| Popis: |
Cyber-physical systems (CPS) are used to control and monitor a nation's critical infrastructure. Unfortunately the security of these systems is often lacking. They were not designed with security in mind and often contain legacy components with known vulnerabilities. System owners are often not aware that these vulnerabilities are present, or what their impact may be on system operations when they are exploited. To help the system owners with these issues, the FAST-CPS framework has been developed [Lemaire, et al. A Logic-Based Framework for the Security Analysis of Industrial Control Systems, Automatic Control and Computer Sciences, volume 51, issue 2, pages 114-123, 2017]. FAST-CPS offers an automatic security analysis of cyber-physical systems based on a model of the system: Vulnerabilities are extracted and their effects on the system processes are returned, a data flow analysis is performed to identify conflicts between the different stakeholders in the system, and attack trees are automatically constructed for selected attacker goals in order to help with a qualitative risk assessment of the system. This article demonstrates the workings of the FAST-CPS framework on a real-life case study: an industrial hatchery. ispartof: CW Reports nrpages: 29 status: published |
