TY - GEN
T1 - Water Risk-Proofed
T2 - 5th Workshop on CPS and IoT Security and Privacy, CPSIoTSec 2023
AU - Alfageh, Alyah
AU - Adepu, Sridhar
AU - Konstantinou, Charalambos
N1 - Publisher Copyright:
© 2023 Owner/Author.
PY - 2023/11/26
Y1 - 2023/11/26
N2 - Desalination plants, heavily reliant on Industrial Control Systems (ICS), have emerged as increasingly vital resources in the wake of escalating global water scarcity. This raises an urgent need to prioritize their security, calling for the implementation of robust risk assessment measures. Recognizing these pressing issues, this paper proposes a risk assessment approach for ICS within water desalination facilities. The strategy integrates the capabilities of Bayesian Networks (BNs) and Dynamic Programming (DP). It evolves BNs into Multilevel Bayesian Networks (MBNs), an innovative form that adeptly navigates the intricacies of system complexity, facilitates efficient inference, and dynamically adapts risk profiles. The proposed methodology considers the perspective of potential attackers, which is critical for a comprehensive risk assessment and a robust defense strategy. The DP aspect enhances this approach by dissecting complex problems and identifying optimal attack paths. The work demonstrates the comprehensive risk assessment by executing multiple attacks on a water desalination plant with various strategies. It takes into account the probabilistic interdependence relationships within the system. Additionally, the paper formulates a mathematical risk assessment using system models and graphical representation, yielding realistic results.
AB - Desalination plants, heavily reliant on Industrial Control Systems (ICS), have emerged as increasingly vital resources in the wake of escalating global water scarcity. This raises an urgent need to prioritize their security, calling for the implementation of robust risk assessment measures. Recognizing these pressing issues, this paper proposes a risk assessment approach for ICS within water desalination facilities. The strategy integrates the capabilities of Bayesian Networks (BNs) and Dynamic Programming (DP). It evolves BNs into Multilevel Bayesian Networks (MBNs), an innovative form that adeptly navigates the intricacies of system complexity, facilitates efficient inference, and dynamically adapts risk profiles. The proposed methodology considers the perspective of potential attackers, which is critical for a comprehensive risk assessment and a robust defense strategy. The DP aspect enhances this approach by dissecting complex problems and identifying optimal attack paths. The work demonstrates the comprehensive risk assessment by executing multiple attacks on a water desalination plant with various strategies. It takes into account the probabilistic interdependence relationships within the system. Additionally, the paper formulates a mathematical risk assessment using system models and graphical representation, yielding realistic results.
KW - bayesian networks
KW - discrete graphical modeling.
KW - dynamic programming
KW - industrial control systems security
KW - risk assessment
KW - water desalination
UR - http://www.scopus.com/inward/record.url?scp=85179549618&partnerID=8YFLogxK
U2 - 10.1145/3605758.3623500
DO - 10.1145/3605758.3623500
M3 - Conference contribution
AN - SCOPUS:85179549618
T3 - CPSIoTSec 2023 - Proceedings of the 5th Workshop on CPS and IoT Security and Privacy
SP - 11
EP - 23
BT - CPSIoTSec 2023 - Proceedings of the 5th Workshop on CPS and IoT Security and Privacy
PB - Association for Computing Machinery, Inc
Y2 - 26 November 2023
ER -
