Info
- Utilizzare la checkbox di selezione a fianco di ciascun documento per attivare le funzionalità di stampa, invio email, download nei formati disponibili del (i) record.
Critical Infrastructure Protection [[electronic resource] ] : Advances in Critical Infrastructure Protection: Information Infrastructure Models, Analysis, and Defense / / edited by Javier Lopez, Roberto Setola, Stephen Wolthusen
| Critical Infrastructure Protection [[electronic resource] ] : Advances in Critical Infrastructure Protection: Information Infrastructure Models, Analysis, and Defense / / edited by Javier Lopez, Roberto Setola, Stephen Wolthusen |
| Edizione | [1st ed. 2012.] |
| Pubbl/distr/stampa | Berlin, Heidelberg : , : Springer Berlin Heidelberg : , : Imprint : Springer, , 2012 |
| Descrizione fisica | 1 online resource (XIV, 357 p.) |
| Disciplina | 005.8 |
| Collana | Security and Cryptology |
| Soggetto topico |
Computer security
Management information systems Computer science Data encryption (Computer science) Computers and civilization Algorithms Application software Systems and Data Security Management of Computing and Information Systems Cryptology Computers and Society Algorithm Analysis and Problem Complexity Information Systems Applications (incl. Internet) |
| ISBN | 3-642-28920-7 |
| Formato | Materiale a stampa  |
| Livello bibliografico | Monografia |
| Lingua di pubblicazione | eng |
| Record Nr. | UNISA-996466252903316 |
| Berlin, Heidelberg : , : Springer Berlin Heidelberg : , : Imprint : Springer, , 2012 | ||
| Materiale a stampa | ||
| Lo trovi qui: Univ. di Salerno | ||
| ||
Critical Information Infrastructure Security [[electronic resource] ] : Third International Workshop, CRITIS 2008, Rome, Italy, October 13-15, 2008 / / edited by Roberto Setola, Stefan Geretshuber
| Critical Information Infrastructure Security [[electronic resource] ] : Third International Workshop, CRITIS 2008, Rome, Italy, October 13-15, 2008 / / edited by Roberto Setola, Stefan Geretshuber |
| Edizione | [1st ed. 2009.] |
| Pubbl/distr/stampa | Berlin, Heidelberg : , : Springer Berlin Heidelberg : , : Imprint : Springer, , 2009 |
| Descrizione fisica | 1 online resource (XIV, 396 p.) |
| Disciplina | 005.8 |
| Collana | Security and Cryptology |
| Soggetto topico |
Computer security
Computer communication systems Quality control Reliability Industrial safety Applied mathematics Engineering mathematics Management information systems Computer science Algorithms Systems and Data Security Computer Communication Networks Quality Control, Reliability, Safety and Risk Mathematical and Computational Engineering Management of Computing and Information Systems Algorithm Analysis and Problem Complexity |
| Soggetto genere / forma |
Kongress.
Rom(2008) |
| ISBN | 3-642-03552-3 |
| Classificazione |
DAT 460f
DAT 465f SS 4800 |
| Formato | Materiale a stampa |
| Livello bibliografico | Monografia |
| Lingua di pubblicazione | eng |
| Nota di contenuto | Blackouts in Power Transmission Networks Due to Spatially Localized Load Anomalies -- Stability of a Distributed Generation Network Using the Kuramoto Models -- Enabling System of Systems Analysis of Critical Infrastructure Behaviors -- Information Modelling and Simulation in Large Interdependent Critical Infrastructures in IRRIIS -- Multi-level Dependability Modeling of Interdependencies between the Electricity and Information Infrastructures -- Interdependency Analysis in Electric Power Systems -- Modeling and Simulation of Complex Interdependent Systems: A Federated Agent-Based Approach -- Self-healing and Resilient Critical Infrastructures -- Critical Infrastructures Security Modeling, Enforcement and Runtime Checking -- INcreasing Security and Protection through Infrastructure REsilience: The INSPIRE Project -- Increase of Power System Survivability with the Decision Support Tool CRIPS Based on Network Planning and Simulation Program PSS®SINCAL -- Information Modelling and Simulation in Large Dependent Critical Infrastructures – An Overview on the European Integrated Project IRRIIS -- Assessment of Structural Vulnerability for Power Grids by Network Performance Based on Complex Networks -- Using Centrality Measures to Rank the Importance of the Components of a Complex Network Infrastructure -- RadialNet: An Interactive Network Topology Visualization Tool with Visual Auditing Support -- Quantitative Security Risk Assessment and Management for Railway Transportation Infrastructures -- Assessing and Improving SCADA Security in the Dutch Drinking Water Sector -- Analysis of Malicious Traffic in Modbus/TCP Communications -- Scada Malware, a Proof of Concept -- Testbeds for Assessing Critical Scenarios in Power Control Systems -- A Structured