The multifaceted nature of cyber-physical systems needs holistic study methods to detect essential aspects and interrelations among physical and cyber components. Like the systems themselves, security threats feature both cyber and physical elements. Although to apply divide et impera approaches helps handling system complexity, to consider just one aspect at a time does not provide adequate risk awareness and hence does not allow to design the most appropriate countermeasures. To support this claim, in this paper we provide a joint application of two model-driven techniques for physical and cyber-security evaluation. We apply two UML profiles, namely SecAM (for cyber-security) and CIP_VAM (for physical security), in combination. In such a way, we demonstrate the synergy between both profiles and the need for their tighter integration in the context of a reference case study from the railway domain.

On synergies of cyber and physical security modelling in vulnerability assessment of railway systems / Marrone, S; Rodriguez, Rj; Nardone, R; Flammini, F; Vittorini, V. - In: COMPUTERS & ELECTRICAL ENGINEERING. - ISSN 0045-7906. - 47:(2015), pp. 275-285. [10.1016/j.compeleceng.2015.07.011]

On synergies of cyber and physical security modelling in vulnerability assessment of railway systems

Nardone R;
2015-01-01

Abstract

The multifaceted nature of cyber-physical systems needs holistic study methods to detect essential aspects and interrelations among physical and cyber components. Like the systems themselves, security threats feature both cyber and physical elements. Although to apply divide et impera approaches helps handling system complexity, to consider just one aspect at a time does not provide adequate risk awareness and hence does not allow to design the most appropriate countermeasures. To support this claim, in this paper we provide a joint application of two model-driven techniques for physical and cyber-security evaluation. We apply two UML profiles, namely SecAM (for cyber-security) and CIP_VAM (for physical security), in combination. In such a way, we demonstrate the synergy between both profiles and the need for their tighter integration in the context of a reference case study from the railway domain.
2015
Cyber-physical systems, Vulnerability assessment, UML profile, Bayesian networks, Generalized stochastic Petri nets
File in questo prodotto:
File Dimensione Formato  
Marrone_2015_Compeleceng_Synergies_Editor.pdf

non disponibili

Tipologia: Versione Editoriale (PDF)
Licenza: Tutti i diritti riservati (All rights reserved)
Dimensione 922.76 kB
Formato Adobe PDF
922.76 kB Adobe PDF   Visualizza/Apri   Richiedi una copia
Marrone_2015_Compeleceng_Synergies_Pre.pdf

accesso aperto

Descrizione: Versione PRE-PRINT
Tipologia: Altro materiale allegato
Licenza: Tutti i diritti riservati (All rights reserved)
Dimensione 1.51 MB
Formato Adobe PDF
1.51 MB Adobe PDF Visualizza/Apri

I documenti in IRIS sono protetti da copyright e tutti i diritti sono riservati, salvo diversa indicazione.

Utilizza questo identificativo per citare o creare un link a questo documento: https://hdl.handle.net/20.500.12318/47273
Citazioni
  • ???jsp.display-item.citation.pmc??? ND
  • Scopus 37
  • ???jsp.display-item.citation.isi??? 28
social impact