By Topic

Preparing for cyber-attacks on Air Traffic Management infrastructures: Cyber-safety scenario generation

Sign In

Cookies must be enabled to login.After enabling cookies , please use refresh or reload or ctrl+f5 on the browser for the login options.

Formats Non-Member Member
$31 $31
Learn how you can qualify for the best price for this item!
Become an IEEE Member or Subscribe to
IEEE Xplore for exclusive pricing!
close button

puzzle piece

IEEE membership options for an individual and IEEE Xplore subscriptions for an organization offer the most affordable access to essential journal articles, conference papers, standards, eBooks, and eLearning courses.

Learn more about:

IEEE membership

IEEE Xplore subscriptions

1 Author(s)
Johnson, C.W. ; Sch. of Comput. Sci., Univ. of Glasgow, Glasgow, UK

Malware poses a growing threat to a host of safety-critical systems that depend on common software components, including the Linux operating system and the Internet Protocol (IP). Threats include `mass market' malware that is not deliberately aimed at safety-related systems. They also include more sophisticated techniques exploited by W32.Stuxnet, W32.Duqu, W32.Flame etc. Previous work in this area has focused on the consequences of a cyber-attack under `optimal conditions'. Very little work has been done to identify more complex scenarios when malware exacerbates routine system failures that occur in all safety-critical applications. We show how Vulnerability and Violation (V2) diagrams can identify interactions between malware and degraded modes of operation. The intention is not to accurately predict future modes of attack. In contrast, the aim is to create training scenarios that test the expertise and judgement of systems engineers, operators and managers. The initial results from our work have revealed the underlying vulnerabilities that exist across safety-critical transportation infrastructures.

Published in:

System Safety, incorporating the Cyber Security Conference 2012, 7th IET International Conference on

Date of Conference:

15-18 Oct. 2012