Search CORE

4,243 research outputs found

Assessing and augmenting SCADA cyber security: a survey of techniques

Author: Almalawi
August
Baecher
Boldea
Bouchti
Brand
Byres
Bytschkow
Carcano
Cavalieri
Chabuksawar
Cherdantseva
Ciancamerla
Clarke
Constantin
Curtis
Davies
Dilip Patel
Disso
Dondossola
Dong
Downs
ENISA
Erol-Kantarci
Farooqui
Fovino
Fovino
Genge
Genge
Giani
Goldenberg
Guide to industrial control systems (ICS)
Hahn
Hemingway
Henry
Henry
Honeyd
Hug
Huitsing
IEEE Standard for Modeling and Simulation (M&S) High Level Architecture (HLA)– Framework and Rules
Igure
Information Security Management (ISMS)
Jain
Jiang
Jin
Kesler
Kirsch
Langner
Leitner
Leszczyna
Li
Li
Li
MacDermott
Mahboob
Mahoney
Mallouhi
Markovic-Petrovic
Mathioudakis
Maynard
Metasploit
Mets
Microsoft Security Bulletins
Mo
Moore
Morris
Moya
Nader
NETA
nmap
Novak
O'Kane
Oman
OpenSCADA
OSSEC
OSSIM
Pauna
Peterson
Pham
Phillips
Pidikiti
Piggin
Protecting Industrial Control Systems
Queiroz
Queiroz
Ralston
Roberts
Sajid Nazir
SCADA
Scarfone
Scarfone
Schneier
Shushma Patel
Simmhan
Slay
Snort
Sploitware
Sridhar
Srivastava
Stouffer
Symantec Security Response
Süß
Ten
Ten
Ten
Tesfahun
Torrisi
Urias
Vijayan
White paper
Winn
Wu
Xie
Yang
Yang
Yang
Zhang
Zhang
Zhu
Ćardenas
Publication venue: 'Elsevier BV'
Publication date: 01/01/2017
Field of study

SCADA systems monitor and control critical infrastructures of national importance such as power generation and distribution, water supply, transportation networks, and manufacturing facilities. The pervasiveness, miniaturisations and declining costs of internet connectivity have transformed these systems from strictly isolated to highly interconnected networks. The connectivity provides immense benefits such as reliability, scalability and remote connectivity, but at the same time exposes an otherwise isolated and secure system, to global cyber security threats. This inevitable transformation to highly connected systems thus necessitates effective security safeguards to be in place as any compromise or downtime of SCADA systems can have severe economic, safety and security ramifications. One way to ensure vital asset protection is to adopt a viewpoint similar to an attacker to determine weaknesses and loopholes in defences. Such mind sets help to identify and fix potential breaches before their exploitation. This paper surveys tools and techniques to uncover SCADA system vulnerabilities. A comprehensive review of the selected approaches is provided along with their applicability

LSBU Research Open

Crossref

ResearchOnline@GCU

A survey on cyber security for smart grid communications

Author: Qian Y
Sharif H
Tipper D
Yan Y
Publication venue: 'Institute of Electrical and Electronics Engineers (IEEE)'
Publication date: 01/01/2012
Field of study

A smart grid is a new form of electricity network with high fidelity power-flow control, self-healing, and energy reliability and energy security using digital communications and control technology. To upgrade an existing power grid into a smart grid, it requires significant dependence on intelligent and secure communication infrastructures. It requires security frameworks for distributed communications, pervasive computing and sensing technologies in smart grid. However, as many of the communication technologies currently recommended to use by a smart grid is vulnerable in cyber security, it could lead to unreliable system operations, causing unnecessary expenditure, even consequential disaster to both utilities and consumers. In this paper, we summarize the cyber security requirements and the possible vulnerabilities in smart grid communications and survey the current solutions on cyber security for smart grid communications. © 2012 IEEE

