Using integrated system theory approach to assess security for SCADA systems cyber security for critical infrastructures: A pilot study

2014 ◽  
Author(s):  
Suhaila Ismail ◽  
Elena Sitnikova ◽  
Jill Slay
Keyword(s):  
System Theory ◽  
Pilot Study ◽  
Cyber Security ◽  
Integrated System ◽  
Critical Infrastructures ◽  
Theory Approach ◽  
Scada Systems

SCADA Systems Cyber Security for Critical Infrastructures

2020 ◽  
pp. 446-464
Author(s):  
Suhaila Ismail ◽  
Elena Sitnikova ◽  
Jill Slay
Keyword(s):  
Decision Making ◽  
Data Acquisition ◽  
Case Studies ◽  
Cyber Security ◽  
Cyber Attacks ◽  
Critical Infrastructures ◽  
Physical Injury ◽  
The Public ◽  
Psychological Theories ◽  
Scada Systems

Past cyber-attacks on Supervisory Control and Data Acquisition (SCADA) Systems for Critical infrastructures have left these systems compromised and caused financial and economic problems. Deliberate attacks have resulted in denial of services and physical injury to the public in certain cases. This study explores the past attacks on SCADA Systems by examining nine case studies across multiple utility sectors including transport, energy and water and sewage sector. These case studies will be further analysed according to the cyber-terrorist decision-making theories including strategic, organisational and psychological theories based on McCormick (2000). Next, this study will look into cyber-terrorist capabilities in conducting attacks according to Nelson's (1999) approach that includes simple-unstructured, advance-structured and complex-coordinated capabilities. The results of this study will form the basis of a guideline that organisations can use so that they are better prepared in identifying potential future cybersecurity attacks on their SCADA systems.

SCADA Systems Cyber Security for Critical Infrastructures

2016 ◽  
Vol 6 (3) ◽  
pp. 79-95
Author(s):  
Suhaila Ismail ◽  
Elena Sitnikova ◽  
Jill Slay
Keyword(s):  
Case Studies ◽  
Supervisory Control ◽  
Cyber Security ◽  
Cyber Attacks ◽  
Critical Infrastructures ◽  
The Public ◽  
Economic Problems ◽  
The Past ◽  
Psychological Theories ◽  
Scada Systems

Past cyber-attacks on Supervisory Control and Data Acquisition (SCADA) Systems for Critical infrastructures have left these systems compromised and caused financial and economic problems. Deliberate attacks have resulted in denial of services and physical injury to the public in certain cases. This study explores the past attacks on SCADA Systems by examining nine case studies across multiple utility sectors including transport, energy and water and sewage sector. These case studies will be further analysed according to the cyber-terrorist decision-making theories including strategic, organisational and psychological theories based on McCormick (2000). Next, this study will look into cyber-terrorist capabilities in conducting attacks according to Nelson's (1999) approach that includes simple-unstructured, advance-structured and complex-coordinated capabilities. The results of this study will form the basis of a guideline that organisations can use so that they are better prepared in identifying potential future cybersecurity attacks on their SCADA systems.

scholarly journals Autonomic Computing Architecture for SCADA Cyber Security

2017 ◽  
Vol 11 (4) ◽  
pp. 66-79 ◽  
Author(s):  
Sajid Nazir ◽  
Shushma Patel ◽  
Dilip Patel
Keyword(s):  
Cyber Security ◽  
Autonomic Computing ◽  
Distribution Networks ◽  
Critical Infrastructures ◽  
Computing Systems ◽  
Intelligent Computing ◽  
Autonomous Operation ◽  
Computing Paradigm ◽  
Scada System ◽  
Scada Systems

Autonomic computing paradigm is based on intelligent computing systems that can autonomously take actions under given conditions. These technologies have been successfully applied to many problem domains requiring autonomous operation. One such area of national interest is SCADA systems that monitor critical infrastructures such as transportation networks, large manufacturing, business and health facilities, power generation, and distribution networks. The SCADA systems have evolved into a complex, highly connected system requiring high availability. On the other hand, cyber threats to these infrastructures have increasingly become more sophisticated, extensive and numerous. This highlights the need for newer measures that can proactively and autonomously react to an impending threat. This article proposes a SCADA system framework to leverage autonomic computing elements in the architecture for coping with the current challenges and threats of cyber security.

