his.sePublikationer
Ändra sökning
Länk till posten
Permanent länk

Direktlänk
BETA
Publikationer (10 of 19) Visa alla publikationer
Jiang, Y., Jeusfeld, M. A., Atif, Y., Ding, J., Brax, C. & Nero, E. (2018). A Language and Repository for Cyber Security of Smart Grids. In: Selmin Nurcan, Pontus Johnson (Ed.), 2018 IEEE 22nd International Enterprise Distributed Object Computing Conference (EDOC 2018): . Paper presented at 2018 IEEE 22nd International Enterprise Distributed Object Computing Conference (EDOC), Stockholm, Sweden, October 16-19, 2018 (pp. 164-170). Los Alamitos, CA: IEEE
Öppna denna publikation i ny flik eller fönster >>A Language and Repository for Cyber Security of Smart Grids
Visa övriga...
2018 (Engelska)Ingår i: 2018 IEEE 22nd International Enterprise Distributed Object Computing Conference (EDOC 2018) / [ed] Selmin Nurcan, Pontus Johnson, Los Alamitos, CA: IEEE, 2018, s. 164-170Konferensbidrag, Publicerat paper (Refereegranskat)
Abstract [en]

Power grids form the central critical infrastructure in all developed economies. Disruptions of power supply can cause major effects on the economy and the livelihood of citizens. At the same time, power grids are being targeted by sophisticated cyber attacks. To counter these threats, we propose a domain-specific language and a repository to represent power grids and related IT components that control the power grid. We apply our tool to a standard example used in the literature to assess its expressiveness.

Ort, förlag, år, upplaga, sidor
Los Alamitos, CA: IEEE, 2018
Serie
Proceedings (IEEE International Enterprise Distributed Object Computing Conference), ISSN 2325-6354, E-ISSN 2325-6362
Nyckelord
cyber security, enterprise architecture, domain-specific language, taxonomy
Nationell ämneskategori
Data- och informationsvetenskap
Forskningsämne
Distribuerade realtidssystem (DRTS); Informationssystem (IS)
Identifikatorer
urn:nbn:se:his:diva-16403 (URN)10.1109/EDOC.2018.00029 (DOI)2-s2.0-85059076918 (Scopus ID)978-1-5386-4139-2 (ISBN)
Konferens
2018 IEEE 22nd International Enterprise Distributed Object Computing Conference (EDOC), Stockholm, Sweden, October 16-19, 2018
Projekt
EU ISF Project A431.678/2016 ELVIRA
Anmärkning

Funded by EU Internal Security Funds

Tillgänglig från: 2018-11-16 Skapad: 2018-11-16 Senast uppdaterad: 2019-02-08Bibliografiskt granskad
Jiang, Y., Atif, Y. & Ding, J. (2018). Agent Based Testbed Design for Cyber Vulnerability Assessment in Smart-Grids. In: : . Paper presented at CySeP summer school 2018/SWITIS, CySeP, 2018.
Öppna denna publikation i ny flik eller fönster >>Agent Based Testbed Design for Cyber Vulnerability Assessment in Smart-Grids
2018 (Engelska)Konferensbidrag, Poster (med eller utan abstract) (Övrigt vetenskapligt)
Abstract [en]

Smart grid employs Information and Communication Technology (ICT) infrastructure and network connectivity to optimize efficiency and deliver new functionalities. This evolution is associated with an increased risk for cybersecurity threats that may hamper smart grid operations. Power utility providers need tools for assessing risk of prevailing cyberthreats over ICT infrastructures. The need for frameworks to guide the development of these tools is essential to define and reveal vulnerability analysis indicators. We propose a data-driven approach for designing testbeds to allow the simulation of cyberattacks in order to evaluate the vulnerability and the impact of cyber threat attacks. The proposed framework uses data reported from multiple smart grid components at different smart grid architecture layers, including physical, control, and cyber layers. The multi-agent based framework proposed in this paper would analyze the conglomeration of these data reports to assert malicious attacks.

