Criticality based Optimal Cyber Defense Remediation in Energy Delivery Systems

Criticality based Optimal Cyber Defense Remediation in Energy Delivery Systems

A prioritized cyber defense remediation plan is critical for effective risk management in Energy DeliverySystem (EDS). Due to the complexity of EDS in terms of heterogeneous nature blending InformationTechnology (IT) and Operation Technology (OT) and Industrial Control System (ICS), scale and critic...

Full description

Bibliographic Details
Main Authors: Kamrul Hasan, Sachin Shetty, Md. Ullah, Amin Hassanzadeh, Tariqul Islam
Format: Article
Language:English
Published: European Alliance for Innovation (EAI) 2021-09-01
Series:EAI Endorsed Transactions on Security and Safety
Subjects:
cyber defense
criticality
energy delivery systems
attack graph
cost models
Online Access:https://eudl.eu/pdf/10.4108/eai.10-9-2021.170949
id doaj-fbcaf51dddf94ed9b86cd56debb47851
record_format Article
spelling doaj-fbcaf51dddf94ed9b86cd56debb478512021-09-29T07:05:54ZengEuropean Alliance for Innovation (EAI)EAI Endorsed Transactions on Security and Safety2032-93932021-09-0182810.4108/eai.10-9-2021.170949Criticality based Optimal Cyber Defense Remediation in Energy Delivery SystemsKamrul Hasan0Sachin Shetty1Md. Ullah2Amin Hassanzadeh3Tariqul Islam4Tennessee State University, Nashville, TN, USAOld Dominion University, Norfolk, VA, USAOld Dominion University, Norfolk, VA, USAAccenture Labs, Cyber Fusion Center, AccentureSyracuse University, Syracuse, NY, USAA prioritized cyber defense remediation plan is critical for effective risk management in Energy DeliverySystem (EDS). Due to the complexity of EDS in terms of heterogeneous nature blending InformationTechnology (IT) and Operation Technology (OT) and Industrial Control System (ICS), scale and criticalprocesses tasks, prioritized remediations should be applied gradually to protect critical assets. In this work,we propose a methodology for a prioritized cyber risk remediation plan by detecting and evaluating pathsto critical nodes in EDS. We propose critical nodes characteristics evaluation based on nodes’ architecturalpositions, a measure of centrality based on nodes’ connectivity and frequency of network traffic, as well as thecontrolled amount of physical loads. The paper also examines the relationship between cost models of budgetallocation for the removal of vulnerabilities on critical nodes and its impact on gradual readiness.https://eudl.eu/pdf/10.4108/eai.10-9-2021.170949cyber defensecriticalityenergy delivery systemsattack graphcost models
collection DOAJ
language English
format Article
sources DOAJ
author Kamrul Hasan
Sachin Shetty
Md. Ullah
Amin Hassanzadeh
Tariqul Islam
spellingShingle Kamrul Hasan
Sachin Shetty
Md. Ullah
Amin Hassanzadeh
Tariqul Islam
Criticality based Optimal Cyber Defense Remediation in Energy Delivery Systems
EAI Endorsed Transactions on Security and Safety
cyber defense
criticality
energy delivery systems
attack graph
cost models
author_facet Kamrul Hasan
Sachin Shetty
Md. Ullah
Amin Hassanzadeh
Tariqul Islam
author_sort Kamrul Hasan
title Criticality based Optimal Cyber Defense Remediation in Energy Delivery Systems
title_short Criticality based Optimal Cyber Defense Remediation in Energy Delivery Systems
title_full Criticality based Optimal Cyber Defense Remediation in Energy Delivery Systems
title_fullStr Criticality based Optimal Cyber Defense Remediation in Energy Delivery Systems
title_full_unstemmed Criticality based Optimal Cyber Defense Remediation in Energy Delivery Systems
title_sort criticality based optimal cyber defense remediation in energy delivery systems
publisher European Alliance for Innovation (EAI)
series EAI Endorsed Transactions on Security and Safety
issn 2032-9393
publishDate 2021-09-01
description A prioritized cyber defense remediation plan is critical for effective risk management in Energy DeliverySystem (EDS). Due to the complexity of EDS in terms of heterogeneous nature blending InformationTechnology (IT) and Operation Technology (OT) and Industrial Control System (ICS), scale and criticalprocesses tasks, prioritized remediations should be applied gradually to protect critical assets. In this work,we propose a methodology for a prioritized cyber risk remediation plan by detecting and evaluating pathsto critical nodes in EDS. We propose critical nodes characteristics evaluation based on nodes’ architecturalpositions, a measure of centrality based on nodes’ connectivity and frequency of network traffic, as well as thecontrolled amount of physical loads. The paper also examines the relationship between cost models of budgetallocation for the removal of vulnerabilities on critical nodes and its impact on gradual readiness.
topic cyber defense
criticality
energy delivery systems
attack graph
cost models
url https://eudl.eu/pdf/10.4108/eai.10-9-2021.170949
work_keys_str_mv AT kamrulhasan criticalitybasedoptimalcyberdefenseremediationinenergydeliverysystems
AT sachinshetty criticalitybasedoptimalcyberdefenseremediationinenergydeliverysystems
AT mdullah criticalitybasedoptimalcyberdefenseremediationinenergydeliverysystems
AT aminhassanzadeh criticalitybasedoptimalcyberdefenseremediationinenergydeliverysystems
AT tariqulislam criticalitybasedoptimalcyberdefenseremediationinenergydeliverysystems
_version_ 1716864595225739264

Similar Items