An Indicators-of-Risk Library for Industrial Network Security
Adaros-Boye, Carolina and Kearney, Paul and Josephs, Mark and Ulmer, Hans (2021) An Indicators-of-Risk Library for Industrial Network Security. In: International Workshop on SecRS: Secure and resilient smart manufacturing environments (SecRS), ARES 2021 Virtual Conference.
|
Text
An Indicators-of-Risk Library for Industrial Network Security_C.Adaros-Boye et al (2021).pdf - Accepted Version Download (934kB) |
Abstract
This paper introduces an “Indicator of Risk (IoR) Library" that leverages the MITRE ATT&CK for Industrial Control Systems (ICS) knowledge base to support continuous risk monitoring. This allows also making use of variables that are already being monitored to analyse risks in a continuous basis. IoRs broaden the concept of Indicators of Compromise by combining detection strategies with probabilistic inference as a tool for quantifying cyber-security risks. The latest version of the Library has 95 IoRs and has been reviewed by professionals from three major companies and cross-referenced against detection use-cases implemented by other researchers to validate its potential to identify variables for monitoring cyber-risks in ICS.
| Item Type: | Conference or Workshop Item (Paper) | ||||||
|---|---|---|---|---|---|---|---|
| Identification Number: | https://doi.org/10.1145/3465481.3470023 | ||||||
| Dates: |
|
||||||
| Subjects: | CAH11 - computing > CAH11-01 - computing > CAH11-01-01 - computer science | ||||||
| Divisions: | Faculty of Computing, Engineering and the Built Environment > School of Computing and Digital Technology | ||||||
| Depositing User: | Carolina Adaros Boye | ||||||
| Date Deposited: | 13 Sep 2021 09:07 | ||||||
| Last Modified: | 22 Mar 2023 12:00 | ||||||
| URI: | https://www.open-access.bcu.ac.uk/id/eprint/12014 |
Actions (login required)
 |
View Item |
Tools
Tools