nach oben

Erschienen in:

2017 | OriginalPaper | Buchkapitel

Selected Issues of Cyber Security Practices in CBRNeCy Critical Infrastructure

verfasst von : Stanislav Abaimov, Maurizio Martellini

Erschienen in: Cyber and Chemical, Biological, Radiological, Nuclear, Explosives Challenges

Verlag: Springer International Publishing

Einloggen

Aktivieren Sie unsere intelligente Suche, um passende Fachinhalte oder Patente zu finden.

search-config

KI-gestützte Suche

Aus

Abstract

The article highlights the strong relevance and crucial importance of cyber security defence and response capacities in CBRNeCy assets and management, including in ICS and SCADA systems. Based on the overview of the recent cyber security publications and available information on global cybercrime, it reviews types of cyber and cyber related physical attacks on CBRN Industrial Control Systems; classifies attack types and defence techniques by network layer of attack; analyses security testing approaches based on knowledge of the targeted system, and evaluates types of due protection. The proper combination of existing physical security measures and cyber security testing exercises is considered, by the authors, as one of the most efficient ways to ensure sufficient protection against increasing global cyber threats to CBRNeCy infrastructures. The paper deals also with the best security practises, and contains enumeration of the globally recognized testing techniques and methodologies required to design effective multi-disciplinary security measures, thus providing a substantial ground for their practical implementation in the areas of concern.

Sie haben noch keine Lizenz? Dann Informieren Sie sich jetzt über unsere Produkte:

Springer Professional "Wirtschaft+Technik"

Online-Abonnement

Mit Springer Professional "Wirtschaft+Technik" erhalten Sie Zugriff auf:

über 102.000 Bücher
über 537 Zeitschriften

aus folgenden Fachgebieten:

Automobil + Motoren
Bauwesen + Immobilien
Business IT + Informatik
Elektrotechnik + Elektronik
Energie + Nachhaltigkeit
Finance + Banking
Management + Führung
Marketing + Vertrieb
Maschinenbau + Werkstoffe
Versicherung + Risiko

Jetzt Wissensvorsprung sichern!

Jetzt informieren

Springer Professional "Technik"

Online-Abonnement

Mit Springer Professional "Technik" erhalten Sie Zugriff auf:

über 67.000 Bücher
über 390 Zeitschriften

aus folgenden Fachgebieten:

Automobil + Motoren
Bauwesen + Immobilien
Business IT + Informatik
Elektrotechnik + Elektronik
Energie + Nachhaltigkeit
Maschinenbau + Werkstoffe

Jetzt Wissensvorsprung sichern!

Jetzt informieren

Springer Professional "Wirtschaft"

Online-Abonnement

Mit Springer Professional "Wirtschaft" erhalten Sie Zugriff auf:

über 67.000 Bücher
über 340 Zeitschriften

aus folgenden Fachgebieten:

Bauwesen + Immobilien
Business IT + Informatik
Finance + Banking
Management + Führung
Marketing + Vertrieb
Versicherung + Risiko

Jetzt Wissensvorsprung sichern!

Jetzt informieren

Vorheriges Kapitel A Reflection on the Future of the CBRN Security Paradigm

Nächstes Kapitel NATO’s Response to CBRN Events

http://www.un.org/ga/search/view_doc.asp?symbol=A/RES/53/70

Report of the Group of Governmental Experts on Developments in the Field of Information and Telecommunications in the Context of International Security, 68th General Assembly, A/68/98, June 2013, pp. 8–11.

http://www.un.org/ga/search/view_doc.asp?symbol=A/70/174

http://www.securityfocus.com/news/6767

https://www.schneier.com/blog/archives/2008/01/hacking_the_pol.html

https://www.cia.gov/library/reports/general-reports-1/terrorist_cbrn/terrorist_CBRN.htm

http://www.computerworld.com/s/article/9226469/Iran_confirms_cyberattacks_against_oil_facilities

http://www.darkreading.com/attacks-breaches/banking-trojans-disguised-as-ics-scada-software-infecting-plants/d/d-id/1318542

http://www.ibtimes.com/us-confirms-blackenergy-malware-used-ukrainian-power-plant-hack-2263008

http://europe.newsweek.com/dyn-north-korea-bureau-121-ddos-hackers-internet-attacks-513098?rm=eu

The publications by the following authors were the most relevant and considerably contributed to the present research: C. Baylon, I. Brown, R. Brunt, Fernandez, M. Martellini, K. Wilhoit. The same refers to the publications of the following organizations: Industrial Control Systems Cyber Emergency Response Team (ICS-CERT), Institute of Electrical and Electronics (IEEE), Cornell University of Law.

https://www.schneier.com/blog/archives/2016/06/issues_regardin.html

IEEE 12th Symposium on Visualization for Cyber Security (VizSec 2015).

