Architecture-based attack propagation and variation analysis for identifying confidentiality issues in Industry 4.0

IF 0.7 4区计算机科学 Q4 AUTOMATION & CONTROL SYSTEMS

At-Automatisierungstechnik Pub Date : 2023-06-01 DOI:10.1515/auto-2022-0135

Maximilian Walter, Sebastian Hahner, T. Bures, P. Hnetynka, R. Heinrich, R. Reussner

引用次数: 2

Abstract

Abstract Exchanging data between entities is an essential part of Industry 4.0. However, the data exchange should not affect the confidentiality. Therefore, data should only be shared with the intended entities. In exceptional scenarios, it is unclear whether data should be shared or not and what the impact of the access decision is. Runtime access control systems such as role-based access control often do not consider the impact on the overall confidentiality. Static design-time analyses often provide this information. We use architectural design-time analyses together with an uncertainty variation metamodel mitigating uncertainty to calculate impact properties of attack paths. Runtime access control approaches can then use this information to support the access control decision. We evaluated our approach on four case studies based on real-world examples and research cases.

查看原文本刊更多论文

基于体系结构的攻击传播和变异分析，用于识别工业4.0中的机密性问题

实体之间的数据交换是工业4.0的重要组成部分。但是，数据交换不应影响机密性。因此，数据应该只与预期的实体共享。在特殊情况下，不清楚是否应该共享数据以及访问决策的影响是什么。诸如基于角色的访问控制之类的运行时访问控制系统通常不会考虑对总体机密性的影响。静态设计时分析通常提供这些信息。我们使用架构设计时分析和不确定性变化元模型来计算攻击路径的影响特性。然后，运行时访问控制方法可以使用这些信息来支持访问控制决策。我们基于现实世界的例子和研究案例对我们的方法进行了四个案例研究。

本文章由计算机程序翻译，如有差异，请以英文原文为准。

求助全文

约1分钟内获得全文求助全文

来源期刊

At-Automatisierungstechnik 工程技术-自动化与控制系统

CiteScore

2.00

自引率

10.00%

发文量

审稿时长

6-12 weeks

期刊介绍： Automatisierungstechnik (AUTO) publishes articles covering the entire range of automation technology: development and application of methods, the operating principles, characteristics, and applications of tools and the interrelationships between automation technology and societal developments. The journal includes a tutorial series on "Theory for Users," and a forum for the exchange of viewpoints concerning past, present, and future developments. Automatisierungstechnik is the official organ of GMA (The VDI/VDE Society for Measurement and Automatic Control) and NAMUR (The Process-Industry Interest Group for Automation Technology). Topics control engineering digital measurement systems cybernetics robotics process automation / process engineering control design modelling information processing man-machine interfaces networked control systems complexity management machine learning ambient assisted living automated driving bio-analysis technology building automation factory automation / smart factories flexible manufacturing systems functional safety mechatronic systems.