Home > Research > Publications & Outputs > A survey of cyber security management in indust...


Text available via DOI:

View graph of relations

A survey of cyber security management in industrial control systems

Research output: Contribution to Journal/MagazineJournal articlepeer-review

<mark>Journal publication date</mark>1/06/2015
<mark>Journal</mark>International Journal of Critical Infrastructure Protection
Number of pages29
Pages (from-to)52-80
Publication StatusPublished
Early online date3/03/15
<mark>Original language</mark>English


Contemporary industrial control systems no longer operate in isolation, but use other networks (e.g., corporate networks and the Internet) to facilitate and improve business processes. The consequence of this development is the increased exposure to cyber threats. This paper surveys the latest methodologies and research for measuring and managing this risk. A dearth of industrial-control-system-specific security metrics has been identified as a barrier to implementing these methodologies. Consequently, an agenda for future research on industrial control system security metrics is outlined. The “functional assurance” concept is also introduced to deal with fail-safe and fail-secure industrial control system operations.