Approach to Incident Response Management in the Oil and Gas Industry -- Security Strategy Analysis for Critical Information Infrastructures -- Emerging Information Infrastructures: Cooperation in Disasters -- Service Modeling Language Applied to Critical Infrastructure -- Graded Security Expert System -- Protection of Mobile Agents Execution Using a Modified Self-Validating Branch-Based Software Watermarking with External Sentinel -- Adaptation of Modelling Paradigms to the CIs Interdependencies Problem -- Empirical Findings on Critical Infrastructure Dependencies in Europe -- Dependent Automata for the Modelling of Dependencies -- Application of IPK (Information, Preferences, Knowledge) Paradigm for the Modelling of Precautionary Principle Based Decision-Making -- Disaster Propagation in Heterogeneous Media via Markovian Agents -- A Study on Multiformalism Modeling of Critical Infrastructures -- Simulation of Critical ICT Infrastructure for Municipal Crisis Management -- An Ontology-Based Approach to Blind Spot Revelation in Critical Infrastructure Protection Planning -- Security of Water Infrastructure Systems -- Critical Infrastructures as Complex Systems: A Multi-level Protection Architecture -- Challenges Concerning the Energy-Dependency of the Telecom Infrastructure -- An Effective Approach for Cascading Effects Prevision in Critical Infrastructures. |
| Record Nr. | UNISA-996465627503316 |
| Berlin, Heidelberg : , : Springer Berlin Heidelberg : , : Imprint : Springer, , 2009 | ||
| Materiale a stampa | ||
| Lo trovi qui: Univ. di Salerno | ||
| ||
Critical Information Infrastructures Security [[electronic resource] ] : 11th International Conference, CRITIS 2016, Paris, France, October 10–12, 2016, Revised Selected Papers / / edited by Grigore Havarneanu, Roberto Setola, Hypatia Nassopoulos, Stephen Wolthusen
| Critical Information Infrastructures Security [[electronic resource] ] : 11th International Conference, CRITIS 2016, Paris, France, October 10–12, 2016, Revised Selected Papers / / edited by Grigore Havarneanu, Roberto Setola, Hypatia Nassopoulos, Stephen Wolthusen |
| Edizione | [1st ed. 2017.] |
| Pubbl/distr/stampa | Cham : , : Springer International Publishing : , : Imprint : Springer, , 2017 |
| Descrizione fisica | 1 online resource (XI, 348 p. 103 illus.) |
| Disciplina | 005.8 |
| Collana | Security and Cryptology |
| Soggetto topico |
Computer security
Computer communication systems Architecture, Computer Computers and civilization Computers Law and legislation Microprogramming Systems and Data Security Computer Communication Networks Computer System Implementation Computers and Society Legal Aspects of Computing Control Structures and Microprogramming |
| ISBN | 3-319-71368-X |
| Formato | Materiale a stampa |
| Livello bibliografico | Monografia |
| Lingua di pubblicazione | eng |
| Nota di contenuto |
Intro -- Preface -- Organization -- Contents -- Stealth Low-Level Manipulation of Programmable Logic Controllers I/O by Pin Control Exploitation -- 1 Introduction -- 2 Background -- 2.1 Pin Control Subsystem -- 2.2 How PLCs Control the Pins -- 3 Pin Control Attack -- 3.1 Security Concerns Regarding Pin Control -- 3.2 Pin Control Attack Details -- 3.3 Threat Model -- 4 A Pin Control Attack in Practice -- 4.1 Environment Setup -- 4.2 Attack Implementation -- 5 Discussion -- 5.1 Implications of Attack on the ICS -- 5.2 Detection of Pin Control Attack -- 6 Related Work -- 7 Conclusion -- References -- Developing a Cyber Incident Communication Management Exercise for CI Stakeholders -- 1 Introduction -- 1.1 Background -- 1.2 Case Study: Red Team - Blue Team Exercise -- 2 Communication Management Exercise for ICS Security (CME-ICS) -- 2.1 Peculiarity of Existing Japanese CIP Training -- 2.2 Discussion-Based Exercise -- 2.3 Theme of the Exercise: Communication Management -- 2.4 Scenario -- 2.5 Exercise Steps -- 2.6 Administration Staff -- 2.7 Pilot Exercises -- 3 Results and Discussion -- 3.1 Variation of Incident Management Structure -- 3.2 Results of the Survey -- 3.3 Discussion -- 3.4 Future Work: ``ICS-SIRT'' Exercise -- References -- On Auxiliary Entity Allocation Problem in Multi-layered Interdependent Critical Infrastructures -- 1 Introduction -- 2 Problem Formulation Using the Implicative Interdependency Model -- 3 Computational Complexity Analysis -- 3.1 Special Case: Problem Instance with One Minterm of Size One -- 3.2 General Case: Problem Instance with an Arbitrary Number of Minterms of Arbitrary Size -- 4 Solutions to the AEAP Problem -- 4.1 Optimal Solution to AEAP Problem -- 4.2 Heuristic Solution to the AEAP Problem -- 5 Experimental Results -- 6 Conclusion -- References -- Cyber Targets Water Management -- 1 Introduction.
