Home > Research > Publications & Outputs > Threat awareness for critical infrastructures r...

Electronic data

  • PID4344581

    Accepted author manuscript, 786 KB, PDF-document

Links

Text available via DOI:

View graph of relations

Threat awareness for critical infrastructures resilience

Research output: Contribution in Book/Report/ProceedingsConference contribution

Published
Publication date13/09/2016
Host publicationResilient Networks Design and Modeling (RNDM), 2016 8th International Workshop on
Place of Publication9781467390248
PublisherIEEE
ISBN (Electronic)9781467390231
<mark>Original language</mark>English
EventInternational Workshop on Resilient Networks Design and Modeling -

Conference

ConferenceInternational Workshop on Resilient Networks Design and Modeling
Abbreviated titleRNDM
Period13/09/1615/09/16

Conference

ConferenceInternational Workshop on Resilient Networks Design and Modeling
Abbreviated titleRNDM
Period13/09/1615/09/16

Abstract

Utility networks are part of every nation’s critical infrastructure, and their protection is now seen as a high priority objective. In this paper, we propose a threat awareness architecture for critical infrastructures, which we believe will raise security awareness and increase resilience in utility networks. We first describe an investigation of trends and threats that may impose security risks in utility networks. This was performed on the basis of a viewpoint approach that is capable of identifying technical and non-technical issues (e.g., behaviour of humans). The result of our analysis indicated that utility networks are affected strongly by technological trends, but that humans comprise an important threat to them. This provided evidence and confirmed that the protection of utility networks is a multi-variable problem, and thus, requires the examination of information stemming from various viewpoints of a network. In order to accomplish our objective, we propose a systematic threat awareness architecture in the context of a resilience strategy, which ultimately aims at providing and maintaining an acceptable level of security and safety in critical infrastructures. As a proof of concept, we demonstrate partially via a case study the application of the proposed threat awareness architecture, where we examine the potential impact of attacks in the context of social engineering in a European utility company.