Threat navigator: grouping and ranking malicious external threats to current and future urban smart grids

Alexandr Vasenev; L. Montoya; Andrea Ceccarelli; Anhtuan Le; Dan Ionita

doi:10.1007/978-3-319-47729-9_19

Threat navigator: grouping and ranking malicious external threats to current and future urban smart grids

Alexandr Vasenev, L. Montoya, Andrea Ceccarelli, Anhtuan Le, Dan Ionita

Research output: Chapter in Book/Report/Conference proceeding › Conference contribution › Academic

7 Citations (Scopus)

160 Downloads (Pure)

Abstract

Deriving value judgements about threat rankings for large and entangled systems, such as those of urban smart grids, is a challenging task. Suitable approaches should account for multiple threat events posed by different classes of attackers who target system components. Given the complexity of the task, a suitable level of guidance for ranking more relevant and filtering out the less relevant threats is desirable. This requires a method able to distill the list of all possible threat events in a traceable and repeatable manner, given a set of assumptions about the attackers. The Threat Navigator proposed in this paper tackles this issue. Attacker profiles are described in terms of Focus (linked to Actor-to-Asset relations) and Capabilities (Threat-to-Threat dependencies). The method is demonstrated on a sample urban Smart Grid. The ranked list of threat events obtained is useful for a risk analysis that ultimately aims at finding cost-effective mitigation strategies.

Original language	Undefined
Title of host publication	1st EAI International Conference on Smart Grid Inspired Future
Place of Publication	London
Publisher	Springer
Pages	184-192
Number of pages	8
ISBN (Print)	978-3-319-47729-9
DOIs	https://doi.org/10.1007/978-3-319-47729-9_19
Publication status	Published - May 2016
Event	1st EAI International Conference on Smart Grid Inspired Future, SmartGift 2016 - Liverpool, United Kingdom Duration: 19 May 2016 → 20 May 2016 Conference number: 1 http://smartgiftconf.org/2016/

Publication series

Name
Publisher	Springer Verlag

Conference

Conference	1st EAI International Conference on Smart Grid Inspired Future, SmartGift 2016
Abbreviated title	SmartGift
Country/Territory	United Kingdom
City	Liverpool
Period	19/05/16 → 20/05/16
Internet address	http://smartgiftconf.org/2016/

Keywords

SCS-Cybersecurity
IR-100453
METIS-316929
EWI-27019

Access to Document

10.1007/978-3-319-47729-9_19

Vasenev_Montoya_Ceccarelli_Le_Ionita_2016_Threat_navigator

http://eprints.eemcs.utwente.nl/secure2/27019/01/27019_ThreatNavigator.pdf

Cite this

@inproceedings{3b277c74474d4c4091f56414917ac787,

title = "Threat navigator: grouping and ranking malicious external threats to current and future urban smart grids",

abstract = "Deriving value judgements about threat rankings for large and entangled systems, such as those of urban smart grids, is a challenging task. Suitable approaches should account for multiple threat events posed by different classes of attackers who target system components. Given the complexity of the task, a suitable level of guidance for ranking more relevant and filtering out the less relevant threats is desirable. This requires a method able to distill the list of all possible threat events in a traceable and repeatable manner, given a set of assumptions about the attackers. The Threat Navigator proposed in this paper tackles this issue. Attacker profiles are described in terms of Focus (linked to Actor-to-Asset relations) and Capabilities (Threat-to-Threat dependencies). The method is demonstrated on a sample urban Smart Grid. The ranked list of threat events obtained is useful for a risk analysis that ultimately aims at finding cost-effective mitigation strategies.",

keywords = "SCS-Cybersecurity, IR-100453, METIS-316929, EWI-27019",

author = "Alexandr Vasenev and L. Montoya and Andrea Ceccarelli and Anhtuan Le and Dan Ionita",

note = "eemcs-eprint-27019 ; null ; Conference date: 19-05-2016 Through 20-05-2016",

year = "2016",

month = may,

doi = "10.1007/978-3-319-47729-9_19",

language = "Undefined",

isbn = "978-3-319-47729-9",

publisher = "Springer",

pages = "184--192",

booktitle = "1st EAI International Conference on Smart Grid Inspired Future",

address = "Netherlands",

url = "http://smartgiftconf.org/2016/",

}

Vasenev, A, Montoya, L, Ceccarelli, A, Le, A & Ionita, D 2016, Threat navigator: grouping and ranking malicious external threats to current and future urban smart grids. in 1st EAI International Conference on Smart Grid Inspired Future. Springer, London, pp. 184-192, 1st EAI International Conference on Smart Grid Inspired Future, SmartGift 2016, Liverpool, United Kingdom, 19/05/16. https://doi.org/10.1007/978-3-319-47729-9_19

TY - GEN

T1 - Threat navigator: grouping and ranking malicious external threats to current and future urban smart grids

AU - Vasenev, Alexandr

AU - Montoya, L.

AU - Ceccarelli, Andrea

AU - Le, Anhtuan

AU - Ionita, Dan

N1 - Conference code: 1

PY - 2016/5

Y1 - 2016/5

N2 - Deriving value judgements about threat rankings for large and entangled systems, such as those of urban smart grids, is a challenging task. Suitable approaches should account for multiple threat events posed by different classes of attackers who target system components. Given the complexity of the task, a suitable level of guidance for ranking more relevant and filtering out the less relevant threats is desirable. This requires a method able to distill the list of all possible threat events in a traceable and repeatable manner, given a set of assumptions about the attackers. The Threat Navigator proposed in this paper tackles this issue. Attacker profiles are described in terms of Focus (linked to Actor-to-Asset relations) and Capabilities (Threat-to-Threat dependencies). The method is demonstrated on a sample urban Smart Grid. The ranked list of threat events obtained is useful for a risk analysis that ultimately aims at finding cost-effective mitigation strategies.

AB - Deriving value judgements about threat rankings for large and entangled systems, such as those of urban smart grids, is a challenging task. Suitable approaches should account for multiple threat events posed by different classes of attackers who target system components. Given the complexity of the task, a suitable level of guidance for ranking more relevant and filtering out the less relevant threats is desirable. This requires a method able to distill the list of all possible threat events in a traceable and repeatable manner, given a set of assumptions about the attackers. The Threat Navigator proposed in this paper tackles this issue. Attacker profiles are described in terms of Focus (linked to Actor-to-Asset relations) and Capabilities (Threat-to-Threat dependencies). The method is demonstrated on a sample urban Smart Grid. The ranked list of threat events obtained is useful for a risk analysis that ultimately aims at finding cost-effective mitigation strategies.

KW - SCS-Cybersecurity

KW - IR-100453

KW - METIS-316929

KW - EWI-27019

U2 - 10.1007/978-3-319-47729-9_19

DO - 10.1007/978-3-319-47729-9_19

M3 - Conference contribution

SN - 978-3-319-47729-9

SP - 184

EP - 192

BT - 1st EAI International Conference on Smart Grid Inspired Future

PB - Springer

CY - London

Y2 - 19 May 2016 through 20 May 2016

ER -