Repository logo
 
No Thumbnail Available
Publication

Trust Based Interdependency Weighting for On-Line Risk Monitoring in Interdependent Critical Infrastructures

Use this identifier to reference this record.
Name:Description:Size:Format: 
Final_Revised_Paper.pdf5.7 MBAdobe PDF Download

Advisor(s)

Abstract(s)

Critical infrastructure (CI) services are constantly consumed by the society and are not expected to fail. A common definition states that CIs are so vital to our society that a disruption would have a severe impact on both the society and the economy. CI sectors include, amongst others, electricity, telecommunication and transport. CIs can be mutually dependent on each others services and a failure in one of these elements can cascade to another (inter)dependent CI. CI security modelling was introduced in previous work to enable on-line risk monitoring in CIs that depend on each other by exchanging risk alerts expressed in terms of a breach of Confidentiality, a breach of Integrity and degrading Availability (C,I,A). While generally providing a solid basis for risk monitoring, there is no way of evaluating if a risk alert received from an external CI is accurate. In this paper we propose a solution to this problem by adding a trust based component to the CI security model in order to improve its accuracy and resilience to inconsistent or inaccurate risk alerts provided by (inter)dependent CIs, allowing to evaluate the correctness of the received alerts. The proposed approach is validated on a realistic scenario by evaluating a dependency between the computing and the telecommunication sectors in the context of the Grid'5000 platform.

Description

Keywords

Critical Infrastructures ICT security Trust and Reputation Management

Citation

Research Projects

Organizational Units

Journal Issue