Sökning: onr:"swepub:oai:DiVA.org:kth-294123" >
Generating Threat M...
Abstract
Ämnesord
Stäng
- Due to our dependency on electricity, it is vital to keep our powersystems secure from cyber attacks. However, because power sys-tems are being digitalized and the infrastructure is growing increasingly complicated, it is difficult to gain an overview and secure the entire system. An overview of the potential security vulnerabilities can be achieved with threat modeling. The Meta AttackLanguage (MAL) is a formalism that enables the development ofthreat modeling languages that can be used to automatically generate attack graphs and conduct simulations over them. In this article we present the MAL-based language SCL-Lang which has been created based on the System description Configuration Language (SCL) as defined in the IEC 61850 standard. With SCL-Lang one can create threat models of substations based on their SCL files and automatically find information regarding potential cyber attack paths in the substation automation system configuration. This enables structured cyber security analysis for evaluating various design scenarios before implementation
Ämnesord
- NATURVETENSKAP -- Data- och informationsvetenskap -- Datavetenskap (hsv//swe)
- NATURAL SCIENCES -- Computer and Information Sciences -- Computer Sciences (hsv//eng)
- TEKNIK OCH TEKNOLOGIER -- Elektroteknik och elektronik -- Datorsystem (hsv//swe)
- ENGINEERING AND TECHNOLOGY -- Electrical Engineering, Electronic Engineering, Information Engineering -- Computer Systems (hsv//eng)
Nyckelord
- IEC 61850
- substation
- cyber security
- threat modeling language
- attack graphs
- Meta Attack Language
- System Configuration description Language
- Datalogi
- Computer Science
- Informations- och kommunikationsteknik
- Information and Communication Technology
- Electrical Engineering
- Elektro- och systemteknik
Publikations- och innehållstyp
- ref (ämneskategori)
- kon (ämneskategori)