TY - GEN
T1 - Towards adaptive and proactive security assessment for energy delivery systems
AU - Lamp, Josephine
AU - Rubio-Medrano, Carlos E.
AU - Zhao, Ziming
AU - Ahn, Gail Joon
N1 - Publisher Copyright:
© 2017 IEEE.
PY - 2017/10/10
Y1 - 2017/10/10
N2 - Recently, energy delivery systems (EDS) have undergone an intensive modernization process that includes the introduction of dedicated cyber-infrastructures for the purposes of monitoring, control, and optimization of resources. While extremely convenient, the introduction of software-based control over computer networks has also opened the door for the exploitation of non-trivial security vulnerabilities by malicious third-parties. As demonstrated by recent incidents, EDS systems worldwide are vulnerable to sophisticated attacks that include a well-thought out combination of strategies at various levels of abstraction. In such a context, a comprehensive solution supporting automated monitoring and assessment, that can assist security officials in effectively preventing and mitigating such attacks, is highly desired. With this in mind, this paper presents an ongoing effort that takes security requirements obtained from existing documents on guidelines and best practices on EDS, and implements a proof-of-concept framework based on adaptive and customizable software modules that collect and process security-relevant data for assuring the security of EDS.
AB - Recently, energy delivery systems (EDS) have undergone an intensive modernization process that includes the introduction of dedicated cyber-infrastructures for the purposes of monitoring, control, and optimization of resources. While extremely convenient, the introduction of software-based control over computer networks has also opened the door for the exploitation of non-trivial security vulnerabilities by malicious third-parties. As demonstrated by recent incidents, EDS systems worldwide are vulnerable to sophisticated attacks that include a well-thought out combination of strategies at various levels of abstraction. In such a context, a comprehensive solution supporting automated monitoring and assessment, that can assist security officials in effectively preventing and mitigating such attacks, is highly desired. With this in mind, this paper presents an ongoing effort that takes security requirements obtained from existing documents on guidelines and best practices on EDS, and implements a proof-of-concept framework based on adaptive and customizable software modules that collect and process security-relevant data for assuring the security of EDS.
UR - https://www.scopus.com/pages/publications/85034775435
U2 - 10.1109/MSCPES.2017.8064532
DO - 10.1109/MSCPES.2017.8064532
M3 - Conference contribution
AN - SCOPUS:85034775435
T3 - 2017 Workshop on Modeling and Simulation of Cyber-Physical Energy Systems, MSCPES 2017 - Held as part of CPS Week, Proceedings
BT - 2017 Workshop on Modeling and Simulation of Cyber-Physical Energy Systems, MSCPES 2017 - Held as part of CPS Week, Proceedings
PB - Institute of Electrical and Electronics Engineers Inc.
T2 - 2017 Workshop on Modeling and Simulation of Cyber-Physical Energy Systems, MSCPES 2017
Y2 - 21 April 2017
ER -