| Title | A Semantic Model-Based Security Engineering Framework for Cyber-Physical Systems |
| Publication Type | Conference Paper |
| Year of Publication | 2020 |
| Authors | Aigner, Andreas, Khelil, Abdelmajid |
| Conference Name | 2020 IEEE 19th International Conference on Trust, Security and Privacy in Computing and Communications (TrustCom) |
| Date Published | Dec 2021 |
| Publisher | IEEE |
| ISBN Number | 978-1-6654-0392-4 |
| Keywords | Complexity theory, Computing Theory, Couplings, Cyber-physical systems, Cyberspace, Embedded systems, Internet of Things, Metrics, Model-based Security Engineering, pubcrawl, security, security evaluation, security metric, security metrics, Security Scoring, Semantics |
| Abstract | The coupling of safety-relevant embedded- and cyber-space components to build Cyber-Physical Systems (CPS) extends the functionality and quality in many business domains, while also creating new ones. Prime examples like Internet of Things and Industry 4.0 enable new technologies and extend the service capabilities of physical entities by building a universe of connected devices. In addition to higher complexity, the coupling of these heterogeneous systems results in many new challenges, which should be addressed by engineers and administrators. Here, security represents a major challenge, which may be well addressed in cyber-space engineering, but less in embedded system or CPS design. Although model-based engineering provides significant benefits for system architects, like reducing complexity and automated analysis, as well as being considered as standard methodology in embedded systems design, the aspect of security may not have had a major role in traditional engineering concepts. Especially the characteristics of CPS, as well as the coupling of safety-relevant (physical) components with high-scalable entities of the cyber-space domain have an enormous impact on the overall level of security, based on the introduced side effects and uncertainties. Therefore, we aim to define a model-based security-engineering framework, which is tailored to the needs of CPS engineers. Hereby, we focus on the actual modeling process, the evaluation of security, as well as quantitatively expressing security of a deployed CPS. Overall and in contrast to other approaches, we shift the engineering concepts on a semantic level, which allows to address the proposed challenges in CPS in the most efficient way. |
| URL | https://ieeexplore.ieee.org/document/9343193 |
| DOI | 10.1109/TrustCom50675.2020.00250 |
| Citation Key | aigner_semantic_2020 |
A Semantic Model-Based Security Engineering Framework for Cyber-Physical Systems