https://www.usna.edu/CyberDept/sy110/lec/crsIntro/lec.html

http://www.nato.int/cps/en/natohq/topics_78170.htm

https://cs.stanford.edu/people/eroberts/cs181/projects/ethics-of surveillance/tech_wiretapping.html

https://www.first.org/cvss/v2/guide

https://www.symantec.com/security_response/glossary/define.jsp?letter=a&word=attack-scenario – last accessed 2016-09-29.

http://cordis.europa.eu/project/rcn/98969_en.html

http://www.practice-fp7-security.eu/cms,article,2,toolbox.html

https://www.ffi.no/no/Aktuelle-tema/Documents/Updated%20article%20for%20the%20Defence%20Global%20Publication.pdf

https://ccdcoe.org/cyber-security-strategy-documents.html

https://www.un.org/disarmament/topics/informationsecurity

http://standards.ieee.org/

https://www.gov.uk/government/uploads/system/uploads/attachment_data/file/62647/CyberCommunique-Final.pdf

Bennett, S.: A Brief History of Automatic Control. IEEE (1996)

Boudriga, N.: Security of mobile communications. Boca Raton. CRC Press (2010)

C. Baylon, R. D.: Cyber Security at Civil Nuclear Facilities,. Clatham House Report (2015)

Chatham House: Emerging Risk Report – 2016, Use of Chemical, Biological, Radiological and Nuclear Weapons by Non-State Actors. Chatham House, The Royal Institute of International Affairs (2016)

Cornell University of Law: 44 U.S. Code § 3542 - Definitions. (1992) Retrieved from Cornell University of Law Web site: https://www.law.cornell.edu/uscode/text/44/3542

Fernandez, I.: Cybersecurity for Industrial Automation & Control Environments: Protection and Prevention Strategies in the Face of the Growing Threats. Frost & Sullivan (2013)

Gasser, M.: Building a Secure Computer System. Van Nostrand Reinhold (1988)

Hayden, E.: An Abbreviated History of Automation & Industrial Controls Systems and Cybersecurity. SANS Institute (2015)

Hege Schultz Heireng, M. E.: THE DEVELOPMENT AND USE OF CBRN SCENARIOS FOR EMERGENCY PREPAREDNESS ANALYSES. FOI (2015)

10.

ICS-CERT: 10 Basic Cybersecurity Measure. US-CERT (2015)

11.

ICS-CERT: Industrial Control Systems Cyber Emergency Response Team (2016) Retrieved from https://ics-cert.us-cert.gov

12.

IEEE: IEEE Communications Surveys and Tutorials. IEEE (2012)

13.

IEEE Communications Surveys & Tutorials: Introduction to Industrial Control Networks. IEEE (2013)

14.

Martellini, M.: Deterrence and IT Protection for Critical Infrastructures. Springer (2013)

15.

NIST: Guide to Intrusion Detection and Prevention Systems. NIST (2007)

16.

NIST: Technical Guide to the Information Security Testing and Assessment. National Institute of Standards and Technology Special Publication (2008)

17.

Paske, E. L.: Cyber Security of Industrial Control Systems, Global Conference on Cyber Space (2015)

18.

Stout, T. M., & Williams, T. J.: Pioneering Work in the Field of Computer Process Control. IEEE Annals of the History of Computing (1995)

19.

US Department of State: Cyber Security for Nuclear Power Plants. Washington: US Department of State (2012)

20.

Vanessa Romero Segovia, A. T.: History of PLC and DCS (2012)

21.

Verizon: Data Breach digest. Scenarios from the field. Verizon (2016)

22.

Wamala, F.: National Cybersecurity Strategy Guide. International Telecommunication Union (2011)

23.

Wilson, C.: Cyberpower and National Security (2009)

24.

Wilson, C.: Cyberterrorism: Understanding, Assessment, and Response. Swansea University (2014)

Titel: Selected Issues of Cyber Security Practices in CBRNeCy Critical Infrastructure
verfasst von: Stanislav Abaimov
Maurizio Martellini
Verlag: Springer International Publishing
Buch: Cyber and Chemical, Biological, Radiological, Nuclear, Explosives Challenges
Print ISBN: 978-3-319-62107-4

Electronic ISBN: 978-3-319-62108-1

Copyright-Jahr: 2017
DOI: https://doi.org/10.1007/978-3-319-62108-1_2

Springer Professional

Abstract

Bitte loggen Sie sich ein, um Zugang zu Ihrer Lizenz zu erhalten.

Sie haben noch keine Lizenz? Dann Informieren Sie sich jetzt über unsere Produkte:

Springer Professional "Wirtschaft+Technik"

Springer Professional "Technik"

Springer Professional "Wirtschaft"