| Title | Cyber-Security Incident Analysis by Causal Analysis using System Theory (CAST) |
| Publication Type | Conference Paper |
| Year of Publication | 2021 |
| Authors | Kaneko, Tomoko, Yoshioka, Nobukazu, Sasaki, Ryoichi |
| Conference Name | 2021 IEEE 21st International Conference on Software Quality, Reliability and Security Companion (QRS-C) |
| Date Published | dec |
| Keywords | Accident Analysis, Analytical models, CAST, Collaboration, composability, compositionality, Human Behavior, human factors, IEEE Sections, Information security, information theoretic security, policy-based governance, pubcrawl, reliability theory, resilience, Resiliency, Safety, Scalability, security incident, software quality, software reliability, STAMP, STAMP S&s, System Theory |
| Abstract | STAMP (System Theoretic Accident Model and Processes) is one of the theories that has been attracting attention as a new safety analysis method for complex systems. CAST (Causal Analysis using System Theory) is a causal analysis method based on STAMP theory. The authors investigated an information security incident case, "AIST (National Institute of Advanced Industrial Science and Technology) report on unauthorized access to information systems," and attempted accident analysis using CAST. We investigated whether CAST could be applied to the cyber security analysis. Since CAST is a safety accident analysis technique, this study was the first to apply CAST to cyber security incidents. Its effectiveness was confirmed from the viewpoint of the following three research questions. Q1:Features of CAST as an accident analysis method Q2:Applicability and impact on security accident analysis Q3:Understanding cyber security incidents with a five-layer model. |
| DOI | 10.1109/QRS-C55045.2021.00123 |
| Citation Key | kaneko_cyber-security_2021 |
Cyber-Security Incident Analysis by Causal Analysis using System Theory (CAST)