TY - GEN
T1 - A model-based approach to security analysis for cyber-physical systems
AU - Bakirtzis, Georgios
AU - Carter, Bryan T.
AU - Elks, Carl R.
AU - Fleming, Cody H.
N1 - Publisher Copyright:
© 2018 IEEE.
PY - 2018/5/30
Y1 - 2018/5/30
N2 - Evaluating the security of cyber-physical systems throughout their life cycle is necessary to assure that they can be deployed and operated in safety-critical applications, such as infrastructure, military, and transportation. Most safety and security decisions that can have major effects on mitigation strategy options after deployment are made early in the system's life cycle. To allow for a cyber-vulnerability analysis before deployment, a sufficient well-formed model has to be constructed. To construct such a model we produce a taxonomy of attributes; that is, a generalized schema for system attributes. This schema captures the necessary specificity that characterizes a possible real system and can also map to the attack vector space associated with the model's attributes. In this way, we can match possible attack vectors and provide architectural mitigation at the design phase. We present a model of a flight control system encoded in the Systems Modeling Language, commonly known as SysML, but also show agnosticism with respect to the modeling language or tool used.
AB - Evaluating the security of cyber-physical systems throughout their life cycle is necessary to assure that they can be deployed and operated in safety-critical applications, such as infrastructure, military, and transportation. Most safety and security decisions that can have major effects on mitigation strategy options after deployment are made early in the system's life cycle. To allow for a cyber-vulnerability analysis before deployment, a sufficient well-formed model has to be constructed. To construct such a model we produce a taxonomy of attributes; that is, a generalized schema for system attributes. This schema captures the necessary specificity that characterizes a possible real system and can also map to the attack vector space associated with the model's attributes. In this way, we can match possible attack vectors and provide architectural mitigation at the design phase. We present a model of a flight control system encoded in the Systems Modeling Language, commonly known as SysML, but also show agnosticism with respect to the modeling language or tool used.
UR - https://www.scopus.com/pages/publications/85048872121
U2 - 10.1109/SYSCON.2018.8369518
DO - 10.1109/SYSCON.2018.8369518
M3 - Conference contribution
AN - SCOPUS:85048872121
T3 - 12th Annual IEEE International Systems Conference, SysCon 2018 - Proceedings
SP - 1
EP - 8
BT - 12th Annual IEEE International Systems Conference, SysCon 2018 - Proceedings
PB - Institute of Electrical and Electronics Engineers Inc.
T2 - 12th Annual IEEE International Systems Conference, SysCon 2018
Y2 - 24 April 2018 through 26 April 2018
ER -