Cyber-physical Systems of Systems (SoSs) are large-scale systems made of independent and autonomous cyber-physical Constituent Systems (CSs) which may interoperate to achieve high-level goals also with the intervention of humans. Providing security in such SoSs means, among other features, forecasting and anticipating evolving SoS functionalities, ultimately identifying possible detrimental phenomena that may result from the interactions of CSs and humans. Such phenomena, usually called emergent phenomena, are often complex and difficult to capture: the first appearance of an emergent phenomenon in a cyber-physical SoS is often a surprise to the observers. Adequate support to understand emergent phenomena will assist in reducing both the likelihood of design or operational flaws, and the time needed to analyze the relations amongst the CSs, which always has a key economic significance. This paper presents a threat analysis methodology and a supporting tool aimed at i) identifying (emerging) threats in evolving SoSs, ii) reducing the cognitive load required to understand an SoS and the relations among CSs, and iii) facilitating SoS risk management by proposing mitigation strategies for SoS administrators. The proposed methodology, as well as the tool, is empirically validated on Smart Grid case studies by submitting questionnaires to a user base composed of 3 stakeholders and 18 BSc and MSc students.
Threat Analysis in Systems-of-Systems: An Emergence-Oriented Approach / ANDREA CECCARELLI, TOMMASO ZOPPI, ALEXANDR VASENEV, MARCO MORI, DAN IONITA, LORENA MONTOYA, ANDREA BONDAVALLI. - In: ACM TRANSACTIONS ON CYBER-PHYSICAL SYSTEMS. - ISSN 2378-962X. - ELETTRONICO. - 3:(2019), pp. 1-24. [10.1145/3234513]
Threat Analysis in Systems-of-Systems: An Emergence-Oriented Approach
ANDREA CECCARELLI;TOMMASO ZOPPI;MARCO MORI;ANDREA BONDAVALLI
2019
Abstract
Cyber-physical Systems of Systems (SoSs) are large-scale systems made of independent and autonomous cyber-physical Constituent Systems (CSs) which may interoperate to achieve high-level goals also with the intervention of humans. Providing security in such SoSs means, among other features, forecasting and anticipating evolving SoS functionalities, ultimately identifying possible detrimental phenomena that may result from the interactions of CSs and humans. Such phenomena, usually called emergent phenomena, are often complex and difficult to capture: the first appearance of an emergent phenomenon in a cyber-physical SoS is often a surprise to the observers. Adequate support to understand emergent phenomena will assist in reducing both the likelihood of design or operational flaws, and the time needed to analyze the relations amongst the CSs, which always has a key economic significance. This paper presents a threat analysis methodology and a supporting tool aimed at i) identifying (emerging) threats in evolving SoSs, ii) reducing the cognitive load required to understand an SoS and the relations among CSs, and iii) facilitating SoS risk management by proposing mitigation strategies for SoS administrators. The proposed methodology, as well as the tool, is empirically validated on Smart Grid case studies by submitting questionnaires to a user base composed of 3 stakeholders and 18 BSc and MSc students.File | Dimensione | Formato | |
---|---|---|---|
acmtcps.pdf
Accesso chiuso
Tipologia:
Pdf editoriale (Version of record)
Licenza:
Open Access
Dimensione
1.67 MB
Formato
Adobe PDF
|
1.67 MB | Adobe PDF | Richiedi una copia |
I documenti in FLORE sono protetti da copyright e tutti i diritti sono riservati, salvo diversa indicazione.