Cyber Security of Water SCADA Systems—Part II: Attack Detection Using Enhanced Hydrodynamic Models

2013 ◽  
Vol 21 (5) ◽  
pp. 1679-1693 ◽  
Author(s):  
Saurabh Amin ◽  
Xavier Litrico ◽  
S. Shankar Sastry ◽  
Alexandre M. Bayen
Keyword(s):  
Cyber Security ◽  
Attack Detection ◽  
Hydrodynamic Models ◽  
Scada Systems

scholarly journals Analysing IoT Cyber Risk for Estimating IoT Cyber Insurance

2019 ◽  
Author(s):  
Petar Radanliev ◽  
Rafael Mantilla Montalvo ◽  
Razvan Nicolescu ◽  
Michael Huth ◽  
Stacy Cannady ◽  
...  
Keyword(s):  
Impact Assessment ◽  
Cyber Security ◽  
Industry 4.0 ◽  
Assessment Model ◽  
Theory Approach ◽  
Academic Literature ◽  
Cyber Insurance ◽  
Cyber Risk ◽  
Quantitative Impact ◽  
Grounded Theory Approach

This paper is focused on mapping the current evolution of Internet of Things (IoT) and its associated cyber risks for the Industry 4.0 (I4.0) sector. We report the results of a qualitative empirical study that correlates academic literature with 14 - I4.0 frameworks and initiatives. We apply the grounded theory approach to synthesise the findings from our literature review, to compare the cyber security frameworks and cyber security quantitative impact assessment models, with the world leading I4.0 technological trends. From the findings, we build a new impact assessment model of IoT cyber risk in Industry 4.0. We therefore advance the efforts of integrating standards and governance into Industry 4.0 and offer a better understanding of economics impact assessment models for I4.0.

scholarly journals Cyber Attacks on Critical Infrastructure

2016 ◽  
pp. 448-465
Author(s):  
Ana Kovacevic ◽  
Dragana Nikolic
Keyword(s):  
Control Systems ◽  
Cyber Security ◽  
Critical Infrastructure ◽  
Cyber Attacks ◽  
Cyber Attack ◽  
Future Directions ◽  
Infrastructure Systems ◽  
Cyber Threats ◽  
Scada Systems ◽  
Insight Into

We are facing the expansion of cyber incidents, and they are becoming more severe. This results in the necessity to improve security, especially in the vulnerable field of critical infrastructure. One of the problems in the security of critical infrastructures is the level of awareness related to the effect of cyberattacks. The threat to critical infrastructure is real, so it is necessary to be aware of it and anticipate, predict, and prepare against a cyber attack. The main reason for the escalation of cyberattacks in the field of Critical Infrastructure (CI) may be that most control systems used for CI do not utilise propriety protocols and software anymore; they instead utilise standard solutions. As a result, critical infrastructure systems are more than ever before becoming vulnerable and exposed to cyber threats. It is important to get an insight into what attack types occur, as this may help direct cyber security efforts. In this chapter, the authors present vulnerabilities of SCADA systems against cyber attack, analyse and classify existing cyber attacks, and give future directions to achieve better security of SCADA systems.

scholarly journals Cybersecurity als Unternehmensleitungsaufgabe

2021 ◽  
Keyword(s):  
Cyber Security ◽  
Personal Data ◽  
Third Parties ◽  
Law School ◽  
The Other ◽  
Critical Infrastructures ◽  
Labour Law ◽  
Special Obligations ◽  
The One ◽  
Liability Risks

Cybersecurity is a central challenge for many companies. On the one hand, companies have to protect themselves against cyberattacks; on the other hand, they have special obligations towards third parties and the state in critical infrastructures or when dealing with personal data. These responsibilities converge with company management. This volume examines the duties and liability risks of management in connection with cyber security from the perspective of corporate, constitutional and labour law. The volume is based on a conference of the same name, which took place in cooperation with the Friedrich Naumann Stiftung für die Freiheit on 23 and 24 October 2020 at Bucerius Law School in Hamburg. With contributions by Andreas Beyer, Marc Bittner, Alexander Brüggemeier, Anabel Guntermann, Katrin Haußmann, Dennis-Kenji Kipker, Christoph Benedikt Müller, Isabella Risini, Darius Rostam, Sarah Schmidt-Versteyl and Gerald Spindler.

Sign in / Sign up

Export Citation Format

Share Document