CSIR KW - Risk Analysis KW - Cyber physical systems KW - Security KW - Stuxnet KW - Risk Model LK - https://researchspace.csir.co.za PY - 2017 SM - 978-0-9981331-0-2 T1 - A threat-vulnerability based risk analysis model for cyber physical system security TI - A threat-vulnerability based risk analysis model for cyber physical system security UR - http://hdl.handle.net/10204/9613 ER -	en_ZA

Files in this item

Name: Ledwaba_18748_2017.pdf

Size: 2.263Mb

Format: PDF

Description: Conference paper

View/Open

This item appears in the following Collection(s)

Conference Publications

Show simple item record

Browse

All of ResearchSpace
This Collection
- By Issue Date
- Authors
- Titles
- Subjects
- Publication Type
- Cluster
- Impact Area

Quick Links

Legislation and compliance

General Enquiries

Tel: + 27 12 841 2911
Email: callcentre@csir.co.za

Physical Address
Meiring Naudé Road
Brummeria
Pretoria
South Africa

Postal Address
PO Box 395
Pretoria 0001
South Africa

Social Connect

Resources on this site are free to download and reuse according to associated licensing provision. Please read the terms and conditions of usage of each resource.