1.1 Use of Industrial Control Systems -- 1.2 Cyber Threats and Risk -- 1.3 Structure of This Paper -- 2 Related Work -- 3 A Benchmark of the Resilience of the ICS Environment -- 4 Observed ICS Security Dilemmas -- 5 Cyber Security Simulator for Water Management Control Systems -- 5.1 Deployment of Attack Scenarios -- 5.2 DESI Results -- 6 Conclusions and Future Work -- 6.1 Future Work -- References -- Integrated Safety and Security Risk Assessment Methods: A Survey of Key Characteristics and Applications -- 1 Introduction -- 2 Related Work -- 3 Review Methodology -- 4 Integrated Safety and Security Risk Assessment Methods -- 4.1 SAHARA Method -- 4.2 CHASSIS Method -- 4.3 FACT Graph Method -- 4.4 FMVEA Method -- 4.5 Unified Security and Safety Risk Assessment Method -- 4.6 Extended CFT Method -- 4.7 EFT Method -- 5 Analysis of Integrated Safety and Security Risk Assessment Methods -- 6 Conclusions and Future Work -- References -- Railway Station Surveillance System Design: A Real Application of an Optimal Coverage Approach -- Abstract -- 1 Introduction -- 2 Railway Station Surveillance and Sensor Placement Problem -- 3 Application of the Optimal Coverage Approach to a Real Case -- 3.1 Area of Interest and Input Data -- 3.2 Coverage Analysis and Coverage Matrix -- 3.3 Modeling of the Coverage Problem and Solution of the Model -- 4 Experimental Results -- 4.1 Set Covering Model -- 4.2 Maximal Covering Model -- 5 Conclusions -- References -- A Synthesis of Optimization Approaches for Tackling Critical Information Infrastructure Survivability -- Abstract -- 1 Introduction -- 2 Identifying Critical Network Components: Survivability-Oriented Interdiction Models -- 3 Enhancing Critical Network Survivability: Resource Allocation Strategy Models -- 3.1 Optimization Models for Protecting CII Physical Components. 3.2 Optimization Models for CII Service Restoration -- 4 Planning Survivable Networks: Design Models -- 5 Future Research Suggestions -- 6 Conclusions -- References -- A Dataset to Support Research in the Design of Secure Water Treatment Systems -- 1 Introduction -- 2 Secure Water Treatment (SWaT) -- 2.1 Water Treatment Process -- 2.2 Communications -- 3 Attack Scenarios -- 4 Data Collection Process -- 4.1 Physical Properties -- 4.2 Network Traffic -- 4.3 Labelling Data -- 5 Conclusion -- References -- Human Vulnerability Mapping Facing Critical Service Disruptions for Crisis Managers -- Abstract -- 1 Introduction -- 2 Consequence Assessment -- 3 Modelling People Mobility -- 4 Results and Interests of Mapping Human Vulnerability -- 5 Improving Human Vulnerability Assessment -- 6 Conclusion -- Acknowledgments -- References -- A Methodology for Monitoring and Control Network Design -- 1 Introduction -- 2 Related Work -- 3 Asset Risk Assessment in ICS -- 3.1 Overview of the CAIA Approach -- 3.2 Risk Assessment Based on the Impact Measures -- 4 Optimal Control Network Design -- 5 Experimental Results -- 5.1 Results on the TEP -- 5.2 Results on the IEEE 14-Bus Electricity Grid -- 5.3 Results on the IEEE 300-Bus Electricity Grid Model -- 6 Conclusions -- References -- Effective Defence Against Zero-Day Exploits Using Bayesian Networks -- 1 Introduction -- 2 Modelling and Problem Representation -- 3 Case Study and Results -- 3.1 Case Study Settings -- 3.2 Results -- Deploying a Single Control -- 3.3 Results -- Deploying Combined Controls -- 4 Related Work -- 5 Conclusion and Future Work -- References -- Power Auctioning in Resource Constrained Micro-grids: Cases of Cheating -- 1 Introduction -- 2 Related Work -- 3 Decentralised Continuous Double Auction Model -- 4 Cheating CDA Attacks -- 4.1 Case 1: Victim Strategy Downgrade -- 4.2 Case 2: Collusion Attack. 5 Sketch Countermeasures -- 6 Conclusions -- References -- Using Incentives to Foster Security Information Sharing and Cooperation: A General Theory and Application to Critical Infrastructure Protection -- 1 Introduction -- 2 Theoretical Framework and Propositions -- 2.1 Regulation Alone Cannot Solve the Free Rider Problem -- 2.2 Linking Incentives to Voluntary SIS -- 2.3 A Holistic and Multidisciplinary Approach -- 2.4 A Model Linking Incentives, Behavior, and SIS -- 2.5 Reciprocity Expectation -- 2.6 Value Expectation -- 2.7 Institutional Expectation -- 2.8 Reputation Expectation -- 2.9 The Moderating Role of Trust -- 3 Application of the Proposed Model to Critical Infrastructure Protection -- 3.1 The Swiss Reporting and Analysis Centre for Information Security -- 3.2 Reciprocity Expectation -- 3.3 Value Expectation -- 3.4 Institutional Expectation -- 3.5 Reputation Expectation -- 3.6 The Moderating Role of Trust -- 4 Discussion -- 5 Concluding Comments and Next Steps -- References -- Dynamic Risk Analyses and Dependency-Aware Root Cause Model for Critical Infrastructures -- 1 Introduction -- 2 Terminology -- 3 Risk Assessments Using the Dependency-Aware Root Cause (DARC) Model -- 4 Risk Taxonomy for Critical Infrastructures -- 4.1 Dependency Definition Language -- 4.2 Generating the Dependency Graph -- 5 The `Smart Grid Luxembourg' Use-Case -- 5.1 Compiling a Dependency-Aware Inventory -- 5.2 Threat Model -- 5.3 Generation of the Dependency Graph -- 5.4 Results -- 6 Conclusion and Future Work -- References -- Selecting Privacy Solutions to Prioritise Control in Smart Metering Systems -- 1 Introduction -- 2 Privacy and Automation Properties -- 3 Selecting Techniques: Analysis and Discussion -- 3.1 Analysis of Privacy Techniques -- 3.2 Discussion: Privacy vs. Control -- 4 Conclusions and Future Work -- References. A Six-Step Model for Safety and Security Analysis of Cyber-Physical Systems -- 1 Introduction -- 2 Preliminaries and Background -- 2.1 CPS Safety and Security -- 2.2 GTST-MLD and the 3-Step Model -- 2.3 The SWaT System -- 3 Complex System Safety and Security Modeling: SSM -- 4 Summary and Conclusion -- References -- Availability Study of the Italian Electricity SCADA System in the Cloud -- 1 Introduction -- 1.1 The Hierarchical SCADA System -- 1.2 Cloud Deployments for a Nationwide SCADA System -- 2 Availability Computation in a Hierarchical SCADA Network -- 2.1 Availability Model for an Optical Network -- 2.2 Availability Computation -- 3 Availability Assessment in the SCADA System Managing the Italian Electricity Grid -- 4 Conclusion -- References -- Railway System Failure Scenario Analysis -- 1 Introduction -- 2 Failure Scenario Analysis: From Power Grid to Railway -- 2.1 NESCOR Failure Scenarios for the Energy Sector -- 2.2 Toward Railway Transportation Failure Scenarios -- 3 Sample Railway System Failure Scenarios -- 3.1 Compromised HMI Sends Malicious Commands to Devices -- 3.2 SCADA Firewall Fails and Critical Traffic Cannot Reach Devices -- 4 Analyzing Scenarios for a Railway System -- 4.1 Failure Scenario Analysis Tool -- 4.2 Case Study: Deploying SCADA Firewalls -- 4.3 Discussion -- 5 Related Work -- 6 Conclusion -- References -- Tamper Resistant Secure Digital Silo for Log Storage in Critical Infrastructures -- 1 Introduction -- 1.1 Contribution -- 1.2 Organization -- 2 Motivation -- 3 Background -- 3.1 Intel Software Guard Extensions (SGX) -- 3.2 Trusted Platform Module (TPM) -- 3.3 Enterprise Cryptographic Filesystem (eCryptfs) -- 3.4 Secure Block Device (SBD) -- 4 Design -- 5 Implementation and Evaluation -- 6 Conclusions and Future Work -- References. Access Control and Availability Vulnerabilities in the ISO/IEC 61850 Substation Automation Protocol. |
| Record Nr. | UNISA-996466435203316 |
| Cham : , : Springer International Publishing : , : Imprint : Springer, , 2017 | ||
| Materiale a stampa | ||
| Lo trovi qui: Univ. di Salerno | ||
| ||
Critical Information Infrastructures Security : 11th International Conference, CRITIS 2016, Paris, France, October 10–12, 2016, Revised Selected Papers / / edited by Grigore Havarneanu, Roberto Setola, Hypatia Nassopoulos, Stephen Wolthusen
| Critical Information Infrastructures Security : 11th International Conference, CRITIS 2016, Paris, France, October 10–12, 2016, Revised Selected Papers / / edited by Grigore Havarneanu, Roberto Setola, Hypatia Nassopoulos, Stephen Wolthusen |
| Edizione | [1st ed. 2017.] |
| Pubbl/distr/stampa | Cham : , : Springer International Publishing : , : Imprint : Springer, , 2017 |
| Descrizione fisica | 1 online resource (XI, 348 p. 103 illus.) |
| Disciplina | 005.8 |
| Collana | Security and Cryptology |
| Soggetto topico |
Computer security
Computer communication systems Architecture, Computer Computers and civilization Computers Law and legislation Microprogramming Systems and Data Security Computer Communication Networks Computer System Implementation Computers and Society Legal Aspects of Computing Control Structures and Microprogramming |
| ISBN | 3-319-71368-X |
| Formato | Materiale a stampa |
| Livello bibliografico | Monografia |
| Lingua di pubblicazione | eng |
| Nota di contenuto |
Intro -- Preface -- Organization -- Contents -- Stealth Low-Level Manipulation of Programmable Logic Controllers I/O by Pin Control Exploitation -- 1 Introduction -- 2 Background -- 2.1 Pin Control Subsystem -- 2.2 How PLCs Control the Pins -- 3 Pin Control Attack -- 3.1 Security Concerns Regarding Pin Control -- 3.2 Pin Control Attack Details -- 3.3 Threat Model -- 4 A Pin Control Attack in Practice -- 4.1 Environment Setup -- 4.2 Attack Implementation -- 5 Discussion -- 5.1 Implications of Attack on the ICS -- 5.2 Detection of Pin Control Attack -- 6 Related Work -- 7 Conclusion -- References -- Developing a Cyber Incident Communication Management Exercise for CI Stakeholders -- 1 Introduction -- 1.1 Background -- 1.2 Case Study: Red Team - Blue Team Exercise -- 2 Communication Management Exercise for ICS Security (CME-ICS) -- 2.1 Peculiarity of Existing Japanese CIP Training -- 2.2 Discussion-Based Exercise -- 2.3 Theme of the Exercise: Communication Management -- 2.4 Scenario -- 2.5 Exercise Steps -- 2.6 Administration Staff -- 2.7 Pilot Exercises -- 3 Results and Discussion -- 3.1 Variation of Incident Management Structure -- 3.2 Results of the Survey -- 3.3 Discussion -- 3.4 Future Work: ``ICS-SIRT'' Exercise -- References -- On Auxiliary Entity Allocation Problem in Multi-layered Interdependent Critical Infrastructures -- 1 Introduction -- 2 Problem Formulation Using the Implicative Interdependency Model -- 3 Computational Complexity Analysis -- 3.1 Special Case: Problem Instance with One Minterm of Size One -- 3.2 General Case: Problem Instance with an Arbitrary Number of Minterms of Arbitrary Size -- 4 Solutions to the AEAP Problem -- 4.1 Optimal Solution to AEAP Problem -- 4.2 Heuristic Solution to the AEAP Problem -- 5 Experimental Results -- 6 Conclusion -- References -- Cyber Targets Water Management -- 1 Introduction.
