A framework for operational security metrics development for industrial control environment

Daniel Ani, Uchenna P.; He, Hongmei; Tiwari, Ashutosh

A framework for operational security metrics development for industrial control environment

dc.contributor.author	Daniel Ani, Uchenna P.
dc.contributor.author	He, Hongmei
dc.contributor.author	Tiwari, Ashutosh
dc.date.accessioned	2019-01-10T18:47:28Z
dc.date.available	2019-01-10T18:47:28Z
dc.date.issued	2018-12-13
dc.description.abstract	Security metrics are very crucial towards providing insights when measuring security states and susceptibilities in industrial operational environments. Obtaining practical security metrics depend on effective security metrics development approaches. To be effective, a security metrics development framework should be scope-definitive, objective-oriented, reliable, simple, adaptable, and repeatable (SORSAR). A framework for Operational Security Metrics Development (OSMD) for industry control environments is presented, which combines concepts and characteristics from existing approaches. It also adds the new characteristic of adaptability. The OSMD framework is broken down into three phases of: target definition, objective definition, and metrics synthesis. A case study scenario is used to demonstrate an instance of how to implement and apply the proposed framework to demonstrate its usability and workability. Expert elicitation has also be used to consolidate the validity of the proposed framework. Both validation approaches have helped to show that the proposed framework can help create effective and efficient ICS-centric security metrics taxonomy that can be used to evaluate capabilities or vulnerabilities. The understanding from this can help enhance security assurance within industrial operational environments.	en_UK
dc.identifier.citation	Ani UPD, He H, Tiwari A. A framework for operational security metrics development for industrial control environment. Journal of Cyber Security Technology, Volume 2, Issue 3-4, 2018, pp. 201-237	en_UK
dc.identifier.issn	2374-2917
dc.identifier.uri	https://doi.org/10.1080/23742917.2018.1554986
dc.identifier.uri	http://dspace.lib.cranfield.ac.uk/handle/1826/13811
dc.language.iso	en	en_UK
dc.publisher	Taylor and Francis	en_UK
dc.rights	Attribution-NonCommercial 4.0 International	*
dc.rights.uri	http://creativecommons.org/licenses/by-nc/4.0/	*
dc.subject	OSMD framework	en_UK
dc.subject	security metrics	en_UK
dc.subject	Operational Security metrics	en_UK
dc.subject	industry control environments	en_UK
dc.subject	security measurement	en_UK
dc.title	A framework for operational security metrics development for industrial control environment	en_UK
dc.type	Article	en_UK

Files

Original bundle

Now showing 1 - 1 of 1

Name:: operational_security_metrics_development-2018.pdf
Size:: 599.98 KB
Format:: Adobe Portable Document Format
Description:

Download

License bundle

Now showing 1 - 1 of 1

Name:: license.txt
Size:: 1.63 KB
Format:: Item-specific license agreed upon to submission
Description:

Download

Collections

Staff publications (SATM)