An Indicators-of-Risk Library for Industrial Network Security

Adaros-Boye, Carolina and Kearney, Paul and Josephs, Mark and Ulmer, Hans (2021) An Indicators-of-Risk Library for Industrial Network Security. In: International Workshop on SecRS: Secure and resilient smart manufacturing environments (SecRS), ARES 2021 Virtual Conference.

An Indicators-of-Risk Library for Industrial Network Security_C.Adaros-Boye et al (2021).pdf - Accepted Version

Download (934kB)


This paper introduces an “Indicator of Risk (IoR) Library" that leverages the MITRE ATT&CK for Industrial Control Systems (ICS) knowledge base to support continuous risk monitoring. This allows also making use of variables that are already being monitored to analyse risks in a continuous basis. IoRs broaden the concept of Indicators of Compromise by combining detection strategies with probabilistic inference as a tool for quantifying cyber-security risks. The latest version of the Library has 95 IoRs and has been reviewed by professionals from three major companies and cross-referenced against detection use-cases implemented by other researchers to validate its potential to identify variables for monitoring cyber-risks in ICS.

Item Type: Conference or Workshop Item (Paper)
Identification Number:
17 August 2021Published
7 June 2021Accepted
Subjects: CAH11 - computing > CAH11-01 - computing > CAH11-01-01 - computer science
Divisions: Faculty of Computing, Engineering and the Built Environment > School of Computing and Digital Technology
Depositing User: Carolina Adaros Boye
Date Deposited: 13 Sep 2021 09:07
Last Modified: 22 Mar 2023 12:00

Actions (login required)

View Item View Item


In this section...