Decomposition and sequential-AND analysis of known cyber-attacks on critical infrastructure control systems. Issue 1 (15th December 2020)
- Record Type:
- Journal Article
- Title:
- Decomposition and sequential-AND analysis of known cyber-attacks on critical infrastructure control systems. Issue 1 (15th December 2020)
- Main Title:
- Decomposition and sequential-AND analysis of known cyber-attacks on critical infrastructure control systems
- Authors:
- Maynard, Peter
McLaughlin, Kieran
Sezer, Sakir - Abstract:
- Abstract: We perform a detailed survey and analysis of the most significant attacks, which have targeted industrial control systems over the past decade, based on detailed incident reports from scientific and non-traditional resources. This work is the first that considers together a comprehensive set of real-world cyber-attacks with the purpose of deriving a set of common features focusing particularly on the process control network. Each attack is decomposed to provide a comprehensive overview followed by a discussion of the commonalities identified across attacks. To achieve this, each attack is modelled using Attack Trees with Sequential AND, and mapped to the industrial control system Cyber Kill Chain. We focus on the methods of intrusion rather than the identification of actors. This article can be read in two parts: first, an analysis of each attack, and secondly a discussion of the derived commonalities. The resulting commonalities can be used to develop improved detection strategies to detect modern adversarial techniques and tactics.
- Is Part Of:
- Journal of cybersecurity. Volume 6:Issue 1(2020)
- Journal:
- Journal of cybersecurity
- Issue:
- Volume 6:Issue 1(2020)
- Issue Display:
- Volume 6, Issue 1 (2020)
- Year:
- 2020
- Volume:
- 6
- Issue:
- 1
- Issue Sort Value:
- 2020-0006-0001-0000
- Page Start:
- Page End:
- Publication Date:
- 2020-12-15
- Subjects:
- Networking -- protocols -- intrusions -- attack trees -- ICS -- Scada
Computer security -- Periodicals
Computer networks -- Security measures -- Periodicals
005.805 - Journal URLs:
- http://cybersecurity.oxfordjournals.org/ ↗
http://www.oxfordjournals.org/ ↗ - DOI:
- 10.1093/cybsec/tyaa020 ↗
- Languages:
- English
- ISSNs:
- 2057-2093
- Deposit Type:
- Legaldeposit
- View Content:
- Available online (eLD content is only available in our Reading Rooms) ↗
- Physical Locations:
- British Library DSC - BLDSS-3PM
British Library HMNTS - ELD Digital store - Ingest File:
- 15238.xml