Defining Attack Patterns for Industrial Control Systems - Critical Infrastructure Protection XIII
Conference Papers Year : 2019

Defining Attack Patterns for Industrial Control Systems

Abstract

Attack patterns have been used to specify security test cases for traditional information technology systems in order to mitigate cyber attacks. However, the attack patterns for traditional information technology systems are not directly applicable to industrial control systems. This chapter considers the differences between traditional information technology systems and industrial control systems, discusses why attack patterns for traditional information technology systems are inadequate for industrial control systems, and specifies attack patterns for industrial control systems. The attack patterns are useful for creating security test cases for assessing the security levels of industrial control systems. An elevator system case study is used to demonstrate the utility of industrial control system attack patterns in specifying security test cases.
Fichier principal
Vignette du fichier
491841_1_En_15_Chapter.pdf (1.05 Mo) Télécharger le fichier
Origin Files produced by the author(s)

Dates and versions

hal-03364574 , version 1 (04-10-2021)

Licence

Identifiers

Cite

Raymond Chan, Kam-Pui Chow, Chun-Fai Chan. Defining Attack Patterns for Industrial Control Systems. 13th International Conference on Critical Infrastructure Protection (ICCIP), Mar 2019, Arlington, VA, United States. pp.289-309, ⟨10.1007/978-3-030-34647-8_15⟩. ⟨hal-03364574⟩
64 View
169 Download

Altmetric

Share

More