A System-Fault-Risk Framework for cyber attack classification
نویسندگان
چکیده
Computer and network systems fall victim to many cyber attacks of different forms. To reduce the risks of cyber attacks, an organization needs to understand and assess them, make decisions about what types of barriers or protection mechanisms are necessary to defend against them, and decide where to place such mechanisms. Understanding cyber attack characteristics (threats, attack activities, state and performance impact, etc.) helps in choosing effective barriers. Understanding the assets affected by cyber attacks helps decide where to place such barriers. To develop these understandings, we classify attacks in a comprehensive, sensible format. This paper presents the System-Fault-Risk (SFR) framework for cyber attack classification, which we base on a scientific foundation, combining theories from system engineering, fault modeling, and risk-assessment. Our work extends existing classifications with a focus on separating cause and effect, and further refining effects to include state and performance.
منابع مشابه
Attack profiles to derive data observations, features, and characteristics of cyber attacks
Existing techniques for cyber attack detection rely mainly on activity data from computers and networks. Little consideration has been given to other kinds of data in the cause-effect chains of attacks. Adding state and performance data may reveal elements on computers and networks that are affected by a cyber attack, thus providing a more accurate, complete picture of an attack. This paper pre...
متن کاملAn Authorization Framework for Database Systems
Today, data plays an essential role in all levels of human life, from personal cell phones to medical, educational, military and government agencies. In such circumstances, the rate of cyber-attacks is also increasing. According to official reports, data breaches exposed 4.1 billion records in the first half of 2019. An information system consists of several components, which one of the most im...
متن کاملAn Effective Attack-Resilient Kalman Filter-Based Approach for Dynamic State Estimation of Synchronous Machine
Kalman filtering has been widely considered for dynamic state estimation in smart grids. Despite its unique merits, the Kalman Filter (KF)-based dynamic state estimation can be undesirably influenced by cyber adversarial attacks that can potentially be launched against the communication links in the Cyber-Physical System (CPS). To enhance the security of KF-based state estimation, in this paper...
متن کاملAn Ontology for Identifying Cyber Intrusion Induced Faults in Process Control Systems
This paper presents an ontological framework that permits formal representations of process control systems, including elements of the process being controlled and the control system itself. A fault diagnosis algorithm based on the ontological model is also presented. The algorithm can identify traditional process elements as well as control system elements (e.g., IP network and SCADA protocol)...
متن کاملRisk analysis of cyber vulnerabilities in water distribution industrial control systems
Cyber attacks are an emerging threat to critical infrastructure systems worldwide. We focus on water, recognizing that water is vital for human health and to the function of other critical infrastructures. A cyber attack targets control and monitoring systems of a water utility, known as supervisory control and data acquisition (SCADA) systems, and disrupts water operations. Current research is...
متن کاملذخیره در منابع من
با ذخیره ی این منبع در منابع من، دسترسی به آن را برای استفاده های بعدی آسان تر کنید
برای دانلود متن کامل این مقاله و بیش از 32 میلیون مقاله دیگر ابتدا ثبت نام کنید
ثبت ناماگر عضو سایت هستید لطفا وارد حساب کاربری خود شوید
ورودعنوان ژورنال:
- Information, Knowledge, Systems Management
دوره 5 شماره
صفحات -
تاریخ انتشار 2006