1.1 Use of Industrial Control Systems -- 1.2 Cyber Threats and Risk -- 1.3 Structure of This Paper -- 2 Related Work -- 3 A Benchmark of the Resilience of the ICS Environment -- 4 Observed ICS Security Dilemmas -- 5 Cyber Security Simulator for Water Management Control Systems -- 5.1 Deployment of Attack Scenarios -- 5.2 DESI Results -- 6 Conclusions and Future Work -- 6.1 Future Work -- References -- Integrated Safety and Security Risk Assessment Methods: A Survey of Key Characteristics and Applications -- 1 Introduction -- 2 Related Work -- 3 Review Methodology -- 4 Integrated Safety and Security Risk Assessment Methods -- 4.1 SAHARA Method -- 4.2 CHASSIS Method -- 4.3 FACT Graph Method -- 4.4 FMVEA Method -- 4.5 Unified Security and Safety Risk Assessment Method -- 4.6 Extended CFT Method -- 4.7 EFT Method -- 5 Analysis of Integrated Safety and Security Risk Assessment Methods -- 6 Conclusions and Future Work -- References -- Railway Station Surveillance System Design: A Real Application of an Optimal Coverage Approach -- Abstract -- 1 Introduction -- 2 Railway Station Surveillance and Sensor Placement Problem -- 3 Application of the Optimal Coverage Approach to a Real Case -- 3.1 Area of Interest and Input Data -- 3.2 Coverage Analysis and Coverage Matrix -- 3.3 Modeling of the Coverage Problem and Solution of the Model -- 4 Experimental Results -- 4.1 Set Covering Model -- 4.2 Maximal Covering Model -- 5 Conclusions -- References -- A Synthesis of Optimization Approaches for Tackling Critical Information Infrastructure Survivability -- Abstract -- 1 Introduction -- 2 Identifying Critical Network Components: Survivability-Oriented Interdiction Models -- 3 Enhancing Critical Network Survivability: Resource Allocation Strategy Models -- 3.1 Optimization Models for Protecting CII Physical Components. 3.2 Optimization Models for CII Service Restoration -- 4 Planning Survivable Networks: Design Models -- 5 Future Research Suggestions -- 6 Conclusions -- References -- A Dataset to Support Research in the Design of Secure Water Treatment Systems -- 1 Introduction -- 2 Secure Water Treatment (SWaT) -- 2.1 Water Treatment Process -- 2.2 Communications -- 3 Attack Scenarios -- 4 Data Collection Process -- 4.1 Physical Properties -- 4.2 Network Traffic -- 4.3 Labelling Data -- 5 Conclusion -- References -- Human Vulnerability Mapping Facing Critical Service Disruptions for Crisis Managers -- Abstract -- 1 Introduction -- 2 Consequence Assessment -- 3 Modelling People Mobility -- 4 Results and Interests of Mapping Human Vulnerability -- 5 Improving Human Vulnerability Assessment -- 6 Conclusion -- Acknowledgments -- References -- A Methodology for Monitoring and Control Network Design -- 1 Introduction -- 2 Related Work -- 3 Asset Risk Assessment in ICS -- 3.1 Overview of the CAIA Approach -- 3.2 Risk Assessment Based on the Impact Measures -- 4 Optimal Control Network Design -- 5 Experimental Results -- 5.1 Results on the TEP -- 5.2 Results on the IEEE 14-Bus Electricity Grid -- 5.3 Results on the IEEE 300-Bus Electricity Grid Model -- 6 Conclusions -- References -- Effective Defence Against Zero-Day Exploits Using Bayesian Networks -- 1 Introduction -- 2 Modelling and Problem Representation -- 3 Case Study and Results -- 3.1 Case Study Settings -- 3.2 Results -- Deploying a Single Control -- 3.3 Results -- Deploying Combined Controls -- 4 Related Work -- 5 Conclusion and Future Work -- References -- Power Auctioning in Resource Constrained Micro-grids: Cases of Cheating -- 1 Introduction -- 2 Related Work -- 3 Decentralised Continuous Double Auction Model -- 4 Cheating CDA Attacks -- 4.1 Case 1: Victim Strategy Downgrade -- 4.2 Case 2: Collusion Attack. 