TY - JOUR
T1 - Hybrid ontology for safety, security, and dependability risk assessments and Security Threat Analysis (STA) method for industrial control systems
AU - Alanen, Jarmo
AU - Linnosmaa, Joonas
AU - Malm, Timo
AU - Papakonstantinou, Nikolaos
AU - Ahonen, Toni
AU - Heikkilä, Eetu
AU - Tiusanen, Risto
N1 - Funding Information:
The Finnish Research Programme on Nuclear Power Plant Safety 2019?2022 (SAFIR2022) funded this research. Furthermore, the study on the dependability aspects of the risk assessment ontology was done within a national co-innovation project, AUTOPORT, financed by Business Finland, VTT and other participating companies. Any opinions or findings of this work are the responsibility of the authors, and do not necessarily reflect the views of the sponsors or collaborators.
PY - 2022/4
Y1 - 2022/4
N2 - This paper introduces a model-based methodology for hybrid reliability, availability, maintainability, safety, and security (RAMSS) risk assessment management, which extends our previous work of model-based, data-driven, support for engineering mission-critical systems. It represents a hybrid risk assessment ontology, which harmonises basic concepts between dependability, safety and security based on well-known industrial standards. Based on the proposed ontology, we create a cybersecurity risk analysis method, called Security Threat Analysis (STA), for industrial control systems and successfully demonstrate the method. For the demonstration, we introduce a data model for creating a tool-supported data repository for STA, then implement this repository with a commercial-off-the-shelf tool. We use the repository to carry out an exemplary STA of a nuclear fuel pool cooling control system, assessing a cybersecurity-related hazard. The demonstration suggests that the hybrid RAMSS risk assessment ontology and the related STA data model are ready to be tested in industrial use, offering a structured data repository to support assessment and traceability between the created artefacts.
AB - This paper introduces a model-based methodology for hybrid reliability, availability, maintainability, safety, and security (RAMSS) risk assessment management, which extends our previous work of model-based, data-driven, support for engineering mission-critical systems. It represents a hybrid risk assessment ontology, which harmonises basic concepts between dependability, safety and security based on well-known industrial standards. Based on the proposed ontology, we create a cybersecurity risk analysis method, called Security Threat Analysis (STA), for industrial control systems and successfully demonstrate the method. For the demonstration, we introduce a data model for creating a tool-supported data repository for STA, then implement this repository with a commercial-off-the-shelf tool. We use the repository to carry out an exemplary STA of a nuclear fuel pool cooling control system, assessing a cybersecurity-related hazard. The demonstration suggests that the hybrid RAMSS risk assessment ontology and the related STA data model are ready to be tested in industrial use, offering a structured data repository to support assessment and traceability between the created artefacts.
KW - Cybersecurity analysis method
KW - Hybrid risk assessment
KW - Industrial control systems
KW - Model-based system engineering
KW - Ontology
UR - http://www.scopus.com/inward/record.url?scp=85121400905&partnerID=8YFLogxK
U2 - 10.1016/j.ress.2021.108270
DO - 10.1016/j.ress.2021.108270
M3 - Article
SN - 0951-8320
VL - 220
JO - Reliability Engineering and System Safety
JF - Reliability Engineering and System Safety
M1 - 108270
ER -