Abstract
This work proposes an approach based on dynamic Bayesian networks to support the cybersecurity analysis of network-based controllers in distributed energy plants. We built a system model that exploits real world context information from both information and operational technology environments in the energy infrastructure, and we use it to demonstrate the value of security evidence for time-driven predictive and diagnostic analyses. The innovative contribution of this work is in the methodology capability of capturing the causal and temporal dependencies involved in the assessment of security threats, and in the introduction of security analytics supporting the configuration of anomaly detection platforms for digital energy infrastructures.
| Lingua originale | Inglese |
|---|---|
| Rivista | APPLIED SCIENCES |
| Volume | 10 |
| Numero di pubblicazione | 14 |
| DOI | |
| Stato di pubblicazione | Pubblicato - 2020 |
Keywords
- MITRE ATT&CK
- attack forecasting
- countermeasures
- cyber threats
- distributed energy resources
- dynamic Bayesian networks
- early evidence-based anomaly detection
- security analytic
- security monitoring
- time-driven attack analysis