5 Sketch Countermeasures -- 6 Conclusions -- References -- Using Incentives to Foster Security Information Sharing and Cooperation: A General Theory and Application to Critical Infrastructure Protection -- 1 Introduction -- 2 Theoretical Framework and Propositions -- 2.1 Regulation Alone Cannot Solve the Free Rider Problem -- 2.2 Linking Incentives to Voluntary SIS -- 2.3 A Holistic and Multidisciplinary Approach -- 2.4 A Model Linking Incentives, Behavior, and SIS -- 2.5 Reciprocity Expectation -- 2.6 Value Expectation -- 2.7 Institutional Expectation -- 2.8 Reputation Expectation -- 2.9 The Moderating Role of Trust -- 3 Application of the Proposed Model to Critical Infrastructure Protection -- 3.1 The Swiss Reporting and Analysis Centre for Information Security -- 3.2 Reciprocity Expectation -- 3.3 Value Expectation -- 3.4 Institutional Expectation -- 3.5 Reputation Expectation -- 3.6 The Moderating Role of Trust -- 4 Discussion -- 5 Concluding Comments and Next Steps -- References -- Dynamic Risk Analyses and Dependency-Aware Root Cause Model for Critical Infrastructures -- 1 Introduction -- 2 Terminology -- 3 Risk Assessments Using the Dependency-Aware Root Cause (DARC) Model -- 4 Risk Taxonomy for Critical Infrastructures -- 4.1 Dependency Definition Language -- 4.2 Generating the Dependency Graph -- 5 The `Smart Grid Luxembourg' Use-Case -- 5.1 Compiling a Dependency-Aware Inventory -- 5.2 Threat Model -- 5.3 Generation of the Dependency Graph -- 5.4 Results -- 6 Conclusion and Future Work -- References -- Selecting Privacy Solutions to Prioritise Control in Smart Metering Systems -- 1 Introduction -- 2 Privacy and Automation Properties -- 3 Selecting Techniques: Analysis and Discussion -- 3.1 Analysis of Privacy Techniques -- 3.2 Discussion: Privacy vs. Control -- 4 Conclusions and Future Work -- References. A Six-Step Model for Safety and Security Analysis of Cyber-Physical Systems -- 1 Introduction -- 2 Preliminaries and Background -- 2.1 CPS Safety and Security -- 2.2 GTST-MLD and the 3-Step Model -- 2.3 The SWaT System -- 3 Complex System Safety and Security Modeling: SSM -- 4 Summary and Conclusion -- References -- Availability Study of the Italian Electricity SCADA System in the Cloud -- 1 Introduction -- 1.1 The Hierarchical SCADA System -- 1.2 Cloud Deployments for a Nationwide SCADA System -- 2 Availability Computation in a Hierarchical SCADA Network -- 2.1 Availability Model for an Optical Network -- 2.2 Availability Computation -- 3 Availability Assessment in the SCADA System Managing the Italian Electricity Grid -- 4 Conclusion -- References -- Railway System Failure Scenario Analysis -- 1 Introduction -- 2 Failure Scenario Analysis: From Power Grid to Railway -- 2.1 NESCOR Failure Scenarios for the Energy Sector -- 2.2 Toward Railway Transportation Failure Scenarios -- 3 Sample Railway System Failure Scenarios -- 3.1 Compromised HMI Sends Malicious Commands to Devices -- 3.2 SCADA Firewall Fails and Critical Traffic Cannot Reach Devices -- 4 Analyzing Scenarios for a Railway System -- 4.1 Failure Scenario Analysis Tool -- 4.2 Case Study: Deploying SCADA Firewalls -- 4.3 Discussion -- 5 Related Work -- 6 Conclusion -- References -- Tamper Resistant Secure Digital Silo for Log Storage in Critical Infrastructures -- 1 Introduction -- 1.1 Contribution -- 1.2 Organization -- 2 Motivation -- 3 Background -- 3.1 Intel Software Guard Extensions (SGX) -- 3.2 Trusted Platform Module (TPM) -- 3.3 Enterprise Cryptographic Filesystem (eCryptfs) -- 3.4 Secure Block Device (SBD) -- 4 Design -- 5 Implementation and Evaluation -- 6 Conclusions and Future Work -- References. Access Control and Availability Vulnerabilities in the ISO/IEC 61850 Substation Automation Protocol. |
| Record Nr. | UNINA-9910484853903321 |
| Cham : , : Springer International Publishing : , : Imprint : Springer, , 2017 | ||
| Materiale a stampa | ||
| Lo trovi qui: Univ. Federico II | ||
| ||
Critical information infrastructures security : third international workshop, CRITIS 2008, Rome, Italy, October 13-15, 2008 : revised papers / / Roberto Setola, Stefan Geretshuber (eds.)
