Martina Nobili, Camilla Fioravanti, S. Guarino, S. Ansaldi, M. Milazzo, P. Bragatto, R. Setola
{"title":"驱动程序:工业控制系统紧急网络威胁动态风险评估平台","authors":"Martina Nobili, Camilla Fioravanti, S. Guarino, S. Ansaldi, M. Milazzo, P. Bragatto, R. Setola","doi":"10.1109/MED59994.2023.10185686","DOIUrl":null,"url":null,"abstract":"A good cyber risk assessment is nowadays a matter of paramount importance for industrial systems and critical infrastructures. In a radical change and continuous development scenario such as that represented by Industry 4.0 plants, it is no longer sufficient to consider only static risks relating to the analysis of past data, but there is a need for a risk assessment that takes into account risks arising from emergent threats. In this paper, we propose a novel methodology for dynamic risk assessment that takes into account both the known values related to the static components of the system and the risks related to the emergence of new threats that have not yet been verified but are plausible according to experts. To achieve this, as part of the national “DRIVERS” project, an analysis of the most significant cyber-security factors was conducted to classify them in terms of relevance, considering both risk acceleration and risk mitigation aspects. This assessment is carried out by means of the multi-criteria decision support technique Analytic Hierarchy Process (AHP), performed by dividing the threat into a hierarchical structure.","PeriodicalId":270226,"journal":{"name":"2023 31st Mediterranean Conference on Control and Automation (MED)","volume":"163 1","pages":"0"},"PeriodicalIF":0.0000,"publicationDate":"2023-06-26","publicationTypes":"Journal Article","fieldsOfStudy":null,"isOpenAccess":false,"openAccessPdf":"","citationCount":"0","resultStr":"{\"title\":\"DRIVERS: A platform for dynamic risk assessment of emergent cyber threats for industrial control systems\",\"authors\":\"Martina Nobili, Camilla Fioravanti, S. Guarino, S. Ansaldi, M. Milazzo, P. Bragatto, R. Setola\",\"doi\":\"10.1109/MED59994.2023.10185686\",\"DOIUrl\":null,\"url\":null,\"abstract\":\"A good cyber risk assessment is nowadays a matter of paramount importance for industrial systems and critical infrastructures. In a radical change and continuous development scenario such as that represented by Industry 4.0 plants, it is no longer sufficient to consider only static risks relating to the analysis of past data, but there is a need for a risk assessment that takes into account risks arising from emergent threats. In this paper, we propose a novel methodology for dynamic risk assessment that takes into account both the known values related to the static components of the system and the risks related to the emergence of new threats that have not yet been verified but are plausible according to experts. To achieve this, as part of the national “DRIVERS” project, an analysis of the most significant cyber-security factors was conducted to classify them in terms of relevance, considering both risk acceleration and risk mitigation aspects. This assessment is carried out by means of the multi-criteria decision support technique Analytic Hierarchy Process (AHP), performed by dividing the threat into a hierarchical structure.\",\"PeriodicalId\":270226,\"journal\":{\"name\":\"2023 31st Mediterranean Conference on Control and Automation (MED)\",\"volume\":\"163 1\",\"pages\":\"0\"},\"PeriodicalIF\":0.0000,\"publicationDate\":\"2023-06-26\",\"publicationTypes\":\"Journal Article\",\"fieldsOfStudy\":null,\"isOpenAccess\":false,\"openAccessPdf\":\"\",\"citationCount\":\"0\",\"resultStr\":null,\"platform\":\"Semanticscholar\",\"paperid\":null,\"PeriodicalName\":\"2023 31st Mediterranean Conference on Control and Automation (MED)\",\"FirstCategoryId\":\"1085\",\"ListUrlMain\":\"https://doi.org/10.1109/MED59994.2023.10185686\",\"RegionNum\":0,\"RegionCategory\":null,\"ArticlePicture\":[],\"TitleCN\":null,\"AbstractTextCN\":null,\"PMCID\":null,\"EPubDate\":\"\",\"PubModel\":\"\",\"JCR\":\"\",\"JCRName\":\"\",\"Score\":null,\"Total\":0}","platform":"Semanticscholar","paperid":null,"PeriodicalName":"2023 31st Mediterranean Conference on Control and Automation (MED)","FirstCategoryId":"1085","ListUrlMain":"https://doi.org/10.1109/MED59994.2023.10185686","RegionNum":0,"RegionCategory":null,"ArticlePicture":[],"TitleCN":null,"AbstractTextCN":null,"PMCID":null,"EPubDate":"","PubModel":"","JCR":"","JCRName":"","Score":null,"Total":0}
DRIVERS: A platform for dynamic risk assessment of emergent cyber threats for industrial control systems
A good cyber risk assessment is nowadays a matter of paramount importance for industrial systems and critical infrastructures. In a radical change and continuous development scenario such as that represented by Industry 4.0 plants, it is no longer sufficient to consider only static risks relating to the analysis of past data, but there is a need for a risk assessment that takes into account risks arising from emergent threats. In this paper, we propose a novel methodology for dynamic risk assessment that takes into account both the known values related to the static components of the system and the risks related to the emergence of new threats that have not yet been verified but are plausible according to experts. To achieve this, as part of the national “DRIVERS” project, an analysis of the most significant cyber-security factors was conducted to classify them in terms of relevance, considering both risk acceleration and risk mitigation aspects. This assessment is carried out by means of the multi-criteria decision support technique Analytic Hierarchy Process (AHP), performed by dividing the threat into a hierarchical structure.
求助内容:
应助结果提醒方式:
京公网安备 11010802042870号
