The Library
Threat modelling for industrial cyber physical systems in the era of smart manufacturing
Tools
Jbair, Mohammad, Ahmad, Bilal, Maple, Carsten and Harrison, Robert (2022) Threat modelling for industrial cyber physical systems in the era of smart manufacturing. Computers in Industry, 137 . 103611. doi:10.1016/j.compind.2022.103611 ISSN 2049-4297.
|
PDF
1-s2.0-S0166361522000069-main.pdf - Published Version - Requires a PDF viewer. Available under License Creative Commons Attribution 4.0. Download (6Mb) | Preview |
Official URL: http://dx.doi.org/10.1016/j.compind.2022.103611
Abstract
Cyber security risks are considered to be one of the foremost challenges that face organisations intending to leverage the benefits of the Smart Manufacturing paradigm. Due to the rising number of cyber-attacks that target critical Industrial Cyber-Physical Systems (ICPS), organisations are required to consider such attacks as severe business risks. Therefore, identifying potential cyber threats and analysing their impacts is crucial to business continuity planning. This paper proposes a structured threat modelling approach for ICPS that enables prediction and analysis of cyber risks to protect industrial assets from potential cyber-attacks. The method involves classifying ICPS assets based on criticality, and then analysing the cyber security vulnerabilities, threats, risks, impacts, and countermeasures. The proposed methodology enables end-to-end threat modelling through the development of a new framework that is integrated with VueOne digital twin tool to model and analyse threats throughout ICPS lifecycle, identifying cyber risks and proposing mitigation controls. Moreover, it uses meta-data extracted from VueOne tool to automatically generate the software code and hardware configurations that can be directly deployed on ICPS assets in order to implement the countermeasures, thereby protecting them from these potential cyber-attacks. The proposed solution has been implemented on a Festo test rig prototype production line.
Item Type: | Journal Article | ||||||||||||
---|---|---|---|---|---|---|---|---|---|---|---|---|---|
Subjects: | H Social Sciences > HD Industries. Land use. Labor Q Science > QA Mathematics > QA76 Electronic computers. Computer science. Computer software T Technology > TS Manufactures |
||||||||||||
Divisions: | Faculty of Science, Engineering and Medicine > Engineering > WMG (Formerly the Warwick Manufacturing Group) | ||||||||||||
Library of Congress Subject Headings (LCSH): | Computer security, Cyber intelligence (Computer security), Intrusion detection systems (Computer security) , Computer networks -- Security measures, Business enterprises -- Computer networks -- Security measures, Manufacturing processes -- Technological innovations -- Security measures, Manufacturing processes -- Automation -- Security measures | ||||||||||||
Journal or Publication Title: | Computers in Industry | ||||||||||||
Publisher: | Elsevier BV | ||||||||||||
ISSN: | 2049-4297 | ||||||||||||
Official Date: | May 2022 | ||||||||||||
Dates: |
|
||||||||||||
Volume: | 137 | ||||||||||||
Article Number: | 103611 | ||||||||||||
DOI: | 10.1016/j.compind.2022.103611 | ||||||||||||
Status: | Peer Reviewed | ||||||||||||
Publication Status: | Published | ||||||||||||
Access rights to Published version: | Open Access (Creative Commons) | ||||||||||||
Date of first compliant deposit: | 21 February 2023 | ||||||||||||
Date of first compliant Open Access: | 21 February 2023 | ||||||||||||
RIOXX Funder/Project Grant: |
|
Request changes or add full text files to a record
Repository staff actions (login required)
View Item |
Downloads
Downloads per month over past year