Method for quantitative risk assessment of cyber-physical systems based on vulnerability analysis
Kybernetika, Tome 60 (2024) no. 6, pp. 779-796
Cet article a éte moissonné depuis la source Czech Digital Mathematics Library
Cyber-physical system protection against cyber-attacks is a serious problem that requires methods for assessing the cyber security risks. This paper proposes a quantitative metric to evaluate the risks of cyber-physical systems using the fuzzy Sugeno integral. The simulated attack graph, consisting of vulnerable system components, allows for obtaining various parameters for assessing the risks of attack paths characterizing the elements in the cyber and physical environment and are combined into a single quantitative assessment. Experiments are performed on a threat model using the example of a cyber-physical system for wind energy generation. The model integrates a cyber-physical network's topology and vulnerabilities, proving the proposed method's effectiveness in ensuring cyber resilience.
Cyber-physical system protection against cyber-attacks is a serious problem that requires methods for assessing the cyber security risks. This paper proposes a quantitative metric to evaluate the risks of cyber-physical systems using the fuzzy Sugeno integral. The simulated attack graph, consisting of vulnerable system components, allows for obtaining various parameters for assessing the risks of attack paths characterizing the elements in the cyber and physical environment and are combined into a single quantitative assessment. Experiments are performed on a threat model using the example of a cyber-physical system for wind energy generation. The model integrates a cyber-physical network's topology and vulnerabilities, proving the proposed method's effectiveness in ensuring cyber resilience.
DOI :
10.14736/kyb-2024-6-0779
Classification :
68M15
Keywords: cyber-physical system; risk assessment; attack graph; graph centrality measures; Sugeno $\lambda $‐measure; fuzzy Sugeno integral; attack path
Keywords: cyber-physical system; risk assessment; attack graph; graph centrality measures; Sugeno $\lambda $‐measure; fuzzy Sugeno integral; attack path
@article{10_14736_kyb_2024_6_0779,
author = {Alguliyev, Rasim and Aliguliyev, Ramiz and Sukhostat, Lyudmila},
title = {Method for quantitative risk assessment of cyber-physical systems based on vulnerability analysis},
journal = {Kybernetika},
pages = {779--796},
year = {2024},
volume = {60},
number = {6},
doi = {10.14736/kyb-2024-6-0779},
zbl = {07980822},
language = {en},
url = {http://geodesic.mathdoc.fr/articles/10.14736/kyb-2024-6-0779/}
}
TY - JOUR AU - Alguliyev, Rasim AU - Aliguliyev, Ramiz AU - Sukhostat, Lyudmila TI - Method for quantitative risk assessment of cyber-physical systems based on vulnerability analysis JO - Kybernetika PY - 2024 SP - 779 EP - 796 VL - 60 IS - 6 UR - http://geodesic.mathdoc.fr/articles/10.14736/kyb-2024-6-0779/ DO - 10.14736/kyb-2024-6-0779 LA - en ID - 10_14736_kyb_2024_6_0779 ER -
%0 Journal Article %A Alguliyev, Rasim %A Aliguliyev, Ramiz %A Sukhostat, Lyudmila %T Method for quantitative risk assessment of cyber-physical systems based on vulnerability analysis %J Kybernetika %D 2024 %P 779-796 %V 60 %N 6 %U http://geodesic.mathdoc.fr/articles/10.14736/kyb-2024-6-0779/ %R 10.14736/kyb-2024-6-0779 %G en %F 10_14736_kyb_2024_6_0779
Alguliyev, Rasim; Aliguliyev, Ramiz; Sukhostat, Lyudmila. Method for quantitative risk assessment of cyber-physical systems based on vulnerability analysis. Kybernetika, Tome 60 (2024) no. 6, pp. 779-796. doi: 10.14736/kyb-2024-6-0779
Cité par Sources :