The Method of Cyber Awareness Analysis of an Energy Facility

The article proposes to analyze cyber-situational awareness of an energy facility in three stages. There are i) analysis of cyber threats to the energy infrastructure; ii) modeling of extreme situations scenarios in the energy sector caused by the implementation of the cyber threats; iii) risk assessment of the cybersecurity disruption to energy infrastructure. Three methods are presented, corresponding to each stage. The authors propose to apply semantic modeling methods to analyze the impact of cyber threats to energy facilities, taking into account energy security within the presented approach. Such methods show their effectiveness in the absence or incompleteness of data for modeling the behavior of systems, which defies formal description or accurate forecasting. The presented approach to the cyber situational awareness analysis of energy facilities considered as a synthesis of cybersecurity and situational awareness studies, characterized by the use of semantic modeling methods.

1. Zhang C., Romagnoli A., Zhou L., Kraft M. From Numerical Model to Computational Intelligence: The Digital Transition of Urban Energy System. Energy Procedia, 2017, vol. 143, p. 884-890. DOI 10.1016/j.egypro.2017.12.778

2. Irmak E., Erkek I. An overview of cyber-attack vectors on SCADA systems. In: 6th International Symposium on Digital Forensic and Security (ISDFS). March, 2018. DOI 10.1109/isdfs.2018.8355379

3. Frank U., Brynielsson J. Cyber Situational Awareness - A systematic review of literature. Computer Security, 2014, vol. 46, p. 18-31. DOI 10.1016/j.cose.2014.06.008

4. Gaskova D. Fractal Stratified Model Development for Critical Infrastructure from the standpoint of Energy and Cyber Security. In: Proceedings of the VI International Workshop “Critical Infrastructures: Contingency Management, Intelligent, Agent-Based, Cloud Computing and Cyber Security (IWCI 2019)”. Irkutsk, Atlantis Press, 2019, p. 179-183. DOI 10.2991/iwci-19.2019.31

5. Gaskova D. A., Massel A. G. Ontological engineering for the development of the intelligent system for threats analysis and risk assessment of cybersecurity in energy facilities. Ontology of designing, 2019, vol. 9 (2), p. 225-238. (in Russ.) DOI 10.18287/2223-9537-2019-9-2-225238

6. Massel L. V., Pyatkova E. V. Application of Bayesian Networks to Intelligently Support Energy Security Research. Proceedings of Irkutsk State Technical University, 2012, no. 2, p. 8-13. (in Russ.)

7. Massel A. G. Methods of the analysis of threats, risk assessment violations of information and technological security of energy complexes. In: Proceedings of the XX Baikal All-Russian Conference “Information and mathematical technologies in science and management”. Irkutsk, MESI SB RAS, 2015, vol. 3, p. 186-195. (in Russ.)

8. Dashchenko Yu. Threat modeling in conditions of methodological uncertainty. Kaspersky Lab ICS CERT. URL: https://ics-cert.kaspersky.ru/media/KL-ICS-CERT-Model-ugroz.pdf (in Russ.)

9. Cheng Y., Deng J., Li J., DeLoach S. A., Singhal A., Ou X. Metrics of Security. In: Kott A., Wang C., Erbacher R. (eds.). Cyber Defense and Situational Awareness. Advances in Information Security, 2014, vol. 62. Springer, Cham. DOI 10.1007/978-3-319-11391-3_13

10. Kolosok I. N., Gurina L. A. Cybersecurity Risk Assessment of Information and Communication Infrastructure of Intelligent Energy System. Information and mathematical technologies in science and management, 2019, no. 2 (14), p. 40-51. (in Russ.) DOI 10.25729/2413-01332019-2-04

11. Gaskova D. A. Method for Determining the Level of Cyber Situational Awarenes on Energy Facilities. Information and mathematical technologies in science and management, 2020, no. 4 (20), p. 64-74. (in Russ.) DOI 10.38028/ESI.2020.20.4.006

12. Assante M. J., Lee R. M. The Industrial Control System Cyber Kill Chain. URL: https://www.sans.org/reading-room/whitepapers/ICS/industrial-control-systemcyber-kill-chain-36297.