Afenu, Divine Selorm, Asiri, Mohammed and Saxena, Neetesh ORCID: https://orcid.org/0000-0002-6437-0807 2024. Industrial control systems security validation based on MITRE adversarial tactics, techniques, and common knowledge framework. Electronics 13 (5) , 917. 10.3390/electronics13050917 |
Preview |
PDF
- Published Version
Available under License Creative Commons Attribution. Download (12MB) | Preview |
Abstract
Industrial Control Systems (ICSs) have become the cornerstone of critical sectors like energy, transportation, and manufacturing. However, the burgeoning interconnectivity of ICSs has also introduced heightened risks from cyber threats. The urgency for robust ICS security validation has never been more pronounced. This paper provides an in-depth exploration of using the MITRE ATT&CK (Adversarial Tactics, Techniques, and Common Knowledge) framework to validate ICS security. Although originally conceived for enterprise Information Technology (IT), the MITRE ATT&CK framework’s adaptability makes it uniquely suited to address ICS-specific security challenges, offering a methodological approach to identifying vulnerabilities and bolstering defence mechanisms. By zeroing in on two pivotal attack scenarios within ICSs and harnessing a suite of security tools, this research identifies potential weak points and proposes solutions to rectify them. Delving into Indicators of Compromise (IOCs), investigating suitable tools, and capturing indicators, this study serves as a critical resource for organisations aiming to fortify their ICS security. Through this lens, we offer tangible recommendations and insights, pushing the envelope in the domain of ICS security validation.
Item Type: | Article |
---|---|
Date Type: | Published Online |
Status: | Published |
Schools: | Computer Science & Informatics |
Publisher: | MDPI |
ISSN: | 2079-9292 |
Date of First Compliant Deposit: | 27 February 2024 |
Date of Acceptance: | 26 February 2024 |
Last Modified: | 11 Mar 2024 12:12 |
URI: | https://orca.cardiff.ac.uk/id/eprint/166553 |
Actions (repository staff only)
Edit Item |