Automated Security Analysis for Industrial Control Systems based on MITRE ATT&CK and IEC 62443
Abstract:
In this article a lightweight approach to automatically analyze the architecture of Industrial Control Systems (ICS) for cybersecurity issues is presented. The goal is to support network architects and administrators with identifying security weaknesses in their network architecture and help them find efficient solutions. For this a mapping between the attacker focused MITRE ATT&CK Framework [9] and the defense oriented IEC 62443 standard [5] is created. This mapping is then used to estimate for which attack techniques defenses are already in place or have to be improved.
| Zugehörige Institution(en) am KIT | Institut für Anthropomatik und Robotik (IAR) |
| Publikationstyp | Proceedingsbeitrag |
| Publikationsjahr | 2024 |
| Sprache | Englisch |
| Identifikator | ISBN: 978-3-7315-1351-3 ISSN: 1863-6489 KITopen-ID: 1000190207 |
| Erschienen in | Proceedings of the 2023 Joint Workshop of Fraunhofer IOSB and Institute for Anthropomatics, Vision and Fusion Laboratory. Ed.: J. Beyerer ; T. Zander |
| Veranstaltung | Joint Workshop of Fraunhofer IOSB and Institute for Anthropomatics, Vision and Fusion Laboratory (2023), Triberg, Deutschland, 30.07.2023 – 04.08.2023 |
| Verlag | KIT Scientific Publishing |
| Seiten | 85-92 |
| Serie | Karlsruher Schriften zur Anthropomatik / Lehrstuhl für Interaktive Echtzeitsysteme, Karlsruher Institut für Technologie ; Fraunhofer-Inst. für Optronik, Systemtechnik und Bildauswertung IOSB Karlsruhe ; 65 |
| Relationen in KITopen |