Nationell ämneskategori
Elektroteknik och elektronik
Forskningsämne
INF303 Informationssäkerhet; Distribuerade realtidssystem (DRTS)
Identifikatorer
urn:nbn:se:his:diva-16069 (URN)
Konferens
CySeP summer school 2018/SWITIS, CySeP, 2018
Projekt
ELVIRA (http://www.his.se/en/Research/informatics/Distributed-Real-Time-Systems/Infrastructure-resilience/)
Tillgänglig från: 2018-08-22 Skapad: 2018-08-22 Senast uppdaterad: 2018-11-21Bibliografiskt granskad
Jiang, Y., Ding, J., Atif, Y., Jeusfeld, M., Andler, S., Lindström, B., . . . Haglund, D. (2018). Complex Dependencies Analysis: Technical Description of Complex Dependencies in Critical Infrastructures, i.e. Smart Grids. Work Package 2.1 of the ELVIRA Project. Skövde: University of Skövde
Öppna denna publikation i ny flik eller fönster >>Complex Dependencies Analysis: Technical Description of Complex Dependencies in Critical Infrastructures, i.e. Smart Grids. Work Package 2.1 of the ELVIRA Project
Visa övriga...
2018 (Engelska)Rapport (Övrigt vetenskapligt)
Abstract [en]

This document reports a technical description of ELVIRA project results obtained as part of Work-package 2.1 entitled “Complex Dependencies Analysis”. In this technical report, we review attempts in recent researches where connections are regarded as influencing factors to  IT systems monitoring critical infrastructure, based on which potential dependencies and resulting disturbances are identified and categorized. Each kind of dependence has been discussed based on our own entity based model. Among those dependencies, logical and functional connections have been analysed with more details on modelling and simulation techniques.

Ort, förlag, år, upplaga, sidor
Skövde: University of Skövde, 2018. s. 22
Serie
IIT Technical Reports ; HS-IIT-TR-18-003
Nyckelord
Dependencies, Interdependencies, Modelling and Simulation, Influence Factors
Nationell ämneskategori
Data- och informationsvetenskap Inbäddad systemteknik
Forskningsämne
Distribuerade realtidssystem (DRTS); Informationssystem (IS)
Identifikatorer
urn:nbn:se:his:diva-15114 (URN)
Projekt
ELVIRA
Anmärkning

HS-IIT-TR-18-003 This is a technical report related to the ELVIRA project www.his.se/elvira

Tillgänglig från: 2018-05-02 Skapad: 2018-05-02 Senast uppdaterad: 2019-03-05Bibliografiskt granskad
Atif, Y., Jiang, Y., Jeusfeld, M. A., Ding, J., Lindström, B., Andler, S. F., . . . Lindström, B. (2018). Cyber-threat analysis for Cyber-Physical Systems: Technical report for Package 4, Activity 3 of ELVIRA project. Skövde: University of Skövde
Öppna denna publikation i ny flik eller fönster >>Cyber-threat analysis for Cyber-Physical Systems: Technical report for Package 4, Activity 3 of ELVIRA project
Visa övriga...
2018 (Engelska)Rapport (Övrigt vetenskapligt)
Abstract [en]

Smart grid employs ICT infrastructure and network connectivity to optimize efficiency and deliver new functionalities. This evolu- tion is associated with an increased risk for cybersecurity threats that may hamper smart grid operations. Power utility providers need tools for assessing risk of prevailing cyberthreats over ICT infrastructures. The need for frameworks to guide the develop- ment of these tools is essential to define and reveal vulnerability analysis indicators. We propose a data-driven approach for design- ing testbeds to evaluate the vulnerability of cyberphysical systems against cyberthreats. The proposed framework uses data reported from multiple components of cyberphysical system architecture layers, including physical, control, and cyber layers. At the phys- ical layer, we consider component inventory and related physi- cal flows. At the control level, we consider control data, such as SCADA data flows in industrial and critical infrastructure control systems. Finally, at the cyber layer level, we consider existing secu- rity and monitoring data from cyber-incident event management tools, which are increasingly embedded into the control fabrics of cyberphysical systems.

