An Indicators-of-Risk Library for Industrial Network Security

Adaros-Boye, Carolina and Kearney, Paul and Josephs, Mark and Ulmer, Hans (2021) An Indicators-of-Risk Library for Industrial Network Security. In: International Workshop on SecRS: Secure and resilient smart manufacturing environments (SecRS), ARES 2021 Virtual Conference.

[img]
Preview
Text
An Indicators-of-Risk Library for Industrial Network Security_C.Adaros-Boye et al (2021).pdf - Accepted Version

Download (934kB)

Abstract

This paper introduces an “Indicator of Risk (IoR) Library" that leverages the MITRE ATT&CK for Industrial Control Systems (ICS) knowledge base to support continuous risk monitoring. This allows also making use of variables that are already being monitored to analyse risks in a continuous basis. IoRs broaden the concept of Indicators of Compromise by combining detection strategies with probabilistic inference as a tool for quantifying cyber-security risks. The latest version of the Library has 95 IoRs and has been reviewed by professionals from three major companies and cross-referenced against detection use-cases implemented by other researchers to validate its potential to identify variables for monitoring cyber-risks in ICS.

Item Type: Conference or Workshop Item (Paper)
Identification Number: https://doi.org/10.1145/3465481.3470023
Date: 17 August 2021
Subjects: CAH11 - computing > CAH11-01 - computing > CAH11-01-01 - computer science
Divisions: Faculty of Computing, Engineering and the Built Environment > School of Computing and Digital Technology > Cyber Security
Depositing User: Carolina Adaros Boye
Date Deposited: 13 Sep 2021 09:07
Last Modified: 13 Sep 2021 09:13
URI: http://www.open-access.bcu.ac.uk/id/eprint/12014

Actions (login required)

View Item View Item

Research

In this section...