Critical Infrastructure Protection XVII: 17th IFIP WG 11.10 International Conference, ICCIP 2023, Arlington, VA, USA, March 13–14, 2023, Revised ... and Communication Technology, 686)
معرفی کتاب «Critical Infrastructure Protection XVII: 17th IFIP WG 11.10 International Conference, ICCIP 2023, Arlington, VA, USA, March 13–14, 2023, Revised ... and Communication Technology, 686)» نوشتهٔ Jason Staggs (editor), Sujeet Shenoi (editor)، منتشرشده توسط نشر Springer Nature Switzerland AG در سال 2024. این کتاب در فرمت pdf، زبان انگلیسی ارائه شده است.
The information infrastructure – comprising computers, embedded devices, networks and software systems – is vital to operations in every sector: chemicals, commercial facilities, communications, critical manufacturing, dams, defense industrial base, emergency services, energy, financial services, food and agriculture, government facilities, healthcare and public health, information technology, nuclear reactors, materials and waste, transportation systems, and water and wastewater systems. Global business and industry, governments, indeed society itself, cannot function if major components of the critical information infrastructure are degraded, disabled or destroyed. Critical Infrastructure Protection XVII describes original research results and innovative applications in the interdisciplinary field of critical infrastructure protection. Also, it highlights the importance of weaving science, technology and policy in crafting sophisticated, yet practical, solutions that will help secure information, computer and network assets in the various critical infrastructure sectors. Areas of coverage include: Themes and Issues Smart Grid Risks and Impacts Network and Telecommunications Systems Security Infrastructure Security Automobile Security This book is the seventeenth volume in the annual series produced by the International Federation for Information Processing (IFIP) Working Group 11.10 on Critical Infrastructure Protection, an international community of scientists, engineers, practitioners and policy makers dedicated to advancing research, development and implementation efforts focused on infrastructure protection. The book contains a selection of eleven edited papers from the Seventeenth Annual IFIP WG 11.10 International Conference on Critical Infrastructure Protection, which was held at SRI International, Arlington, Virginia, USA in the spring of 2023. Critical Infrastructure Protection XVII is an important resource for researchers, faculty members and graduate students, as well as for as well as for policy makers, practitioners and other individuals with interests in homeland security. Preface Conference Organization Contents Themes and Issues Redefining Homeland Security 1 Introduction 2 Motivation 3 Searching for Hidden Meaning 4 Terrorism 5 Natural Disasters 6 Words Matter 7 Scale and Scope Matter 8 Effects Not Threats 9 Redefining Homeland Security 10 Conclusions References Smart Grid Risks and Impacts Smart-Grid-Enabled Business Cases and the Consequences of Cyber Attacks 1 Introduction 2 Previous Work 3 Survey Methodology 3.1 Interviews 3.2 Data Analysis 4 Results 5 Discussion 6 Study Validity 6.1 Critical Realism and Risk Perception 6.2 Internal and External Validity 7 Empirical to Real Consequences 8 Conclusions References Consequence Verification During Risk Assessments of Smart Grids 1 Introduction 2 Smart Grids and Cyber Attacks 2.1 Smart Grids 2.2 Threats and Vulnerabilities 2.3 Cyber Attack Consequences 3 Related Work 4 Research Methodology 5 Results 6 Discussion 7 Validity Evaluation 8 Conclusions References Measuring the Impacts of Power Outages on Internet Hosts in the United States 1 Introduction 2 Related Work 3 Datasets 3.1 Power Outages 3.2 U.S County Data 3.3 End-Host IP Subnets 4 PowerPing 4.1 Power Outage Identification 4.2 Active Measurement 4.3 Deployment 4.4 System Design Considerations 5 Results 5.1 Baseline End-Host Responsiveness 5.2 Power Outage Characteristics 5.3 End-Host Responsiveness During Outages 6 Maintaining Communications During Outages 7 Future Work 