A security metric for assessing the security level of critical infrastructures

Francesco Delli Priscoli; Vincenzo Suraci; Roberto Germanà; Alessandro Giuseppi; Andrea Tortorelli; Andrea Fiaschetti

doi:10.1504/ijccbs.2020.10030622

Anomaly Detection Trusted Hardware Sensors for Critical Infrastructure Legacy Devices

Sensors ◽

10.3390/s20113092 ◽

2020 ◽

Vol 20 (11) ◽

pp. 3092 ◽

Cited By ~ 1

Author(s):

Apostolos P. Fournaris ◽

Charis Dimopoulos ◽

Konstantinos Lampropoulos ◽

Odysseas Koufopavlou

Keyword(s):

Anomaly Detection ◽

Case Studies ◽

Power Plants ◽

Critical Infrastructure ◽

Test Site ◽

Information Collection ◽

Critical Infrastructures ◽

Security Level ◽

Protection Mechanisms ◽

Evaluation Board

Critical infrastructures and associated real time Informational systems need some security protection mechanisms that will be able to detect and respond to possible attacks. For this reason, Anomaly Detection Systems (ADS), as part of a Security Information and Event Management (SIEM) system, are needed for constantly monitoring and identifying potential threats inside an Information Technology (IT) system. Typically, ADS collect information from various sources within a CI system using security sensors or agents and correlate that information so as to identify anomaly events. Such sensors though in a CI setting (factories, power plants, remote locations) may be placed in open areas and left unattended, thus becoming targets themselves of security attacks. They can be tampering and malicious manipulated so that they provide false data that may lead an ADS or SIEM system to falsely comprehend the CI current security status. In this paper, we describe existing approaches on security monitoring in critical infrastructures and focus on how to collect security sensor–agent information in a secure and trusted way. We then introduce the concept of hardware assisted security sensor information collection that improves the level of trust (by hardware means) and also increases the responsiveness of the sensor. Thus, we propose a Hardware Security Token (HST) that when connected to a CI host, it acts as a secure anchor for security agent information collection. We describe the HST functionality, its association with a host device, its expected role and its log monitoring mechanism. We also provide information on how security can be established between the host device and the HST. Then, we introduce and describe the necessary host components that need to be established in order to guarantee a high security level and correct HST functionality. We also provide a realization–implementation of the HST overall concept in a FPGA SoC evaluation board and describe how the HST implementation can be controlled. In addition, in the paper, two case studies where the HST has been used in practice and its functionality have been validated (one case study on a real critical infrastructure test site and another where a critical industrial infrastructure was emulated in our lab) are described. Finally, results taken from these two case studies are presented, showing actual measurements for the in-field HST usage.

Download Full-text

THE ISSUE OF INFORMATION TECHNOLOGIES WITHIN CRITICAL INFRASTRUCTURES

STRATEGIES XXI - Command and Staff College ◽

10.53477/2668-2028-21-48 ◽

2021 ◽

Vol 17 (1) ◽

pp. 371-376

Author(s):

Alexandru-Cristian SAMOILĂ

Keyword(s):

Information Technologies ◽

Critical Infrastructures ◽

Security Level ◽

Effective Solution ◽

Process Automation ◽

Process Data ◽

Private Companies ◽

Whole Process ◽

Types Of Information

Abstract: Taking into account the need for computerisation and process automation within critical infrastructures, a whole process of choosing the most appropriate software technologies is born, both in terms of security, but also in terms of costs and development opportunities. This problem is encountered by all states, but also by private companies, has favoured the creation of an environment conducive to the development of computing technologies in three directions, namely: in-house software, open-source technologies and proprietary technologies. The current challenge is to find medium and long-term solutions for the rapid interconnection or redesign of these three types of information technology in order to process data from government systems, in order to perform complex analyses that can meet current needs, keeping in -an equable balance of costs and security level and identifying the most effective solution.

Download Full-text

Anomaly Detection Trusted Hardware Sensors for Critical Infrastructure Legacy Devices

10.20944/preprints202002.0241.v1 ◽

2020 ◽

Author(s):

Apostolos P. Fournaris ◽

Charalambos Dimopoulos ◽

Konstantinos Lampropoulos ◽

Odysseas Koufopavlou

Keyword(s):

