{"title":"TMQ: Threat model quantification in Smart Grid critical infrastructures","authors":"Luis Garcia, S. Zonouz","doi":"10.1109/SmartGridComm.2014.7007710","DOIUrl":null,"url":null,"abstract":"For proper security risk management and effective deployment of security solutions in smart grid critical infrastructures, accurate identification and in-depth understanding of threats are crucial. Traditional descriptive threat models are often considered insufficient for accurate and mathematical numerical risk analyses of such critical infrastructures. In this paper, we propose TMQ, a novel and scalable threat model quantification method to create numerical models of various threat categories automatically. In particular, TMQ makes use of several sources of information to quantify the individual threat vectors. First, TMQ utilizes the smart grid network topology and global security access control policies to create a state-based security model for the smart grid using the Markov decision processes formalism. Then, TMQ utilizes traditional descriptive threat models, historical attack reports, intrusion detection logs as well as reports/interviews by/with hackers to quantify adversarial viewpoints of attackers from various threat categories against the smart grid. The result is an automatically generated model with specialized reward functions for each category of attackers. Our experimental results on a smart grid testbed network with several vulnerabilities show that TMQ can accurately quantify traditional descriptive threat models efficiently.","PeriodicalId":6499,"journal":{"name":"2014 IEEE International Conference on Smart Grid Communications (SmartGridComm)","volume":"369 1","pages":"584-589"},"PeriodicalIF":0.0000,"publicationDate":"2014-11-01","publicationTypes":"Journal Article","fieldsOfStudy":null,"isOpenAccess":false,"openAccessPdf":"","citationCount":"7","resultStr":null,"platform":"Semanticscholar","paperid":null,"PeriodicalName":"2014 IEEE International Conference on Smart Grid Communications (SmartGridComm)","FirstCategoryId":"1085","ListUrlMain":"https://doi.org/10.1109/SmartGridComm.2014.7007710","RegionNum":0,"RegionCategory":null,"ArticlePicture":[],"TitleCN":null,"AbstractTextCN":null,"PMCID":null,"EPubDate":"","PubModel":"","JCR":"","JCRName":"","Score":null,"Total":0}
引用次数: 7
Abstract
For proper security risk management and effective deployment of security solutions in smart grid critical infrastructures, accurate identification and in-depth understanding of threats are crucial. Traditional descriptive threat models are often considered insufficient for accurate and mathematical numerical risk analyses of such critical infrastructures. In this paper, we propose TMQ, a novel and scalable threat model quantification method to create numerical models of various threat categories automatically. In particular, TMQ makes use of several sources of information to quantify the individual threat vectors. First, TMQ utilizes the smart grid network topology and global security access control policies to create a state-based security model for the smart grid using the Markov decision processes formalism. Then, TMQ utilizes traditional descriptive threat models, historical attack reports, intrusion detection logs as well as reports/interviews by/with hackers to quantify adversarial viewpoints of attackers from various threat categories against the smart grid. The result is an automatically generated model with specialized reward functions for each category of attackers. Our experimental results on a smart grid testbed network with several vulnerabilities show that TMQ can accurately quantify traditional descriptive threat models efficiently.
京公网安备 11010802042870号
京ICP备2023020795号-1
分享
求助内容:
应助结果提醒方式:
扫码关注我们
