{"title":"基于随机博弈网的SCADA系统网络安全建模","authors":"A. E. Bouchti, Tarik Nahhal","doi":"10.1109/FGCT.2016.7605070","DOIUrl":null,"url":null,"abstract":"The security of SCADA (Supervisory Control and Data Acquisition) and realtime systems represents a significant challenge in today's world. The research in cyber-attack activities have gained immense emphasis. One of such research efforts is modeling of cyber-attacks. In this context, several modeling approaches have been developed, such as approaches based on attack trees (AT). In this paper, we propose Colored Petri Net (SGN) modeling approach by extending the attack trees with new modeling constructs and analysis approaches. SGN based attack model is flexible enough to model Internet intrusion, including the static and dynamic features of the intrusion. The process and rules of building SGN based attack model from AT are also presented. In order to evaluate the risk of intrusion, some cost elements are added to SGN based attack modeling. We show how attack trees can be converted and analyzed in SGN. Finally, we provide a case study that illustrates the SGN approach.","PeriodicalId":378077,"journal":{"name":"2016 Fifth International Conference on Future Generation Communication Technologies (FGCT)","volume":"1 1","pages":"0"},"PeriodicalIF":0.0000,"publicationDate":"2016-08-01","publicationTypes":"Journal Article","fieldsOfStudy":null,"isOpenAccess":false,"openAccessPdf":"","citationCount":"2","resultStr":"{\"title\":\"Cyber security modeling for SCADA systems using stochastic game nets approach\",\"authors\":\"A. E. Bouchti, Tarik Nahhal\",\"doi\":\"10.1109/FGCT.2016.7605070\",\"DOIUrl\":null,\"url\":null,\"abstract\":\"The security of SCADA (Supervisory Control and Data Acquisition) and realtime systems represents a significant challenge in today's world. The research in cyber-attack activities have gained immense emphasis. One of such research efforts is modeling of cyber-attacks. In this context, several modeling approaches have been developed, such as approaches based on attack trees (AT). In this paper, we propose Colored Petri Net (SGN) modeling approach by extending the attack trees with new modeling constructs and analysis approaches. SGN based attack model is flexible enough to model Internet intrusion, including the static and dynamic features of the intrusion. The process and rules of building SGN based attack model from AT are also presented. In order to evaluate the risk of intrusion, some cost elements are added to SGN based attack modeling. We show how attack trees can be converted and analyzed in SGN. Finally, we provide a case study that illustrates the SGN approach.\",\"PeriodicalId\":378077,\"journal\":{\"name\":\"2016 Fifth International Conference on Future Generation Communication Technologies (FGCT)\",\"volume\":\"1 1\",\"pages\":\"0\"},\"PeriodicalIF\":0.0000,\"publicationDate\":\"2016-08-01\",\"publicationTypes\":\"Journal Article\",\"fieldsOfStudy\":null,\"isOpenAccess\":false,\"openAccessPdf\":\"\",\"citationCount\":\"2\",\"resultStr\":null,\"platform\":\"Semanticscholar\",\"paperid\":null,\"PeriodicalName\":\"2016 Fifth International Conference on Future Generation Communication Technologies (FGCT)\",\"FirstCategoryId\":\"1085\",\"ListUrlMain\":\"https://doi.org/10.1109/FGCT.2016.7605070\",\"RegionNum\":0,\"RegionCategory\":null,\"ArticlePicture\":[],\"TitleCN\":null,\"AbstractTextCN\":null,\"PMCID\":null,\"EPubDate\":\"\",\"PubModel\":\"\",\"JCR\":\"\",\"JCRName\":\"\",\"Score\":null,\"Total\":0}","platform":"Semanticscholar","paperid":null,"PeriodicalName":"2016 Fifth International Conference on Future Generation Communication Technologies (FGCT)","FirstCategoryId":"1085","ListUrlMain":"https://doi.org/10.1109/FGCT.2016.7605070","RegionNum":0,"RegionCategory":null,"ArticlePicture":[],"TitleCN":null,"AbstractTextCN":null,"PMCID":null,"EPubDate":"","PubModel":"","JCR":"","JCRName":"","Score":null,"Total":0}
Cyber security modeling for SCADA systems using stochastic game nets approach
The security of SCADA (Supervisory Control and Data Acquisition) and realtime systems represents a significant challenge in today's world. The research in cyber-attack activities have gained immense emphasis. One of such research efforts is modeling of cyber-attacks. In this context, several modeling approaches have been developed, such as approaches based on attack trees (AT). In this paper, we propose Colored Petri Net (SGN) modeling approach by extending the attack trees with new modeling constructs and analysis approaches. SGN based attack model is flexible enough to model Internet intrusion, including the static and dynamic features of the intrusion. The process and rules of building SGN based attack model from AT are also presented. In order to evaluate the risk of intrusion, some cost elements are added to SGN based attack modeling. We show how attack trees can be converted and analyzed in SGN. Finally, we provide a case study that illustrates the SGN approach.
求助内容:
应助结果提醒方式:
京公网安备 11010802042870号