Anomaly Detection ◽

Power Plants ◽

Critical Infrastructure ◽

Information Collection ◽

Critical Infrastructures ◽

Security Level ◽

Trusted Hardware ◽

Protection Mechanisms ◽

Evaluation Board ◽

Security Agent

Critical Infrastructures and associated real time Informational systems need some security protection mechanisms that will be able to detect and respond to possible attacks. For this reason, Anomaly Detection Systems (ADS), as part of a Security Information and Event Management (SIEM) system, are needed for constantly monitoring and identifying potential threats inside an Information Technology (IT) System. Typically, ADS collect information from various sources within a CI system using security sensors or agents and correlate those information so as to identify anomaly events. Such sensors though in a CI setting (factories, power plants, remote locations) may be placed in open areas and left unattended thus becoming targets themselves of security attacks. They can be tampering and malicious manipulated so that they provide false data that may lead an ADS or SIEM system to falsely comprehend the CI current security status. In this paper, we describe existing approaches on security monitoring in critical infrastructures and focus on how to collect security sensor - agent information in a secure and trusted way. We then introduce the concept of hardware assisted security sensor information collection that improve the level if trust (by hardware means) and also increase the responsiveness of the sensor. Thus, we propose a Hardware Security Token (HST) that when connected to a CI Host, it acts as a secure anchor for security agent information collection. We describe the HST functionality, its association with a host device, its expected role and its log monitoring mechanism. We also provide information on how security can be established between the Host device and the HST.Then, we introduce and describe the necessary Host components that need to be established in order to guarantee a high security level and correct HST functionality. We, also provide a realization-implementation of the HST overall concept in a FPGA SoC evaluation board and describe how the HST implementation can controlled. Finally, we provide indicative use case scenarios of how the HST can be used in practice to provide a variety of different security services beyond acting as a secure ADS sensor.

Download Full-text

A security metric for assessing the security level of critical infrastructures

International Journal of Critical Computer-Based Systems ◽

10.1504/ijccbs.2020.108685 ◽

2020 ◽

Vol 10 (1) ◽

pp. 74

Author(s):

Andrea Tortorelli ◽

Andrea Fiaschetti ◽

Alessandro Giuseppi ◽

Vincenzo Suraci ◽

Roberto Germanà ◽

...

Keyword(s):

Critical Infrastructures ◽

Security Level

Download Full-text

Length of Incarceration and Security Level: Effects on Inmate Sexuality

PsycEXTRA Dataset ◽

10.1037/e346792004-001 ◽

2003 ◽

Author(s):

J. Garland

Keyword(s):

Security Level

Download Full-text

VALUE-BASED APPROACH TO THE DIAGNOSIS OF THE ENTERPRISE’S ECONOMIC SECURITY LEVEL BASED ON THE EVA MODEL

Economy and Society ◽

10.32782/2524-0072/2019-20-24 ◽

2019 ◽

Author(s):

Natalia Gordiyenko ◽

Tetiana Gordiyenko ◽

Tetiana Azarova

Keyword(s):

Economic Security ◽

Security Level

Download Full-text

ASSESSMENT OF THE SOCIAL SECURITY LEVEL IN THE CONTEXT OF CORONAVIRUS CONTAGION (COVID-19)

Scientific Horizons ◽

10.33249/2663-2144-2020-91-6-7-18 ◽

2020 ◽

Vol 91 (6) ◽

pp. 7-18

Author(s):

О. Skydan ◽

◽

О. Nykolyuk ◽

P. Pyvovar ◽

P. Topolnytskyi ◽

...

Keyword(s):

Social Security ◽

Security Level ◽

The Social

Download Full-text

A Chaos-Based Approach for Correcting the Security Level of a Block Cipher Algorithm

International Review on Computers and Software (IRECOS) ◽

10.15866/irecos.v11i2.8356 ◽

2016 ◽

Vol 11 (2) ◽

pp. 92

Author(s):

Fatma Zayen Sbiaa ◽

Medien Zeghid ◽

Sonia Kotel ◽

Rached Tourki ◽

Mohsen Machhout ◽

...

Keyword(s):

Block Cipher ◽

Security Level

Download Full-text

Measures of information security level protection on sensing layer in Internet of things

Advanced Computer Control ◽

10.2495/icacc130401 ◽

2014 ◽

Author(s):

Zhao Jia ◽

Zhang Qiang ◽

Gao Bo

Keyword(s):

Information Security ◽

Internet Of Things ◽

Security Level

Download Full-text

COMPLEX ASSESSMENT OF SECURITY LEVEL AT AN INDUSTRIAL FACILITY

Fire and Emergencies prevention elimination ◽

10.25257/fe.2019.2.5-8 ◽

2019 ◽

pp. 5-8

Author(s):

Anatoly Chlenov ◽

◽

Tatyana Butcinskaya ◽

Nikolai Ryabtsev ◽

◽

...

Keyword(s):

Security Level ◽

Industrial Facility

Download Full-text