Automating Safety and Security Risk Assessment in Industrial Control Systems: Challenges and Constraints

被引:6
|
作者
Bhosale, Pushparaj [1 ]
Kastner, Wolfgang [1 ]
Sauter, Thilo [2 ,3 ]
机构
[1] TU Wien, Inst Comp Engn, Vienna, Austria
[2] TU Wien, Inst Comp Technol, Vienna, Austria
[3] Danube Univ Krems, Integr Sensor Syst, Krems An Der Donau, Austria
来源
2022 IEEE 27TH INTERNATIONAL CONFERENCE ON EMERGING TECHNOLOGIES AND FACTORY AUTOMATION (ETFA) | 2022年
关键词
Automation; risk assessment; safety; security; Industrial control system;
D O I
10.1109/ETFA52439.2022.9921517
中图分类号
TP [自动化技术、计算机技术];
学科分类号
0812 ;
摘要
Currently, risk assessment of industrial control systems is static and performed manually. With the increased convergence of operational technology and information technology, risk assessment has to incorporate a combined safety and security analysis along with their interdependency. This paper investigates the data inputs required for safety and security assessments, also if the collection and utilisation of such data can be automated. A particular focus is put on integrated assessment methods which have the potential for automation. In case the overall process to identify potential hazards and threats and analyze what could happen if they occur can be automated, manual efforts and cost of operation can be reduced, thus also increasing the overall performance of risk assessment.
引用
收藏
页数:4
相关论文
共 50 条
  • [1] A new safety and security risk analysis framework for industrial control systems
    Kriaa, Siwar
    Bouissou, Marc
    Laarouchi, Youssef
    PROCEEDINGS OF THE INSTITUTION OF MECHANICAL ENGINEERS PART O-JOURNAL OF RISK AND RELIABILITY, 2019, 233 (02) : 151 - 174
  • [2] AutomationML Meets Bayesian Networks: A Comprehensive Safety-Security Risk Assessment in Industrial Control Systems
    Bhosale, Pushparaj
    Kastner, Wolfgang
    Sauter, Thilo
    IEEE OPEN JOURNAL OF THE INDUSTRIAL ELECTRONICS SOCIETY, 2024, 5 : 823 - 835
  • [3] A Study on Quantitative Risk Assessment Methods in Security Design for Industrial Control Systems
    Kawanishi, Yasuyuki
    Nishihara, Hideaki
    Souma, Daisuke
    Yoshida, Hirotaka
    Hata, Yoichi
    2018 16TH IEEE INT CONF ON DEPENDABLE, AUTONOM AND SECURE COMP, 16TH IEEE INT CONF ON PERVAS INTELLIGENCE AND COMP, 4TH IEEE INT CONF ON BIG DATA INTELLIGENCE AND COMP, 3RD IEEE CYBER SCI AND TECHNOL CONGRESS (DASC/PICOM/DATACOM/CYBERSCITECH), 2018, : 62 - 69
  • [4] A Survey of Cyber Security and Safety in Industrial Control Systems
    Ma, Yi-Wei
    Tu, Yi-Hao
    Tsou, Chia-Wei
    Chiang, Yen-Neng
    Chen, Jiann-Liang
    JOURNAL OF INTERNET TECHNOLOGY, 2024, 25 (04): : 541 - 550
  • [5] Risk-Based Scheduling of Security Tasks in Industrial Control Systems With Consideration of Safety
    Zhou, Chunjie
    Li, Xuan
    Yang, Shuanghua
    Tian, Yu-Chu
    IEEE TRANSACTIONS ON INDUSTRIAL INFORMATICS, 2020, 16 (05) : 3112 - 3123
  • [6] ACSRA ICS: Automated Cyber Security Risk Assessment Methodology for Industrial Control Systems
    Altaleb, Haya
    Ady, Laszlo
    Varga, Peter Janos
    Rajnai, Zoltan
    ACTA POLYTECHNICA HUNGARICA, 2025, 22 (02) : 47 - 74
  • [7] A review of security assessment methodologies in industrial control systems
    Qassim, Qais Saif
    Jamil, Norziana
    Daud, Maslina
    Patel, Ahmed
    Ja'affar, Norhamadi
    INFORMATION AND COMPUTER SECURITY, 2019, 27 (01) : 47 - 61
  • [8] Cyber Security challenges and Issues of Industrial Control Systems - Some Security Recommendations
    El Idrissi, Omar
    Mezrioui, Abdellatif
    Belmekki, Abdelhamid
    2019 5TH IEEE INTERNATIONAL SMART CITIES CONFERENCE (IEEE ISC2 2019), 2019, : 330 - 335
  • [9] Industrial control systems are a largely overlooked security risk
    Schultz, Eugene
    COMPUTERS & SECURITY, 2006, 25 (05) : 323 - 323
  • [10] Protection architecture of endogenous safety and security for industrial control systems
    Yaozhong Xin
    SecurityandSafety, 2023, 2 (03) : 20 - 28
12345