8 Conclusions References Network and Telecommunications Systems Security Analyzing Discrepancies in Whole-Network Provenance 1 Introduction 2 Background 3 Whole-Network Provenance 4 Distributed Querying 5 Caching 5.1 Eviction Policy 5.2 Graph Storage 6 Discrepancy Detection 6.1 Threat Model 6.2 Omission Attack Detection 6.3 Empirical Analysis 6.4 Replay Attack Detection 6.5 Correctness Proofs 6.6 Probabilistic Analysis 7 Related Work 8 Conclusions References A Contextual Integrity Property to Impede Privacy Violations in 5G Networks 1 Introduction 2 Related Work 3 5G Defense in Depth 3.1 5G Device Registration Procedure 3.2 Active Adversary Model 3.3 Contextual Integrity Property 3.4 Defense-in-Depth Consensus Algorithm 4 -Calculus Model of 5G Registration 4.1 -Calculus Semantics 4.2 Formalized 5G Registration Procedure 4.3 Active Adversary Model 4.4 Formalized Contextual Integrity Property 5 Formalized Consensus Algorithm 5.1 UE Process Modifications 5.2 gNB Process Modifications 5.3 CN Process Modifications 5.4 gNB-CN Process Coordination Modification 5.5 Intrusion Detection Artifacts 6 Consensus Algorithm Equivalence Proofs 6.1 Weak Transitions and Bisimulation 6.2 Assumptions 6.3 Adversary and Registration Process Indistinguishability 6.4 UE Registration and gNB Interrogation Process Indistinguishability 6.5 UE Consensus Algorithm Termination 6.6 Adversary and DiD Registration Process Distinguishability 6.7 UE Termination After a Successful DiD Process 6.8 Impossibility of Ao Learning sec 7 Conclusions References Infrastructure Security Modeling and Assessing the Impacts of Cyber Threats on Interdependent Critical Infrastructures 1 Introduction 2 Related Work 3 National Security Perimeter for Cyber 4 Ontology-Based Approach 5 Modeling Approach 5.1 Mixed Holistic Reductionist Approach 5.2 CISIApro 2.0 Simulator 6 Case Study 6.1 Ransomware Attack 6.2 Distributed Denial-of-Service Attack 7 Conclusions References Security-Enhanced Orchestration Platform for Building Management Systems 1 Introduction 2 Related Work 3 Orchestration Platform 3.1 System Architecture 3.2 Security Architecture 4 Device Auto-Recovery and Auto-Isolation 5 Experiments 5.1 Scenario 1 5.2 Scenario 2 5.3 Scenario 3 5.4 Results and Limitations 6 Conclusions References Practical Deep Neural Network Protection for Unmodified Applications in Intel Software Guard Extension Environments 1 Introduction 1.1 Trusted Execution Environment 1.2 Intel Software Guard Extensions 2 Background 2.1 Evaluation Setup 2.2 Gramine-SGX 2.3 Mystikos-SGX 3 Threat Model 4 Split Computing Model for Security 5 Remote Attestation via EPID Keys 6 Experimental Results and Discussion 7 Conclusions References Automobile Security A Cyber Security Analysis Methodology for Evaluating Automobile Risk Exposures 1 Introduction 2 Related Work 3 Automobile Cyber Anatomy 3.1 High-Speed CAN 3.2 Low-Speed CAN 3.3 MOST Network 3.4 On-Board Diagnostics Interface 4 Attack Vectors 4.1 Physical Attack Vectors 4.2 Cyber Attack Vectors 5 Targets and Impacts 5.1 Targets 5.2 Impacts 6 Methodology and Implementation 6.1 Methodology 6.2 Implementation 7 Case Study 7.1 Automobile Security Analyses 7.2 Risk Comparison 8 Conclusions References Real-Time Attack Detection in Modern Automobile Controller Area Networks 1 Introduction 2 Interconnected Automobile Network 3 Attack Vectors, Vulnerabilities and Attacks 3.1 Attack Vectors 3.2 Vulnerabilities 3.3 Attacks 4 Related Work 4.1 LSTM Networks 4.2 Attack and Anomaly Detection 5 Attack Detection Design Framework 5.1 Data Collection 5.2 Data Preprocessing 5.3 Model Development and Training 5.4 Model Testing 5.5 Model Enhancement and Deployment 6 Real-Time Attack Detection System 6.1 System Configuration 6.2 System Processes 6.3 Client Operation Modes 7 Experimental Testbeds and Results 7.1 Experimental Testbeds 7.2 Experimental Results 8 Conclusions References Author Index
دانلود کتاب Critical Infrastructure Protection XVII: 17th IFIP WG 11.10 International Conference, ICCIP 2023, Arlington, VA, USA, March 13–14, 2023, Revised ... and Communication Technology, 686)