Document Type

Article

Publication Date

2021

DOI

10.4108/eai.10-9-2021.170949

Publication Title

EAI Endorsed Transactions on Security and Safety

Volume

8

Issue

28

Pages

170949

Abstract

A prioritized cyber defense remediation plan is critical for effective risk management in Energy Delivery System (EDS). Due to the complexity of EDS in terms of heterogeneous nature blending Information Technology (IT) and Operation Technology (OT) and Industrial Control System (ICS), scale and critical processes tasks, prioritized remediations should be applied gradually to protect critical assets. In this work, we propose a methodology for a prioritized cyber risk remediation plan by detecting and evaluating paths to critical nodes in EDS. We propose critical nodes characteristics evaluation based on nodes’ architectural positions, a measure of centrality based on nodes’ connectivity and frequency of network traffic, as well as the controlled amount of physical loads. The paper also examines the relationship between cost models of budget allocation for the removal of vulnerabilities on critical nodes and its impact on gradual readiness.

Rights

Copyright © 2021 Kamrul Hasan et al.

This is an open access article distributed under the terms of the Creative Commons Attribution 4.0 International License (CC BY 4.0), which permits unlimited use, distribution and reproduction in any medium so long as the original work is properly cited.

Original Publication Citation

Hasan, K., Shetty, S., Ullah, M., Hassanzadeh, A., & Islam, T. (2021). Criticality based optimal cyber defense remediation in energy delivery systems. EAI Endorsed Transactions on Security and Safety, 8(28), 170949. https://doi.org/10.4108/eai.10-9-2021.170949

ORCID

0000-0002-8789-0610 (Shetty)

Download

Share

COinS