Ort, förlag, år, upplaga, sidor
Skövde: University of Skövde, 2018. s. 18
Serie
IIT Technical Reports ; HS-IIT-TR-18-004
Nyckelord
vulnerability analysis, cyber-threats, cyberphysical systems, clustering, multiagent systems
Nationell ämneskategori
Data- och informationsvetenskap
Forskningsämne
Distribuerade realtidssystem (DRTS); Informationssystem (IS)
Identifikatorer
urn:nbn:se:his:diva-16092 (URN)
Projekt
This research has been supported in part by the EU ISF Project A431.678/2016 ELVIRA (Threat modeling and resilience of critical infrastructures), coordinated by Polismyndigheten/Sweden
Anmärkning

I publikationen: HS-IIT-18-004

Tillgänglig från: 2018-08-29 Skapad: 2018-08-29 Senast uppdaterad: 2019-02-18Bibliografiskt granskad
Jiang, Y., Atif, Y. & Ding, J. (2018). Data Fusion Framework for Cyber Vulnerability Assessment in Smart Grid.
Öppna denna publikation i ny flik eller fönster >>Data Fusion Framework for Cyber Vulnerability Assessment in Smart Grid
2018 (Engelska)Övrigt (Övrigt vetenskapligt)
Abstract [en]

Smart grid adopts ICT to enhance power-delivery management. However, these advanced technologies also introduce an increasing amount of cyber threats. Cyber threats occur because of vulnerabilities throughout smart-grid layers. Each layer is distinguished by typical data flows. For example, power-data stream flows along the physical layer; command data are pushed to and pulled from sensor-control devices, such as RTUs and PLCs. Vulnerabilities expose these data flows to cyber threat via communication networks, such as local control network, vendor network, corporate network and the wider internet. Thus, these data could be used to analyse vulnerabilities against cyber threats. After data collection, data analysis and modelling techniques would be used for vulnerability assessment.

Nationell ämneskategori
Elektroteknik och elektronik
Forskningsämne
Distribuerade realtidssystem (DRTS); INF303 Informationssäkerhet
Identifikatorer
urn:nbn:se:his:diva-16070 (URN)
Tillgänglig från: 2018-08-22 Skapad: 2018-08-22 Senast uppdaterad: 2018-09-10Bibliografiskt granskad
Atif, Y., Jiang, Y., Lindström, B., Ding, J., Jeusfeld, M., Andler, S., . . . Haglund, D. (2018). Multi-agent Systems for Power Grid Monitoring: Technical report for Package 4.1 of ELVIRA project. Skövde: University of Skövde
Öppna denna publikation i ny flik eller fönster >>Multi-agent Systems for Power Grid Monitoring: Technical report for Package 4.1 of ELVIRA project
Visa övriga...
2018 (Engelska)Rapport (Övrigt vetenskapligt)
Abstract [en]

This document reports a technical description of ELVIRA project results obtained as part of Work- package 4.1 entitled “Multi-agent systems for power Grid monitoring”. ELVIRA project is a collaboration between researchers in School of IT at University of Skövde and Combitech Technical Consulting Company in Sweden, with the aim to design, develop and test a testbed simulator for critical infrastructures cybersecurity. This report outlines intelligent approaches that continuously analyze data flows generated by Supervisory Control And Data Acquisition (SCADA) systems, which monitor contemporary power grid infrastructures. However, cybersecurity threats and security mechanisms cannot be analyzed and tested on actual systems, and thus testbed simulators are necessary to assess vulnerabilities and evaluate the infrastructure resilience against cyberattacks. This report suggests an agent-based model to simulate SCADA- like cyber-components behaviour when facing cyber-infection in order to experiment and test intelligent mitigation mechanisms. 

Ort, förlag, år, upplaga, sidor
Skövde: University of Skövde, 2018. s. 16
Serie
IIT Technical Reports ; HS-IIT-TR-18-002
Nyckelord
Smart grid security, Agent model, Multi-agent system
Nationell ämneskategori
Data- och informationsvetenskap
Forskningsämne
Distribuerade realtidssystem (DRTS); Informationssystem (IS)
Identifikatorer
urn:nbn:se:his:diva-15111 (URN)
Projekt
Elvira project funded by EU Internal Security Fund (ISF) A431.678-2016
Anmärkning

