A Cyber Security Digital Twin for Critical Infrastructure Protection: The Intelligent Transport System Use Case
Fiche du document
24 novembre 2021
- handle: 10670/1.xotkdt
- isbn: 978-3-030-91278-9
- hal: hal-04323852
- doi: 10.1007/978-3-030-91279-6_16
Ce document est lié à :
info:eu-repo/semantics/altIdentifier/doi/10.1007/978-3-030-91279-6_16
http://creativecommons.org/licenses/by/
Mots-clés
Cyber security Digital twin Threat modeling C-ITSSujets proches
Natural science Sciences Science of science Case Pattern ModelCiter ce document
Giovanni Paolo Sellitto et al., « A Cyber Security Digital Twin for Critical Infrastructure Protection: The Intelligent Transport System Use Case », HAL-SHS : sciences de l'information, de la communication et des bibliothèques, ID : 10.1007/978-3-030-91279-6_16
Métriques
Partage / Export
Résumé
The problem of performing cybersecurity tests over existing industrial control systems is well-known. Once it is deployed, a critical system cannot be made unavailable for the purpose of simulating a cyber attack and thus it is hard to introduce corrective measures based on actual test outcomes. On the other hand, a high security posture is required for critical infrastructure and security by design is mandatory for new projects. Such requirements call for an architectural approach to introduce security straight from the early development phases. However, the adoption of a systematic design approach does not guarantee the cost-effectiveness of security countermeasures analysis, which is an extremely cumbersome task as the creation of a physical model is often costly or impossible.To address these issues, we propose the introduction of a specific view in the system’s architectural blueprint, called the Cybersecurity Digital Twin. It is an Enterprise Architecture model of the system specifically targeted at providing a sound base for simulations in order to devise proper countermeasures without any outage of the physical infrastructure. To provide a proof of concept and demonstrate the practical viability of the proposed solution, we apply the methodology to a Cooperative Intelligent Transport System use case, evaluating the system security of the obtained solution.