Organizational Security Architecture for Critical Infrastructure

2013 International Conference on Availability, Reliability and Security Pub Date : 2013-09-02 DOI:10.1109/ARES.2013.43

Jonathan Blangenois, G. Guemkam, C. Feltus, D. Khadraoui

{"title":"Organizational Security Architecture for Critical Infrastructure","authors":"Jonathan Blangenois, G. Guemkam, C. Feltus, D. Khadraoui","doi":"10.1109/ARES.2013.43","DOIUrl":null,"url":null,"abstract":"The governance of critical infrastructures requires a fail-safe dedicated security management organization. This organization must provide the structure and mechanisms necessary for supporting the business processes execution, including: decision-making support and the alignment of this latter with the application functions and the network components. Most research in this field focuses on elaborating the SCADA system which embraces components for data acquisition, alert correlation and policy instantiation. At the application layer, one of the most exploited approaches for supporting SCADA is built up on multi-agent system technology. Notwithstanding the extent of existing work, no model allows to represent these systems in an integrated manner and to consider different layers of the organization. Therefore, we propose an innovative version of ArchiMate® for multi-agent purpose with the objective to enrich the agent society collaboration and, more particularly, the description of the agent's behavior. Our work is has been illustrated in the context of a critical infrastructure in the field of a financial acquiring/issuing mechanism for card payments.","PeriodicalId":302747,"journal":{"name":"2013 International Conference on Availability, Reliability and Security","volume":"20 1","pages":"0"},"PeriodicalIF":0.0000,"publicationDate":"2013-09-02","publicationTypes":"Journal Article","fieldsOfStudy":null,"isOpenAccess":false,"openAccessPdf":"","citationCount":"9","resultStr":null,"platform":"Semanticscholar","paperid":null,"PeriodicalName":"2013 International Conference on Availability, Reliability and Security","FirstCategoryId":"1085","ListUrlMain":"https://doi.org/10.1109/ARES.2013.43","RegionNum":0,"RegionCategory":null,"ArticlePicture":[],"TitleCN":null,"AbstractTextCN":null,"PMCID":null,"EPubDate":"","PubModel":"","JCR":"","JCRName":"","Score":null,"Total":0}

引用次数: 9

Abstract

The governance of critical infrastructures requires a fail-safe dedicated security management organization. This organization must provide the structure and mechanisms necessary for supporting the business processes execution, including: decision-making support and the alignment of this latter with the application functions and the network components. Most research in this field focuses on elaborating the SCADA system which embraces components for data acquisition, alert correlation and policy instantiation. At the application layer, one of the most exploited approaches for supporting SCADA is built up on multi-agent system technology. Notwithstanding the extent of existing work, no model allows to represent these systems in an integrated manner and to consider different layers of the organization. Therefore, we propose an innovative version of ArchiMate® for multi-agent purpose with the objective to enrich the agent society collaboration and, more particularly, the description of the agent's behavior. Our work is has been illustrated in the context of a critical infrastructure in the field of a financial acquiring/issuing mechanism for card payments.

查看原文本刊更多论文

关键基础设施的组织安全架构

关键基础设施的治理需要一个故障安全专用的安全管理组织。该组织必须提供支持业务流程执行所需的结构和机制，包括:决策支持，以及决策支持与应用程序功能和网络组件的一致性。该领域的大多数研究都集中在阐述SCADA系统，该系统包含数据采集、警报关联和策略实例化等组件。在应用层，支持SCADA的最常用方法之一是建立在多代理系统技术之上。尽管现有工作的范围很大，但没有模型允许以集成的方式表示这些系统并考虑组织的不同层。因此，我们提出了一个创新版本的ArchiMate®，用于多智能体目的，目的是丰富智能体社会协作，更具体地说，是对智能体行为的描述。我们的工作是在信用卡支付的金融获取/发行机制领域的关键基础设施的背景下进行说明的。

本文章由计算机程序翻译，如有差异，请以英文原文为准。

求助全文

约1分钟内获得全文求助全文

来源期刊

2013 International Conference on Availability, Reliability and Security

自引率

0.00%

发文量