HS-IIT-TR-18-002

Tillgänglig från: 2018-05-02 Skapad: 2018-05-02 Senast uppdaterad: 2019-03-05Bibliografiskt granskad
Jiang, Y., Atif, Y. & Ding, J. (2018). Multi-Level Vulnerability Modeling of Cyber-Physical Systems. In: : . Paper presented at The 23rd Nordic Conference on Secure IT Systems, Oslo, Norway, November 28-30, 2018.
Öppna denna publikation i ny flik eller fönster >>Multi-Level Vulnerability Modeling of Cyber-Physical Systems
2018 (Engelska)Konferensbidrag, Poster (med eller utan abstract) (Refereegranskat)
Abstract [en]

Vulnerability is defined as ”weakness of an asset or control that can be exploited by a threat” according to ISO/IEC 27000:2009, and it is a vital cyber-security issue to protect cyber-physical systems (CPSs) employed in a range of critical infrastructures (CIs). However, how to quantify both individual and system vulnerability are still not clear. In our proposed poster, we suggest a new procedure to evaluate CPS vulnerability. We reveal a vulnerability-tree model to support the evaluation of CPS-wide vulnerability index, driven by a hierarchy of vulnerability-scenarios resulting synchronously or propagated by tandem vulnerabilities throughout CPS architecture, and that could be exploited by threat agents. Multiple vulnerabilities are linked by boolean operations at each level of the tree. Lower-level vulnerabilities in the tree structure can be exploited by threat agents in order to reach parent vulnerabilities with increasing CPS criticality impacts. At the asset-level, we suggest a novel fuzzy-logic based valuation of vulnerability along standard metrics. Both the procedure and fuzzy-based approach are discussed and illustrated through SCADA-based smart power-grid system as a case study in the poster, with our goal to streamline the process of vulnerability computation at both asset and CPS levels.

Nyckelord
Vulnerability Modelling, Cyber-Physical System
Nationell ämneskategori
Inbäddad systemteknik Annan elektroteknik och elektronik Reglerteknik
Forskningsämne
Distribuerade realtidssystem (DRTS)
Identifikatorer
urn:nbn:se:his:diva-16423 (URN)
Konferens
The 23rd Nordic Conference on Secure IT Systems, Oslo, Norway, November 28-30, 2018
Projekt
ELVIRA
Tillgänglig från: 2018-11-22 Skapad: 2018-11-22 Senast uppdaterad: 2018-12-20Bibliografiskt granskad
Jeusfeld, M. A., Jiang, Y., Ding, J., Atif, Y., Haglund, D. & Brax, C. (2018). Taxonomy of Events and Components in the Power Grid: Technical description for work packages 3.1 and 3.2 of the ELVIRA Project. Skövde: University of Skövde
Öppna denna publikation i ny flik eller fönster >>Taxonomy of Events and Components in the Power Grid: Technical description for work packages 3.1 and 3.2 of the ELVIRA Project
Visa övriga...
2018 (Engelska)Rapport (Övrigt vetenskapligt)
Abstract [en]

This document reports a technical description of ELVIRA project results obtained as part of Work-package 3.1&3.2 entitled “Taxonomy of Critical Infrastructure (Taxonomy of events + Taxonomy of CI component and relationship)”. ELVIRA project is a collaboration between researchers in School of IT at University of Skövde and Combitech Technical Consulting Company in Sweden, with the aim to design, develop and test a testbed simulator for critical infrastructures cybersecurity.

Ort, förlag, år, upplaga, sidor
Skövde: University of Skövde, 2018. s. 25
Serie
IIT Technical Reports ; HS-IIT-TR-18-001
Nyckelord
taxonomy, cyber-security, power grid, events, Nordic32
Nationell ämneskategori
Data- och informationsvetenskap
Forskningsämne
Distribuerade realtidssystem (DRTS); Informationssystem (IS)
Identifikatorer
urn:nbn:se:his:diva-14699 (URN)
Projekt
ELVIRA
Anmärkning

HS-IIT-TR-18-001 This is a technical report related to the ELVIRA project www.his.se/elvira