| Critical information infrastructures security : third international workshop, CRITIS 2008, Rome, Italy, October 13-15, 2008 : revised papers / / Roberto Setola, Stefan Geretshuber (eds.) |
| Edizione | [1st ed. 2009.] |
| Pubbl/distr/stampa | Berlin ; ; New York, : Springer, c2009 |
| Descrizione fisica | 1 online resource (XIV, 396 p.) |
| Disciplina | 005.8 |
| Altri autori (Persone) |
GeretshuberStefan
SetolaRoberto |
| Collana | Lecture notes in computer science |
| Soggetto topico |
Computer security
Computers - Access control |
| ISBN | 3-642-03552-3 |
| Classificazione |
DAT 460f
DAT 465f SS 4800 |
| Formato | Materiale a stampa |
| Livello bibliografico | Monografia |
| Lingua di pubblicazione | eng |
| Nota di contenuto | Blackouts in Power Transmission Networks Due to Spatially Localized Load Anomalies -- Stability of a Distributed Generation Network Using the Kuramoto Models -- Enabling System of Systems Analysis of Critical Infrastructure Behaviors -- Information Modelling and Simulation in Large Interdependent Critical Infrastructures in IRRIIS -- Multi-level Dependability Modeling of Interdependencies between the Electricity and Information Infrastructures -- Interdependency Analysis in Electric Power Systems -- Modeling and Simulation of Complex Interdependent Systems: A Federated Agent-Based Approach -- Self-healing and Resilient Critical Infrastructures -- Critical Infrastructures Security Modeling, Enforcement and Runtime Checking -- INcreasing Security and Protection through Infrastructure REsilience: The INSPIRE Project -- Increase of Power System Survivability with the Decision Support Tool CRIPS Based on Network Planning and Simulation Program PSS®SINCAL -- Information Modelling and Simulation in Large Dependent Critical Infrastructures – An Overview on the European Integrated Project IRRIIS -- Assessment of Structural Vulnerability for Power Grids by Network Performance Based on Complex Networks -- Using Centrality Measures to Rank the Importance of the Components of a Complex Network Infrastructure -- RadialNet: An Interactive Network Topology Visualization Tool with Visual Auditing Support -- Quantitative Security Risk Assessment and Management for Railway Transportation Infrastructures -- Assessing and Improving SCADA Security in the Dutch Drinking Water Sector -- Analysis of Malicious Traffic in Modbus/TCP Communications -- Scada Malware, a Proof of Concept -- Testbeds for Assessing Critical Scenarios in Power Control Systems -- A Structured Approach to Incident Response Management in the Oil and Gas Industry -- Security Strategy Analysis for Critical Information Infrastructures -- Emerging Information Infrastructures: Cooperation in Disasters -- Service Modeling Language Applied to Critical Infrastructure -- Graded Security Expert System -- Protection of Mobile Agents Execution Using a Modified Self-Validating Branch-Based Software Watermarking with External Sentinel -- Adaptation of Modelling Paradigms to the CIs Interdependencies Problem -- Empirical Findings on Critical Infrastructure Dependencies in Europe -- Dependent Automata for the Modelling of Dependencies -- Application of IPK (Information, Preferences, Knowledge) Paradigm for the Modelling of Precautionary Principle Based Decision-Making -- Disaster Propagation in Heterogeneous Media via Markovian Agents -- A Study on Multiformalism Modeling of Critical Infrastructures -- Simulation of Critical ICT Infrastructure for Municipal Crisis Management -- An Ontology-Based Approach to Blind Spot Revelation in Critical Infrastructure Protection Planning -- Security of Water Infrastructure Systems -- Critical Infrastructures as Complex Systems: A Multi-level Protection Architecture -- Challenges Concerning the Energy-Dependency of the Telecom Infrastructure -- An Effective Approach for Cascading Effects Prevision in Critical Infrastructures. |
| Altri titoli varianti | CRITIS 2008 |
| Record Nr. | UNINA-9910485147903321 |
| Berlin ; ; New York, : Springer, c2009 | ||
| Materiale a stampa | ||
| Lo trovi qui: Univ. Federico II | ||
| ||
Managing the Complexity of Critical Infrastructures [[electronic resource] ] : A Modelling and Simulation Approach / / edited by Roberto Setola, Vittorio Rosato, Elias Kyriakides, Erich Rome
| Managing the Complexity of Critical Infrastructures [[electronic resource] ] : A Modelling and Simulation Approach / / edited by Roberto Setola, Vittorio Rosato, Elias Kyriakides, Erich Rome |
| Edizione | [1st ed. 2016.] |
| Pubbl/distr/stampa | Cham : , : Springer International Publishing : , : Imprint : Springer, , 2016 |
| Descrizione fisica | 1 online resource (VIII, 299 p. 136 illus., 117 illus. in color.) |
| Disciplina | 620 |
| Collana | Studies in Systems, Decision and Control |
| Soggetto topico |
Computational complexity
Computer simulation Quality control Reliability Industrial safety Electrical engineering Complexity Simulation and Modeling Quality Control, Reliability, Safety and Risk Communications Engineering, Networks |
| ISBN | 3-319-51043-6 |
| Formato | Materiale a stampa |
| Livello bibliografico | Monografia |
| Lingua di pubblicazione | eng |
