Author:
Northern Bradley,Burks Trey,Hatcher Marlana,Rogers Michael,Ulybyshev Denis
Abstract
Since Cyber-Physical Systems (CPS) are widely used in critical infrastructures, it is essential to protect their assets from cyber attacks to increase the level of security, safety and trustworthiness, prevent failure developments, and minimize losses. It is necessary to analyze the CPS configuration in an automatic mode to detect the most vulnerable CPS components and reconfigure or replace them promptly. In this paper, we present a methodology to determine the most secure CPS configuration by using a public database of cyber vulnerabilities to identify the most secure CPS components. We also integrate the CPS cyber risk analysis with a Controlled Moving Target Defense, which either replaces the vulnerable CPS components or re-configures the CPS to harden it, while the vulnerable components are being replaced. Our solution helps to design a more secure CPS by updating the configuration of existing CPS to make them more resilient against cyber attacks. In this paper, we will compare cyber risk scores for different CPS configurations and show that the Windows® 10 build 20H2 operating system is more secure than Linux Ubuntu® 20.04, while Red Hat® Enterprise® Linux is the most secure in some system configurations.
Reference43 articles.
1. Schneider Electric Terms of Usehttps://www.se.com/us/en/about-us/legal/terms-of-use.jsp
2. Florida Water Plant Hack: Leaked Credentials Found in Breach Databasehttps://threatpost.com/florida-water-plant-hack-credentials-breach/163919/
3. Towards Improving CVSShttps://resources.sei.cmu.edu/asset_files/WhitePaper/2018_019_001_538372.pdf
4. Common Vulnerability Scoring System Version 3.1: Specification Documenthttps://www.first.org/cvss/v3-1/cvss-v31-specification_r1.pdf
Cited by
13 articles.
订阅此论文施引文献
订阅此论文施引文献,注册后可以免费订阅5篇论文的施引文献,订阅后可以查看论文全部施引文献