CiteSeerX

Crossref

D-Scholarship@Pitt

The future of Cybersecurity in Italy: Strategic focus area

Author: Anglano C.
Aniello L.
Antinori A.
Armando A.
Aversa R.
Baldi Marco
Baldoni R.
Barili A.
Bartoletti M.
Bellini M.
Bergadano F.
Bernardeschi C.
Bianchi E.
Biancotti C.
Bistarelli S.
Blefari Melazzi N.
Boetti M.
Bondavalli A.
Bonomi .
Buccafurri F.
Cambiaso E.
Caputo B.
Carminati B.
Cataliotti F. S.
Catarci T.
Ceccarelli A.
Cesa Bianchi N.
Chiaraluce F.
Colajanni M.
Conti M.
Conti M.
Coppolino L.
Costa G.
Costamagna V.
Cotroneo D.
Crispo B.
Cucchiara R.
Damiani E.
De Nicola R.
De Nicola R.
De Santis A.
Degiovanni I. P.
Demetrescu C.
Di Battista G.
Di Corinto A.
Di Luna A.
Di Martino B.
Di Natale G.
Dini G.
D’Antonio S.
Evangelisti M.
Falcinelli D.
Ferretti M.
Ficco M.
Figà G.
Flocchini P.
Flottes M.
Focardi R.
Franchina . Furfaro
Girdinio P.
Guida F.
Italiano G. F.
Lain D.
Laurenti N.
Lioy A.
Loreti M.
Malerba D.
Mancini L. V.
Marchetti Spaccamela A.
Marcialis G.
Margheri A.
Marrella A.
Martinelli F.
Martinelli M.
Martino L.
Massacci F.
Mayer M.
Mecella M.
Mensi M.
Merlo A.
Miculan M.
Montanari L.
Morana M.
Mosco G. D.
Mostarda L.
Murino V.
Nardi D.
Navigli R.
Palazzi A.
Palmieri F.
Panetta I. C.
Passarella A.
Pellegrini A.
Pellegrino G.
Pelosi G.
Pirlo G.
Piuri V.
Pizzonia M.
Pogliani M.
Polino M.
Pontil M.
Prinetto P.
Prinetto P.
Quaglia F.
Quattrociocchi W.
Querzoni L.
Rak M.
Ranise S.
Ricci E.
Rossi L.
Rota P.
Russo L. O.
Samarati P.
Santoro N.
Santucci B.
Sassone V.
Scala A.
Scotti F.
Servida A.
Spagnoletti P.
Spalazzi L.
Spidalieri F.
Spoto A.
Squarcina M.
Stefanelli S.
Vecchio A.
Venticinque S.
Villoresi P.
Visaggio A.
Vitaletti A.
Zanero S.
Publication venue
Publication date: 01/01/2018
Field of study

This volume has been created as a continuation of the previous one, with the aim of outlining a set of focus areas and actions that the Italian Nation research community considers essential. The book touches many aspects of cyber security, ranging from the definition of the infrastructure and controls needed to organize cyberdefence to the actions and technologies to be developed to be better protected, from the identification of the main technologies to be defended to the proposal of a set of horizontal actions for training, awareness raising, and risk management

Archivio della ricerca- Università di Roma La Sapienza

Towards Adversarial Malware Detection: Lessons Learned from PDF-based Attacks

Author: Biggio Battista
Giacinto Giorgio
Maiorca Davide
Publication venue: 'Association for Computing Machinery (ACM)'
Publication date: 01/01/2019
Field of study

Malware still constitutes a major threat in the cybersecurity landscape, also due to the widespread use of infection vectors such as documents. These infection vectors hide embedded malicious code to the victim users, facilitating the use of social engineering techniques to infect their machines. Research showed that machine-learning algorithms provide effective detection mechanisms against such threats, but the existence of an arms race in adversarial settings has recently challenged such systems. In this work, we focus on malware embedded in PDF files as a representative case of such an arms race. We start by providing a comprehensive taxonomy of the different approaches used to generate PDF malware, and of the corresponding learning-based detection systems. We then categorize threats specifically targeted against learning-based PDF malware detectors, using a well-established framework in the field of adversarial machine learning. This framework allows us to categorize known vulnerabilities of learning-based PDF malware detectors and to identify novel attacks that may threaten such systems, along with the potential defense mechanisms that can mitigate the impact of such threats. We conclude the paper by discussing how such findings highlight promising research directions towards tackling the more general challenge of designing robust malware detectors in adversarial settings

arXiv.org e-Print Archive

Archivio istituzionale della ricerca - Università di Cagliari

Availability and Reliability Analysis of Computer Software Systems Considering Maintenance and Security Issues

Author: XIONG CHENGJIE
Publication venue
Publication date: 14/01/2011
Field of study

Ph.DDOCTOR OF PHILOSOPH

ScholarBank@NUS

Micro Smart Micro-grid and Its Cyber Security Aspects in a Port Infrastructure

Author: Bozzo Riccardo
Canepa Monica
Frugone Giampaolo
Schauer Stefan
Publication venue: 'Science Publishing Group'
Publication date: 01/01/2020
Field of study

Maritime ports are intensive energy areas with a plenty of electrical systems that require an average power of many tens of megawatts (MW). Competitiveness, profits, reduction of pollution, reliability of operations, carbon emission trading are important energy related considerations for any port authority. Current technology allows the deployment of a local micro-grid of the size of tenths of MW, capable of islanded operation in case of emergency and to grant an increasing energy independency. Ownership of the grid permits a large flexibility on prices of energy sold inside the port, trading on local electric market and reduction of pollution. Renewable energy generation has a large impact on costs since features a low marginal cost. Unfortunately the smart grid is a critical asset within the port infrastructure and its intelligence is a high-level target for cyberattacks. Such attacks are often based on malicious software (malware), which makes use of a controlling entity on the network to coordinate and propagate. In this document, we will outline some features of a port smart grid and typical characteristics of cyber-attacks including potential ways to recognize it and suggestion for effective countermeasures

Archivio istituzionale della ricerca - Università di Genova