Integrated Security Framework
dc.contributor.author | Gao, Yuan | |
dc.contributor.author | Fischer, Robert | |
dc.contributor.author | Seibt, Simon | |
dc.contributor.author | Parekh, Mithil | |
dc.contributor.author | Li, Jianghai | |
dc.contributor.editor | Eibl, Maximilian | |
dc.contributor.editor | Gaedke, Martin | |
dc.date.accessioned | 2017-08-28T23:49:38Z | |
dc.date.available | 2017-08-28T23:49:38Z | |
dc.date.issued | 2017 | |
dc.description.abstract | The increasing cyber threats require quick action from security experts to protect their industrial automation control system (IACS). For fulfilling the requirement, we propose to divided the classic cyber security analysis scope into three separated, yet interconnected domains: Threat, System and Security. Thus different groups of security professionals can work independently, and are not required to have the knowledge about the full scope. In addition, we proposed an asset-centric system architecture model to enable the modeling and simulation of attacks according to publicly known threats and vulnerabilities. Analysis based on the generated attack/defense trees can assist to manage and continuously monitor the deployed security controls. The proposed approach with tool supports reduces the workload of security experts as well as the incidents response team (IRT) towards an adaptive defense manner. | en |
dc.identifier.doi | 10.18420/in2017_99 | |
dc.identifier.isbn | 978-3-88579-669-5 | |
dc.identifier.pissn | 1617-5468 | |
dc.language.iso | en | |
dc.publisher | Gesellschaft für Informatik, Bonn | |
dc.relation.ispartof | INFORMATIK 2017 | |
dc.relation.ispartofseries | Lecture Notes in Informatics (LNI) - Proceedings, Volume P-275 | |
dc.subject | threat model | |
dc.subject | asset management | |
dc.subject | attack/defense tree | |
dc.subject | adaptive defense | |
dc.title | Integrated Security Framework | en |
dc.title.subtitle | Towards a Holistic Approach for Analysis, Simulation and Management of System Security Features | en |
gi.citation.endPage | 972 | |
gi.citation.startPage | 961 | |
gi.conference.date | 25.-29. September 2017 | |
gi.conference.location | Chemnitz | |
gi.conference.sessiontitle | 2nd GI/ACM Industry4.0 Security Standardisation Workshop on Industrial Automation and Control Systems (IACS) |
Dateien
Originalbündel
1 - 1 von 1