A Cybersecurity Risk Assessment Process for Model-Based Industry 4.0 Development

Resource type
Conference
Author(s)
Matthias Kern, Thomas Glock, Victor Pazmino Betancourt, Bo Liu, Eric Sax, Jürgen Becker
Year
2019
Pages
111-116
Month
July
Note
ISBN - Volume II: 978-1-950492-09-1 (Print)
Book title
Proceedings of the 23rd World Multi-Conference onSystemics, Cybernetics and Informatics: WMSCI 2019, Volume II
Abstract
Cybersecurity risk assessments are important to define a well-justified cybersecurity concept that regards the trade-off between security, costs, and performance. Heading toward Industry 4.0 (I4.0), plants get connected with an increasing amount of sensors and functionalities that have more and more communication interfaces and paths. This leads to a growing cybersecurity attack surface and a higher complexity compared to current plants. Today, a well-structured course of action for a cybersecurity risk assessment is missing in the domain I4.0. Therefore, in this paper, a cybersecurity risk-assessment process containing an asset- , a threat- and an attack-analysis with adapted methodologies from other domains is proposed and the necessary terms for the approach are introduced. Furthermore, a model-based approach is proposed and its prototypical implementation supporting the proposed cybersecurity risk assessment process. Finally, the evaluation of the approach was done by applying it to an industrial use-case.
Online Sources
https://www.iiis.org/CDs2019/CD2019Summer/papers/RA965YQ.pdf
Download .bib
Download .bib
Published by
Matthias Kern