Critical Infrastructure Resilience Metrics
Problem
Cyber resilience hinges on data driven analytics. Without data driven analytics, the resilience models are not able to characterize the attack surface accurately which leads to incorrect estimation of impact of cyber threat and lack of understanding of resilience of cyber defenses against future threats.
Approach
We have developed techniques for cyber risk assessment and cyber resilience metrics. In collaboration with Accenture Technology Labs, we have developed techniques to conduct a prioritized cyber defense remediation plan which is critical for effective risk management in Energy Delivery Systems (EDS). We have developed a methodology for identifying the critical attack paths in EDS, balancing the tradeoff between cost and removal of vulnerabilities in critical nodes, and evaluating the impact on gradual readiness. We have validated the approach by applying the techniques on a small-scale ICS testbed at Accenture. In collaboration with ReliabilityFirst to develop cyber resilience metrics for bulk power systems, we will present the framework adopted to develop the metrics. We have also developed a cloud-based tool.
Accomplishments
Cyber Resilience Metrics tool available -
Publications
Ariful Haque, Sachin Shetty, and Bheshaj Krishnappa, "CPS resilience: Frameworks, metrics, complexities, challenges and future directions”, Complexity Challenges in Cyber Physical Systems: Using Modeling and Simulation (M&S) to Support Intelligence, Adaptation and Autonomy, Eds.: Saurabh Mittal and Andreas Tolk, Wiley, 2019.
Ariful Haque, Sachin Shetty, Bheshaj Krishnappa, "Modeling Cyber Resilience for Energy Delivery Systems Using Critical System Functionality", Resilience Week, San Antonio, TX, 2019
Md Ariful Haque, Gael Kamdem De Teyou, Sachin Shetty, Bheshaj Krishnappa, "Cyber Resilience Framework for Industrial Control Systems: Concepts, Metrics, and Insights”, IEEE Intelligence and Security Informatics (ISI), Miami FL, November 8 - 10, 2018
Ariful Haque, Sachin Shetty, Charles Kamhoua, Kimberly Gold, "Integrating Mission-Centric Impact Assessment to Operational Resiliency in Cyber-Physical Systems," IEEE Globecom 2020
Ariful Haque, Sachin Shetty, Charles Kamhoua, Kimberly Gold, "Modeling Mission Impact of Cyber Attacks on Energy Delivery Systems," SecureComm, 2020
Kamrul Hasan, Sachin Shetty, Amin Hassanzadeh, Malek Ben Salem and Jay Chen “Modeling Cost of Countermeasures in Software Defined Networking-enabled Energy Delivery System,” IEEE Conference on Communications and Network Security (CNS) 30 May-1 June 2018, Beijing China
Kamrul Hasan, Sachin Shetty, Amin Hassanzadeh, Malek Ben Salem, Jay Chen, "Self-Healing Cyber Resilient Framework for Software Defined Networking-enabled Energy Delivery System,” IEEE Conference on Control Technology and Applications (CCTA), Copenhagen, Denmark, August 2018
Sharif Ullah, Sachin Shetty, Anup Nayak, Amin Hassanzadeh and Kamrul Hasan "Cyber Threat Analysis based on Characterizing Adversarial Behavior for Energy Delivery Systems," Securecomm (short paper), 2019
Kamrul Hasan, Sachin Shetty, Sharif Ullah, Amin Hassanzadeh, Ethan Hadar, "Towards Optimal Cyber Defense Remediation in Energy Delivery Systems," IEEE Globecom, Hawaii, 2019
Kamrul Hasan, Sachin Shetty, Amin Hassanzadeh, Sharif Ullah, "Towards Optimal Cyber Defense Remediation in Cyber Physical Systems by Balancing Operational Resilience and Strategic Risk," IEEE Milcom, Norfolk, 2019
Sharif Ullah, Sachin Shetty, Amin Hassanzadeh, "Towards Modeling Attacker’s Opportunity for Improving Cyber Resilience in Energy Delivery Systems,” Resilience Week, Denver August 2018
Project Examples
Team
Kamrul Hasan
Industry Team
- Amin Hassanzadeh (Accenture)
- Bhesh Krishnappa (Reliability First)