| Nota di contenuto | Critical Infrastructures -- Modelling dependencies between critical infrastructures -- Critical Infrastructures disruption scenario analyses via simulation -- Physical simulators of critical infrastructures -- Phenomenological simulators of critical infrastructures -- Federated simulations -- Cyber and physical threats modelling -- Verification and validation -- Design of DSS for supporting preparedness to and management of anomalous situations in complex scenarios -- The use of What-if analysis to improve the management of critical situations -- Model coupling with OpenMI introduction of basic concepts. |
| Record Nr. | UNINA-9910166955203321 |
| Cham : , : Springer International Publishing : , : Imprint : Springer, , 2016 | ||
| Materiale a stampa | ||
| Lo trovi qui: Univ. Federico II | ||
| ||
Managing the Complexity of Critical Infrastructures
| Managing the Complexity of Critical Infrastructures |
| Pubbl/distr/stampa | Springer Cham |
| Altri autori (Persone) |
SetolaRoberto
RosatoVittorio KyriakidesElias RomeErich |
| ISBN | 3-319-51043-6 |
| Formato | Materiale a stampa |
| Livello bibliografico | Monografia |
| Lingua di pubblicazione | eng |
| Record Nr. | UNINA-9910856987603321 |
| Springer Cham | ||
| Materiale a stampa | ||
| Lo trovi qui: Univ. Federico II | ||
| ||
Positive Systems : Theory and Applications (POSTA 2016) Rome, Italy, September 14-16, 2016 / / edited by Filippo Cacace, Lorenzo Farina, Roberto Setola, Alfredo Germani
| Positive Systems : Theory and Applications (POSTA 2016) Rome, Italy, September 14-16, 2016 / / edited by Filippo Cacace, Lorenzo Farina, Roberto Setola, Alfredo Germani |
| Edizione | [1st ed. 2017.] |
| Pubbl/distr/stampa | Cham : , : Springer International Publishing : , : Imprint : Springer, , 2017 |
| Descrizione fisica | 1 online resource (VIII, 252 p. 29 illus.) |
| Disciplina | 003.85 |
| Collana | Lecture Notes in Control and Information Sciences |
| Soggetto topico |
Control engineering
Multibody systems Vibration Mechanics, Applied Dynamical systems System theory Control theory Game theory Control and Systems Theory Multibody Systems and Mechanical Vibrations Dynamical Systems Systems Theory, Control Game Theory |
| ISBN | 3-319-54211-7 |
| Formato | Materiale a stampa |
| Livello bibliografico | Monografia |
| Lingua di pubblicazione | eng |
| Nota di contenuto | Persistence, periodicity and privacy for positive systems in epidemiology and elsewhere -- Control of anesthesia based on singularly perturbed model -- Interval observers for SIR epidemic models subject to uncertain seasonality -- Analysis of a reaction-diffusion epidemic model -- On Feedback Transformation and Integral Input-to-State Stability in Designing Robust Interval Observers for Control Systems -- Stability Analysis of Neutral Type Time-Delay Positive Systems -- Internally Positive Representations and Stability Analysis of Linear Delay Systems with Multiple Time-Varying Delays -- On robust pseudo state estimation of fractional order systems -- Analysis of the positivity and stability of fractional discrete-time nonlinear systems -- Continuous-time Compartmental Switched Systems -- Improved controller design for positive systems and its application to positive switched systems. |
| Record Nr. | UNINA-9910254343503321 |
| Cham : , : Springer International Publishing : , : Imprint : Springer, , 2017 | ||
| Materiale a stampa | ||
| Lo trovi qui: Univ. Federico II | ||
| ||
Railway Infrastructure Security / / edited by Roberto Setola, Antonio Sforza, Valeria Vittorini, Concetta Pragliola
| Railway Infrastructure Security / / edited by Roberto Setola, Antonio Sforza, Valeria Vittorini, Concetta Pragliola |
| Edizione | [1st ed. 2015.] |
| Pubbl/distr/stampa | Cham : , : Springer International Publishing : , : Imprint : Springer, , 2015 |
| Descrizione fisica | 1 online resource (255 p.) |
| Disciplina | 623.6 |
| Collana | Topics in Safety, Risk, Reliability and Quality |
| Soggetto topico |
Quality control
Reliability Industrial safety Operations research Decision making Computer simulation Engineering economy System safety Quality Control, Reliability, Safety and Risk Operations Research/Decision Theory Simulation and Modeling Engineering Economics, Organization, Logistics, Marketing Security Science and Technology |
| ISBN | 3-319-04426-5 |
| Formato | Materiale a stampa |
| Livello bibliografico | Monografia |
| Lingua di pubblicazione | eng |
| Nota di contenuto | The Railway Infrastructure Security -- Towards integrated railway protection -- The FSI experience -- Vulnerability assessment in RIS scenario through a synergic use of the CPTED methodology and the System Dynamics approach -- Cumana and Circumflegrea railway lines: a circle network in the western metropolitan area of Naples -- Coping with suicide bombing Israel railways security challenges 2000 – 2005 -- Technologies for the implementation of a security system on rail transportation infrastructures -- A Model-Driven Process for Physical Protection System Design and Vulnerability Evaluation -- Optimal location of security devices -- The METRIP tool -- Optimizing Investment Decisions for Railway Systems Protection -- The Security into the Metro system: the Copenhagen Metro experience. . |
| Record Nr. | UNINA-9910299687803321 |
| Cham : , : Springer International Publishing : , : Imprint : Springer, , 2015 | ||
| Materiale a stampa | ||
| Lo trovi qui: Univ. Federico II | ||
| ||