An Indicators-of-Risk Library for Industrial Network Security
Adaros-Boye, Carolina and Kearney, Paul and Josephs, Mark and Ulmer, Hans (2021) An Indicators-of-Risk Library for Industrial Network Security. In: International Workshop on SecRS: Secure and resilient smart manufacturing environments (SecRS), ARES 2021 Virtual Conference.
Preview |
Text
An Indicators-of-Risk Library for Industrial Network Security_C.Adaros-Boye et al (2021).pdf - Accepted Version Download (934kB) |
Abstract
This paper introduces an “Indicator of Risk (IoR) Library" that leverages the MITRE ATT&CK for Industrial Control Systems (ICS) knowledge base to support continuous risk monitoring. This allows also making use of variables that are already being monitored to analyse risks in a continuous basis. IoRs broaden the concept of Indicators of Compromise by combining detection strategies with probabilistic inference as a tool for quantifying cyber-security risks. The latest version of the Library has 95 IoRs and has been reviewed by professionals from three major companies and cross-referenced against detection use-cases implemented by other researchers to validate its potential to identify variables for monitoring cyber-risks in ICS.
| Item Type: | Conference or Workshop Item (Paper) |
|---|---|
| Identification Number: | 10.1145/3465481.3470023 |
| Dates: | Date Event 17 August 2021 Published 7 June 2021 Accepted |
| Subjects: | CAH11 - computing > CAH11-01 - computing > CAH11-01-01 - computer science |
| Divisions: | Faculty of Computing, Engineering and the Built Environment > College of Computing |
| Depositing User: | Carolina Adaros Boye |
| Date Deposited: | 13 Sep 2021 09:07 |
| Last Modified: | 22 Mar 2023 12:00 |
| URI: | https://www.open-access.bcu.ac.uk/id/eprint/12014 |
Actions (login required)
 |
View Item |
Tools
Tools
