Ιδρυματικό Αποθετήριο
Πολυτεχνείο Κρήτης
Πολυτεχνείο Κρήτης
EN
|
EL
| URI | http://purl.tuc.gr/dl/dias/2AD95135-88FD-449A-8DFA-19DB25174F6B | - |
| Αναγνωριστικό | https://doi.org/10.1109/ACCESS.2021.3134759 | - |
| Αναγνωριστικό | https://ieeexplore.ieee.org/document/9646963 | - |
| Γλώσσα | en | - |
| Μέγεθος | 21 pages | en |
| Τίτλος | A security-aware framework for designing industrial engineering processes | en |
| Δημιουργός | Dedousis Panagiotis | en |
| Δημιουργός | Stergiopoulos George | en |
| Δημιουργός | Arampatzis Georgios | en |
| Δημιουργός | Αραμπατζης Γεωργιος | el |
| Δημιουργός | Gritzalis, Dimitris | en |
| Εκδότης | Institute of Electrical and Electronics Engineers | en |
| Περίληψη | Modern critical infrastructures (CI) are complex Cyber-Physical-Systems (CPS) that tightly integrate physical processes with information and communication technology components. Numerous safety mishaps and security attacks in such systems have demonstrated the need to ensure their safety and security from early design stages. Research on CPS has mostly focused on securing existing, implemented industrial systems, while safety and security consideration during the design stages of modern industrial infrastructures has largely gone unnoticed. In this paper, we present a framework that extends previous, preliminary work on the integration of security in industrial engineering design practices, and provide an algorithmic approach that effectively reduces risk during industrial system design lifecycles. We achieve this by analyzing flows of materials and information related to physical processes using three steps: (1) Identifying critical components and flows, (2) prioritizing flows based on their ties to high risk and importance in terms of dependencies, and (3) classifying system components based on their influence on the overall industrial system. To do that, we utilize (i) material flow networks (MFN) for modelling/designing the physical system (ii) dependency risk graphs for analyzing networks dependencies and assessing the system, in terms of risk, (iii) graph minimum spanning trees, and (iv) network centrality metrics. To evaluate our approach, we model and assess the production chain corresponding to an oil refinery plant’s Liquefied Petroleum Gas (LPG) purification process. Preliminary findings demonstrate the complex dependencies between cybersecurity vulnerabilities and system safety. | en |
| Τύπος | Peer-Reviewed Journal Publication | en |
| Τύπος | Δημοσίευση σε Περιοδικό με Κριτές | el |
| Άδεια Χρήσης | http://creativecommons.org/licenses/by/4.0/ | en |
| Ημερομηνία | 2023-02-23 | - |
| Ημερομηνία Δημοσίευσης | 2021 | - |
| Θεματική Κατηγορία | Security by design | en |
| Θεματική Κατηγορία | Industrial engineering | en |
| Θεματική Κατηγορία | Risk analysis | en |
| Θεματική Κατηγορία | Risk assessment | en |
| Θεματική Κατηγορία | Risk mitigation | en |
| Θεματική Κατηγορία | Dependency risk graphs | en |
| Θεματική Κατηγορία | CPS dependencies | en |
| Θεματική Κατηγορία | Graph centrality | en |
| Βιβλιογραφική Αναφορά | P. Dedousis, G. Stergiopoulos, G. Arampatzis and D. Gritzalis, "A security-aware framework for designing industrial engineering processes," IEEE Access, vol. 9, pp. 163065-163085, Dec. 2021, doi: 10.1109/ACCESS.2021.3134759. | en |
Copyright © DIAS 2013