Tillgänglig från: 2018-01-31 Skapad: 2018-01-31 Senast uppdaterad: 2019-03-05Bibliografiskt granskad
Ding, J., Atif, Y., Andler, S. F., Lindström, B. & Jeusfeld, M. (2017). CPS-based Threat Modeling for Critical Infrastructure Protection. Performance Evaluation Review, 45(2), 129-132
Öppna denna publikation i ny flik eller fönster >>CPS-based Threat Modeling for Critical Infrastructure Protection
Visa övriga...
2017 (Engelska)Ingår i: Performance Evaluation Review, ISSN 0163-5999, E-ISSN 1557-9484, Vol. 45, nr 2, s. 129-132Artikel i tidskrift (Refereegranskat) Published
Abstract [en]

Cyber-Physical Systems (CPSs) are augmenting traditionalCritical Infrastructures (CIs) with data-rich operations. Thisintegration creates complex interdependencies that exposeCIs and their components to new threats. A systematicapproach to threat modeling is necessary to assess CIs’ vulnerabilityto cyber, physical, or social attacks. We suggest anew threat modeling approach to systematically synthesizeknowledge about the safety management of complex CIs andsituational awareness that helps understanding the nature ofa threat and its potential cascading-effects implications.

Ort, förlag, år, upplaga, sidor
ACM Publications, 2017
Nyckelord
CPS, threat modeling, Critical Infrastructure Protection
Nationell ämneskategori
Data- och informationsvetenskap
Forskningsämne
Distribuerade realtidssystem (DRTS); Informationssystem (IS); INF303 Informationssäkerhet
Identifikatorer
urn:nbn:se:his:diva-14245 (URN)10.1145/3152042.3152080 (DOI)2-s2.0-85041405430 (Scopus ID)
Projekt
EU ISF project: Elvira
Forskningsfinansiär
EU, Europeiska forskningsrådet
Tillgänglig från: 2017-10-23 Skapad: 2017-10-23 Senast uppdaterad: 2018-06-01Bibliografiskt granskad
Atif, Y., Ding, J., Lindström, B., Jeusfeld, M., Andler, S. F., Yuning, J., . . . Gustavsson, P. M. (2017). Cyber-Threat Intelligence Architecture for Smart-Grid Critical Infrastructures Protection. In: : . Paper presented at The International Conference on Critical Information Infrastructures Security, CRITIS 2017, Lucca, Italy, October 8-13, 2017.
Öppna denna publikation i ny flik eller fönster >>Cyber-Threat Intelligence Architecture for Smart-Grid Critical Infrastructures Protection
Visa övriga...
2017 (Engelska)Konferensbidrag, Poster (med eller utan abstract) (Refereegranskat)
Abstract [en]

Critical infrastructures (CIs) are becoming increasingly sophisticated with embedded cyber-physical systems (CPSs) that provide managerial automation and autonomic controls. Yet these advances expose CI components to new cyber-threats, leading to a chain of dysfunctionalities with catastrophic socio-economical implications. We propose a comprehensive architectural model to support the development of incident management tools that provide situation-awareness and cyber-threats intelligence for CI protection, with a special focus on smart-grid CI. The goal is to unleash forensic data from CPS-based CIs to perform some predictive analytics. In doing so, we use some AI (Artificial Intelligence) paradigms for both data collection, threat detection, and cascade-effects prediction. 

Nyckelord
critical infrastructures, cyber-threat, situation awareness, smart-grid, machine-learning, artificial intelligence, multi-agent systems
Nationell ämneskategori
Datavetenskap (datalogi) Inbäddad systemteknik Energisystem Fjärranalysteknik Infrastrukturteknik
Forskningsämne
Distribuerade realtidssystem (DRTS); Informationssystem (IS)
Identifikatorer
urn:nbn:se:his:diva-14516 (URN)
Konferens
The International Conference on Critical Information Infrastructures Security, CRITIS 2017, Lucca, Italy, October 8-13, 2017
Projekt
ELVIRA
Tillgänglig från: 2017-11-28 Skapad: 2017-11-28 Senast uppdaterad: 2018-02-01Bibliografiskt granskad
Organisationer
Identifikatorer
ORCID-id: ORCID iD iconorcid.org/0000-0002-8927-0968

Sök vidare i DiVA

Visa alla publikationer