A Cyber Resilience Analysis Case Study of an Industrial Operational Technology Environment

Kirsty Perrett, Ian Wilson*

*Awdur cyfatebol y gwaith hwn

Allbwn ymchwil: Cyfraniad at gyfnodolynErthygladolygiad gan gymheiriaid

Crynodeb

Cyber resilience is an active research area offering a novel approach to Cyber Security. The term appeared due to the concerning number of cyber-attacks on critical infrastructure. The National Institute of Standards and Technology (NIST) developed a framework to assist organisations with techniques and approaches to improving cyber resilience. However, there is a sparsity of case studies that speak to the adoption or measurement of these novel approaches within a complex industrial control environment. This paper presents a case study analysis of a manufacturing plant assessment drawing on key themes from the NIST literature.

The paper presents how well NIST constructs can be adopted to find cyber resilient enhancement opportunities and to decide if an evaluation of the results could supply a quantitative baseline measure of an organisation’s overall resilience. Conclusions drawn show that although the framework did partially aid with the analysis process, the frameworks ease of adoption assumes an organisation has a conventional cyber security foundation; NIST should make this clear within their guidance. Furthermore, the accompanying evaluation process was not sufficient to quantitatively measure the overall cyber resilience maturity for this case study.
Iaith wreiddiolSaesneg
Rhif yr erthygl09895
Tudalennau (o-i)178-190
Nifer y tudalennau13
CyfnodolynEnvironment Systems and Decisions
Cyfrol43
Rhif cyhoeddi2
Dyddiad ar-lein cynnar31 Ion 2023
Dynodwyr Gwrthrych Digidol (DOIs)
StatwsE-gyhoeddi cyn argraffu - 31 Ion 2023

Ôl bys

Gweld gwybodaeth am bynciau ymchwil 'A Cyber Resilience Analysis Case Study of an Industrial Operational Technology Environment'. Gyda’i gilydd, maen nhw’n ffurfio ôl bys unigryw.

Dyfynnu hyn