Gespeichert in:
Bibliographische Detailangaben
Hauptverfasser: Otto, Jens, Grüttemeier, Niels, Specht, Felix
Format: Preprint
Veröffentlicht: 2024
Schlagworte:
Online-Zugang:https://arxiv.org/abs/2406.10287
Tags: Tag hinzufügen
Keine Tags, Fügen Sie den ersten Tag hinzu!
_version_ 1866929537177092096
author Otto, Jens
Grüttemeier, Niels
Specht, Felix
author_facet Otto, Jens
Grüttemeier, Niels
Specht, Felix
contents Cyber-physical production systems consist of highly specialized software and hardware components. Most components and communication protocols are not built according to the Secure by Design principle. Therefore, their resilience to cyberattacks is limited. This limitation can be overcome with common operational pictures generated by security monitoring solutions. These pictures provide information about communication relationships of both attacked and non-attacked devices, and serve as a decision-making basis for security officers in the event of cyberattacks. The objective of these decisions is to isolate a limited number of devices rather than shutting down the entire production system. In this work, we propose and evaluate a concept for finding the devices to isolate. Our approach is based on solving the Critical Node Cut Problem with Vulnerable Vertices (CNP-V) - an NP-hard computational problem originally motivated by isolating vulnerable people in case of a pandemic. To the best of our knowledge, this is the first work on applying CNP-V in context of cybersecurity.
format Preprint
id arxiv_https___arxiv_org_abs_2406_10287
institution arXiv
publishDate 2024
record_format arxiv
spellingShingle Security Decisions for Cyber-Physical Systems based on Solving Critical Node Problems with Vulnerable Nodes
Otto, Jens
Grüttemeier, Niels
Specht, Felix
Cryptography and Security
Artificial Intelligence
Cyber-physical production systems consist of highly specialized software and hardware components. Most components and communication protocols are not built according to the Secure by Design principle. Therefore, their resilience to cyberattacks is limited. This limitation can be overcome with common operational pictures generated by security monitoring solutions. These pictures provide information about communication relationships of both attacked and non-attacked devices, and serve as a decision-making basis for security officers in the event of cyberattacks. The objective of these decisions is to isolate a limited number of devices rather than shutting down the entire production system. In this work, we propose and evaluate a concept for finding the devices to isolate. Our approach is based on solving the Critical Node Cut Problem with Vulnerable Vertices (CNP-V) - an NP-hard computational problem originally motivated by isolating vulnerable people in case of a pandemic. To the best of our knowledge, this is the first work on applying CNP-V in context of cybersecurity.
title Security Decisions for Cyber-Physical Systems based on Solving Critical Node Problems with Vulnerable Nodes
topic Cryptography and Security
Artificial Intelligence
url https://arxiv.org/abs/2406.10287