{"title":"一种改进的网络物理系统安全保护层分析","authors":"A. Tantawy, A. Erradi, S. Abdelwahed","doi":"10.1109/ICSRS48664.2019.8987635","DOIUrl":null,"url":null,"abstract":"Layer of Protection Analysis (LOPA) is the most commonly used approach for quantitative safety risk assessment in the process control industry to protect a Cyber- Physical System (CPS) from accidental hazards-causing failures. The LOPA approach does not take into account failures due to intentional security attacks, hence yielding partially-protected systems. With security breaches on the rise for critical infrastructure, the LOPA methodology needs to be revisited to verify its underlying assumptions and synchronize safety and security lifecycles. In this paper, we study the LOPA methodology and identify the key mathematical assumptions that are violated in the presence of security attacks. We present a mathematical formulation for a modified LOPA to incorporate the probability of a security attack on a CPS and apply it to a testbed case study.","PeriodicalId":430931,"journal":{"name":"2019 4th International Conference on System Reliability and Safety (ICSRS)","volume":null,"pages":null},"PeriodicalIF":0.0000,"publicationDate":"2019-11-01","publicationTypes":"Journal Article","fieldsOfStudy":null,"isOpenAccess":false,"openAccessPdf":"","citationCount":"3","resultStr":"{\"title\":\"A Modified Layer of Protection Analysis for Cyber-Physical Systems Security\",\"authors\":\"A. Tantawy, A. Erradi, S. Abdelwahed\",\"doi\":\"10.1109/ICSRS48664.2019.8987635\",\"DOIUrl\":null,\"url\":null,\"abstract\":\"Layer of Protection Analysis (LOPA) is the most commonly used approach for quantitative safety risk assessment in the process control industry to protect a Cyber- Physical System (CPS) from accidental hazards-causing failures. The LOPA approach does not take into account failures due to intentional security attacks, hence yielding partially-protected systems. With security breaches on the rise for critical infrastructure, the LOPA methodology needs to be revisited to verify its underlying assumptions and synchronize safety and security lifecycles. In this paper, we study the LOPA methodology and identify the key mathematical assumptions that are violated in the presence of security attacks. We present a mathematical formulation for a modified LOPA to incorporate the probability of a security attack on a CPS and apply it to a testbed case study.\",\"PeriodicalId\":430931,\"journal\":{\"name\":\"2019 4th International Conference on System Reliability and Safety (ICSRS)\",\"volume\":null,\"pages\":null},\"PeriodicalIF\":0.0000,\"publicationDate\":\"2019-11-01\",\"publicationTypes\":\"Journal Article\",\"fieldsOfStudy\":null,\"isOpenAccess\":false,\"openAccessPdf\":\"\",\"citationCount\":\"3\",\"resultStr\":null,\"platform\":\"Semanticscholar\",\"paperid\":null,\"PeriodicalName\":\"2019 4th International Conference on System Reliability and Safety (ICSRS)\",\"FirstCategoryId\":\"1085\",\"ListUrlMain\":\"https://doi.org/10.1109/ICSRS48664.2019.8987635\",\"RegionNum\":0,\"RegionCategory\":null,\"ArticlePicture\":[],\"TitleCN\":null,\"AbstractTextCN\":null,\"PMCID\":null,\"EPubDate\":\"\",\"PubModel\":\"\",\"JCR\":\"\",\"JCRName\":\"\",\"Score\":null,\"Total\":0}","platform":"Semanticscholar","paperid":null,"PeriodicalName":"2019 4th International Conference on System Reliability and Safety (ICSRS)","FirstCategoryId":"1085","ListUrlMain":"https://doi.org/10.1109/ICSRS48664.2019.8987635","RegionNum":0,"RegionCategory":null,"ArticlePicture":[],"TitleCN":null,"AbstractTextCN":null,"PMCID":null,"EPubDate":"","PubModel":"","JCR":"","JCRName":"","Score":null,"Total":0}
A Modified Layer of Protection Analysis for Cyber-Physical Systems Security
Layer of Protection Analysis (LOPA) is the most commonly used approach for quantitative safety risk assessment in the process control industry to protect a Cyber- Physical System (CPS) from accidental hazards-causing failures. The LOPA approach does not take into account failures due to intentional security attacks, hence yielding partially-protected systems. With security breaches on the rise for critical infrastructure, the LOPA methodology needs to be revisited to verify its underlying assumptions and synchronize safety and security lifecycles. In this paper, we study the LOPA methodology and identify the key mathematical assumptions that are violated in the presence of security attacks. We present a mathematical formulation for a modified LOPA to incorporate the probability of a security attack on a CPS and apply it to a testbed case study.
京公网安备 11010802042870号
京ICP备2023020795号-1
分享
求助内容:
应助结果提醒方式:
扫码关注我们
