Home > Research > Publications & Outputs > Understanding Security Requirements for Industr...

Research

Links

Text available via DOI:

Keywords

View graph of relations

Understanding Security Requirements for Industrial Control System Supply Chains

Research output: Contribution in Book/Report/Proceedings - With ISBN/ISSNConference contribution/Paperpeer-review

Published

Standard

Understanding Security Requirements for Industrial Control System Supply Chains. / Hou, Y.; Such, J.; Rashid, A.
2019 IEEE/ACM 5th International Workshop on Software Engineering for Smart Cyber-Physical Systems (SEsCPS). IEEE, 2019. p. 50-53 8823698.

Research output: Contribution in Book/Report/Proceedings - With ISBN/ISSNConference contribution/Paperpeer-review

Harvard

Hou, Y, Such, J & Rashid, A 2019, Understanding Security Requirements for Industrial Control System Supply Chains. in 2019 IEEE/ACM 5th International Workshop on Software Engineering for Smart Cyber-Physical Systems (SEsCPS)., 8823698, IEEE, pp. 50-53. https://doi.org/10.1109/SEsCPS.2019.00016

APA

Hou, Y., Such, J., & Rashid, A. (2019). Understanding Security Requirements for Industrial Control System Supply Chains. In 2019 IEEE/ACM 5th International Workshop on Software Engineering for Smart Cyber-Physical Systems (SEsCPS) (pp. 50-53). Article 8823698 IEEE. https://doi.org/10.1109/SEsCPS.2019.00016

Vancouver

Hou Y, Such J, Rashid A. Understanding Security Requirements for Industrial Control System Supply Chains. In 2019 IEEE/ACM 5th International Workshop on Software Engineering for Smart Cyber-Physical Systems (SEsCPS). IEEE. 2019. p. 50-53. 8823698 doi: 10.1109/SEsCPS.2019.00016

Author

Hou, Y. ; Such, J. ; Rashid, A. / Understanding Security Requirements for Industrial Control System Supply Chains. 2019 IEEE/ACM 5th International Workshop on Software Engineering for Smart Cyber-Physical Systems (SEsCPS). IEEE, 2019. pp. 50-53

Bibtex

@inproceedings{9b6568e9f7474b81b57cd05a0d345eab,
title = "Understanding Security Requirements for Industrial Control System Supply Chains",
abstract = "We address the need for security requirements to take into account risks arising from complex supply chains underpinning cyber-physical infrastructures such as industrial control systems (ICS). We present SEISMiC (SEcurity Industrial control SysteM supply Chains), a framework that takes into account the whole spectrum of security risks-from technical aspects through to human and organizational issues- A cross an ICS supply chain. We demonstrate the effectiveness of SEISMiC through a supply chain risk assessment of Natanz, Iran's nuclear facility that was the subject of the Stuxnet attack. ",
keywords = "cyber-physical systems, risk decision-making, security requirements, supply chains, Control systems, Cryptography, Cyber Physical System, Decision making, Embedded systems, Man machine systems, Risk assessment, Seismology, Software engineering, Supply chains, Complex supply chain, Industrial control systems, Nuclear facilities, Organizational issues, Risk decision making, Security requirements, Supply chain risk, Technical aspects, Intelligent control",
author = "Y. Hou and J. Such and A. Rashid",
year = "2019",
month = sep,
day = "5",
doi = "10.1109/SEsCPS.2019.00016",
language = "English",
pages = "50--53",
booktitle = "2019 IEEE/ACM 5th International Workshop on Software Engineering for Smart Cyber-Physical Systems (SEsCPS)",
publisher = "IEEE",

}

RIS

TY - GEN

T1 - Understanding Security Requirements for Industrial Control System Supply Chains

AU - Hou, Y.

AU - Such, J.

AU - Rashid, A.

PY - 2019/9/5

Y1 - 2019/9/5

N2 - We address the need for security requirements to take into account risks arising from complex supply chains underpinning cyber-physical infrastructures such as industrial control systems (ICS). We present SEISMiC (SEcurity Industrial control SysteM supply Chains), a framework that takes into account the whole spectrum of security risks-from technical aspects through to human and organizational issues- A cross an ICS supply chain. We demonstrate the effectiveness of SEISMiC through a supply chain risk assessment of Natanz, Iran's nuclear facility that was the subject of the Stuxnet attack.

AB - We address the need for security requirements to take into account risks arising from complex supply chains underpinning cyber-physical infrastructures such as industrial control systems (ICS). We present SEISMiC (SEcurity Industrial control SysteM supply Chains), a framework that takes into account the whole spectrum of security risks-from technical aspects through to human and organizational issues- A cross an ICS supply chain. We demonstrate the effectiveness of SEISMiC through a supply chain risk assessment of Natanz, Iran's nuclear facility that was the subject of the Stuxnet attack.

KW - cyber-physical systems

KW - risk decision-making

KW - security requirements

KW - supply chains

KW - Control systems

KW - Cryptography

KW - Cyber Physical System

KW - Decision making

KW - Embedded systems

KW - Man machine systems

KW - Risk assessment

KW - Seismology

KW - Software engineering

KW - Supply chains

KW - Complex supply chain

KW - Industrial control systems

KW - Nuclear facilities

KW - Organizational issues

KW - Risk decision making

KW - Security requirements

KW - Supply chain risk

KW - Technical aspects

KW - Intelligent control

U2 - 10.1109/SEsCPS.2019.00016

DO - 10.1109/SEsCPS.2019.00016

M3 - Conference contribution/Paper

SP - 50

EP - 53

BT - 2019 IEEE/ACM 5th International Workshop on Software Engineering for Smart Cyber-Physical Systems (SEsCPS)

PB - IEEE

ER -