GENICS: A Framework for Generating Attack Scenarios for Cybersecurity Exercises on Industrial Control Systems-Reference-Cited by-同舟云学术

GENICS: A Framework for Generating Attack Scenarios for Cybersecurity Exercises on Industrial Control Systems

Published:2024-01-16 Issue:2 Volume:14 Page:768
ISSN:2076-3417
Container-title:Applied Sciences
language:en
Short-container-title:Applied Sciences

Author:

Song InSung¹^ORCID,Jeon Seungho²^ORCID,Kim Donghyun¹,Lee Min Gyu¹,Seo Jung Taek³^ORCID

Affiliation:

1. Department of Information Security, Gachon University, Seongnam-daero 1342, Seongnam-si 13119, Republic of Korea

2. Department of Computer Engineering (Smart Security), Gachon University, Seongnam-daero 1342, Seongnam-si 13119, Republic of Korea

3. Department of Computer Engineering, Gachon University, Seongnam-daero 1342, Seongnam-si 13119, Republic of Korea

Abstract

Due to the nature of the industrial control systems (ICS) environment, where process continuity is essential, intentionally initiating a cyberattack to check security controls can cause severe financial and human damage to the organization. Therefore, most organizations operating ICS environments check their level of security through simulated cybersecurity exercises. For these exercises to be effective, high-quality cyberattack scenarios that are likely to occur in the ICS environment must be assumed. Unfortunately, many organizations use limited attack scenarios targeting essential digital assets, leading to ineffective response preparedness. To derive high-quality scenarios, there is a need for relevant attack and vulnerability information, and standardized methods for creating and evaluating attack scenarios in the ICS context. To meet these challenges, we propose GENICS, an attack scenario generation framework for cybersecurity training in ICS. GENICS consists of five phases: threat analysis, attack information identification, modeling cyberattack scenarios, quantifying cyberattacks, and generating scenarios. The validity of GENICS was verified through a qualitative study and case studies on current attack scenario-generating methods. GENICS ensures a systematic approach to generate quantified, realistic attack scenarios, thereby significantly enhancing cybersecurity training in ICS environments.

Funder

Korea Foundation of Nuclear Safety

Nuclear Safety and Security Commission (NSSC) of the Republic of Korea

Korea Institute of Energy Technology Evaluation and Planning

Korea government

Gachon University research fund of 2023

Publisher

MDPI AG

Subject

Fluid Flow and Transfer Processes,Computer Science Applications,Process Chemistry and Technology,General Engineering,Instrumentation,General Materials Science

Link

https://www.mdpi.com/2076-3417/14/2/768/pdf

Reference37 articles.

1. (2022). Information Security, Cybersecurity and Privacy Protection-Information Security Management System-Requirements (Standard No. ISO/IEC 27001:2022).

2. Stuxnet and the future of cyber war;Farwell;Survival,2011

3. TRITON: The first ICS cyber attack on safety instrument systems;Dragoni;Proc. Black Hat USA,2018

4. Kim, J., Kim, K., and Jang, M. (May, January 28). Cyber-physical battlefield platform for large-scale cybersecurity exercises. Proceedings of the 2019 11th International Conference on Cyber Conflict (CyCon), Tallinn, Estonia.

5. Cyber incident exercise for safety protection in critical infrastructure;Ota;Int. J. Saf. Secur. Eng.,2018