Modeling impact of attacks, recovery, and attackability conditions for situational awareness

2014 IEEE International Inter-Disciplinary Conference on Cognitive Methods in Situation Awareness and Decision Support (CogSIMA) Pub Date : 2014-05-19 DOI:10.1109/COGSIMA.2014.6816560

H. Çam, Pierre Mouallem, Yilin Mo, B. Sinopoli, Benjamin Nkrumah

{"title":"Modeling impact of attacks, recovery, and attackability conditions for situational awareness","authors":"H. Çam, Pierre Mouallem, Yilin Mo, B. Sinopoli, Benjamin Nkrumah","doi":"10.1109/COGSIMA.2014.6816560","DOIUrl":null,"url":null,"abstract":"A distributed cyber control system comprises various types of assets, including sensors, intrusion detection systems, scanners, controllers, and actuators. The modeling and analysis of these components usually require multi-disciplinary approaches. This paper presents a modeling and dynamic analysis of a distributed cyber control system for situational awareness by taking advantage of control theory and time Petri net. Linear time-invariant systems are used to model the target system, attacks, assets influences, and an anomaly-based intrusion detection system. Time Petri nets are used to model the impact and timing relationships of attacks, vulnerability, and recovery at every node. To characterize those distributed control systems that are perfectly attackable, algebraic and topological attackability conditions are derived. Numerical evaluation is performed to determine the impact of attacks on distributed control system.","PeriodicalId":118752,"journal":{"name":"2014 IEEE International Inter-Disciplinary Conference on Cognitive Methods in Situation Awareness and Decision Support (CogSIMA)","volume":"37 1","pages":"0"},"PeriodicalIF":0.0000,"publicationDate":"2014-05-19","publicationTypes":"Journal Article","fieldsOfStudy":null,"isOpenAccess":false,"openAccessPdf":"","citationCount":"14","resultStr":null,"platform":"Semanticscholar","paperid":null,"PeriodicalName":"2014 IEEE International Inter-Disciplinary Conference on Cognitive Methods in Situation Awareness and Decision Support (CogSIMA)","FirstCategoryId":"1085","ListUrlMain":"https://doi.org/10.1109/COGSIMA.2014.6816560","RegionNum":0,"RegionCategory":null,"ArticlePicture":[],"TitleCN":null,"AbstractTextCN":null,"PMCID":null,"EPubDate":"","PubModel":"","JCR":"","JCRName":"","Score":null,"Total":0}

引用次数: 14

Abstract

A distributed cyber control system comprises various types of assets, including sensors, intrusion detection systems, scanners, controllers, and actuators. The modeling and analysis of these components usually require multi-disciplinary approaches. This paper presents a modeling and dynamic analysis of a distributed cyber control system for situational awareness by taking advantage of control theory and time Petri net. Linear time-invariant systems are used to model the target system, attacks, assets influences, and an anomaly-based intrusion detection system. Time Petri nets are used to model the impact and timing relationships of attacks, vulnerability, and recovery at every node. To characterize those distributed control systems that are perfectly attackable, algebraic and topological attackability conditions are derived. Numerical evaluation is performed to determine the impact of attacks on distributed control system.

查看原文本刊更多论文

为态势感知建模攻击、恢复和可攻击条件的影响

分布式网络控制系统包括各种类型的资产，包括传感器、入侵检测系统、扫描仪、控制器和执行器。这些组件的建模和分析通常需要多学科的方法。利用控制理论和时间Petri网对分布式态势感知网络控制系统进行了建模和动态分析。线性时不变系统用于对目标系统、攻击、资产影响和基于异常的入侵检测系统进行建模。时间Petri网用于模拟每个节点上攻击、漏洞和恢复的影响和时间关系。为了描述完全可攻击的分布式控制系统，导出了可攻击的代数条件和拓扑条件。通过数值计算来确定攻击对分布式控制系统的影响。

本文章由计算机程序翻译，如有差异，请以英文原文为准。

求助全文

约1分钟内获得全文求助全文

来源期刊

2014 IEEE International Inter-Disciplinary Conference on Cognitive Methods in Situation Awareness and Decision Support (CogSIMA)

自引率

0.00%

发文量