Högskolan i Skövde

his.sePublikasjoner
Endre søk
RefereraExporteraLink to record
Permanent link

Direct link
Referera
Referensformat
  • apa
  • apa-cv
  • ieee
  • modern-language-association-8th-edition
  • vancouver
  • Annet format
Fler format
Språk
  • de-DE
  • en-GB
  • en-US
  • fi-FI
  • nn-NO
  • nn-NB
  • sv-SE
  • Annet språk
Fler språk
Utmatningsformat
  • html
  • text
  • asciidoc
  • rtf
Dynamic and Automatic Vulnerability Assessment for Cyber-Physical System
Högskolan i Skövde, Institutionen för informationsteknologi. Högskolan i Skövde, Forskningscentrum för Informationsteknologi. (Distribuerade realtidssystem (DRTS), Distributed Real-Time Systems)ORCID-id: 0000-0003-4791-8452
2019 (engelsk)Konferansepaper, Poster (with or without abstract) (Annet vitenskapelig)
Abstract [en]

Assessing vulnerabilities supports analytics-based decision-making processes to protect Critical Infrastructures (CIs), in order to focus on specific risks rising from threat-exploitability with varying degrees of impact-severity. The notion of risk remains elusive, as evidenced by the increasing investigations on CIs security operations centres (SOCs) where analysts employ various detection, assessment, and defence mechanisms to monitor security events. Normally, SOCs involve advances of multiple automated security tools such as network vulnerability scanners and Common Vulnerability Scoring System (CVSS), combined with analysis of data contained and produced by cyber-physical system (CPS) as well as alarms retrieved from vulnerability repositories such as Common Vulnerability Exposure (CVE). The security operators need further to forecast the match between these vulnerabilities and the state of intricate CIs layer networks, while prioritising patching investments using vulnerability-scoring mechanisms. This process shows the central role of security operators in SOCs and their need for support to keep pace with dynamically evolving vulnerability-alert repositories. Recent advances in data analytics also prompt dynamic data-driven vulnerability assessments whereby data contained and produced by CPS include hidden traces of vulnerability fingerprints. However, the huge volume of scanned data requires high capability of information processing and analytical reasoning, which could not be satisfied considering the imprecise nature of manual vulnerability assessment.

A knowledge-base system that consolidates both sides into empirical rules appears to be missing, yet it promises to offer a suitable level of decision-support. In our research, we propose a dynamic and automated vulnerability-assessment approach. The proposed streamlined approach employs computational intelligence techniques to analyse data retrieved from vulnerability-alert repositories and CPS layer networks within an innovative accurate and automatic scoring system, away from traditional manual and highly subjective mechanisms. Our approach suggests to substitute offline, costly, error-prone and pure subjective vulnerability assessment processes with an automatic, accurate and data-evidenced approach, to improve situation awareness and to support security decision making. In doing so, we investigate judicious computational-intelligence techniques such as fuzzy-logic, machine learning and data mining, applied to vulnerability assessment problems.

sted, utgiver, år, opplag, sider
2019.
Emneord [en]
Cyber-Physical System Security, Vulnerability Assessment
HSV kategori
Forskningsprogram
Distribuerade realtidssystem (DRTS)
Identifikatorer
URN: urn:nbn:se:his:diva-17752OAI: oai:DiVA.org:his-17752DiVA, id: diva2:1357177
Konferanse
19th Seminar within the Framework of a Swedish IT Security Network for PhD students, Karlstad, Sweden, June 3-4, 2019
Prosjekter
ELVIRA
Merknad

A short presentation was given during SWITS'2019 workshop for the poster.

Tilgjengelig fra: 2019-10-03 Laget: 2019-10-03 Sist oppdatert: 2019-10-04bibliografisk kontrollert

Open Access i DiVA

fulltext(3261 kB)1 nedlastinger
Filinformasjon
Fil FULLTEXT01.pngFilstørrelse 3261 kBChecksum SHA-512
962378bc1dbb16e0a2ef913db1adafd6f117e11e67d61b55eade94719bd008311e5e00a5b5dc5697235c6db6404d16a9bf24785a4d4f82a93e9eb51325eeac0d
Type fulltextMimetype image/png

Person

Jiang, Yuning

Søk i DiVA

Av forfatter/redaktør
Jiang, Yuning
Av organisasjonen

Søk utenfor DiVA

GoogleGoogle Scholar
Totalt: 1 nedlastinger
Antall nedlastinger er summen av alle nedlastinger av alle fulltekster. Det kan for eksempel være tidligere versjoner som er ikke lenger tilgjengelige

urn-nbn

Altmetric

urn-nbn
Totalt: 624 treff
RefereraExporteraLink to record
Permanent link

Direct link
Referera
Referensformat
  • apa
  • apa-cv
  • ieee
  • modern-language-association-8th-edition
  • vancouver
  • Annet format
Fler format
Språk
  • de-DE
  • en-GB
  • en-US
  • fi-FI
  • nn-NO
  • nn-NB
  • sv-SE
  • Annet språk
Fler språk
Utmatningsformat
  • html
  • text
  • asciidoc
  • rtf