| Title | Smart Building Risk Assessment Case Study: Challenges, Deficiencies and Recommendations |
| Publication Type | Conference Paper |
| Year of Publication | 2020 |
| Authors | Mace, J. C., Czekster, R. Melo, Morisset, C., Maple, C. |
| Conference Name | 2020 16th European Dependable Computing Conference (EDCC) |
| Keywords | building management systems, Buildings, comprehensive risk assessment process, control engineering computing, control systems, cost effective risk management, Cyber-physical systems, Damage Assessment, Documentation, inter-networked control systems, Internet of Things, Monitoring, pubcrawl, resilience, Resiliency, risk analysis, risk management, security, security of data, smart building risk assessment case study, smart building risk assessment methodology, smart building stakeholders, Smart buildings, Stakeholders |
| Abstract | Inter-networked control systems make smart buildings increasingly efficient but can lead to severe operational disruptions and infrastructure damage. It is vital the security state of smart buildings is properly assessed so that thorough and cost effective risk management can be established. This paper uniquely reports on an actual risk assessment performed in 2018 on one of the world's most densely monitored, state-of-the-art, smart buildings. From our observations, we suggest that current practice may be inadequate due to a number of challenges and deficiencies, including the lack of a recognised smart building risk assessment methodology. As a result, the security posture of many smart buildings may not be as robust as their risk assessments suggest. Crucially, we highlight a number of key recommendations for a more comprehensive risk assessment process for smart buildings. As a whole, we believe this practical experience report will be of interest to a range of smart building stakeholders. |
| DOI | 10.1109/EDCC51268.2020.00019 |
| Citation Key | mace_smart_2020 |
Smart Building Risk Assessment Case Study: Challenges, Deficiencies and Recommendations