Estimating the Time-To-Compromise of Exploiting Industrial Control System Vulnerabilities

Engla Rencelj Ling; Mathias Ekstedt

Research.Publish.Connect.

*Please fill out at least one Field. *Value must be an number!

Title:
ISBN:
Year:
Acronym:
Subject:

Advanced Search Proceedings Search

If you're looking for an exact phrase use quotation marks on text fields.

*Please fill out at least one Field.

Title:
Author:
Affiliation:
Subject:

Advanced Search Papers Search

If you're looking for an exact phrase use quotation marks on text fields.

*Please fill out at least one Field.

Name:
Affiliation:
Country:
Conference:
Subject:

Advanced Search Authors Search

If you're looking for an exact phrase use quotation marks on text fields.

*Please fill out at least one Field.

Name:
Country:
Subject:

Advanced Search Affiliations Search

If you're looking for an exact phrase use quotation marks on text fields.

Proceedings

Proceedings Search *Please fill out at least one Field. *Value must be an number!

Title:
ISBN:
Year:
Acronym:
Subject:

Advanced Search Proceedings Search

If you're looking for an exact phrase use quotation marks on text fields.

Papers

Papers Search *Please fill out at least one Field.

Title:
Author:
Affiliation:
Subject:

Advanced Search Papers Search

If you're looking for an exact phrase use quotation marks on text fields.

Authors

Authors Search *Please fill out at least one Field.

Name:
Affiliation:
Country:
Conference:
Subject:

Advanced Search Authors Search

If you're looking for an exact phrase use quotation marks on text fields.

Advanced Search

Paper

Estimating the Time-To-Compromise of Exploiting Industrial Control System Vulnerabilities

Topics: Security and Privacy Metrics; Threat Awareness; Vulnerability Analysis and Countermeasures

In Proceedings of the 8th International Conference on Information Systems Security and Privacy ICISSP - Volume 1, 96-107, 2022

Authors: Engla Rencelj Ling and Mathias Ekstedt

Affiliation: Division of Network and Systems Engineering KTH Royal Institute of Technology, Stockholm, Sweden

Keyword(s): Industrial Control System, Time-To-Compromise, Cyber Security, Vulnerabilities.

Abstract: The metric Time-To-Compromise (TTC) can be used for estimating the time taken for an attacker to compromise a component or a system. The TTC helps to identify the most critical attacks, which is useful when allocating resources for strengthening the cyber security of a system. In this paper we describe our updated version of the original definition of TTC. The updated version is specifically developed for the Industrial Control Systems domain. The Industrial Control Systems are essential for our society since they are a big part of producing, for example, electricity and clean water. Therefore, it is crucial that we keep these systems secure from cyberattacks. We align the method of estimating the TTC to Industrial Control Systems by updating the original definition’s parameters and use a vulnerability dataset specific for the domain. The new definition is evaluated by comparing estimated Time-To-Compromise values for Industrial Control System attack scenarios to previous research re sults. (More)

CC BY-NC-ND 4.0

Guest: Register as new SciTePress user now for free.

SciTePress user: please login.

My Papers

You are not signed in, therefore limits apply to your IP address 18.119.107.161

In the current month:

Recent papers: 100 available of 100 total

2⁺ years older papers: 200 available of 200 total

Paper citation in several formats:

Rencelj Ling, E. and Ekstedt, M. (2022). Estimating the Time-To-Compromise of Exploiting Industrial Control System Vulnerabilities. In Proceedings of the 8th International Conference on Information Systems Security and Privacy - ICISSP; ISBN 978-989-758-553-1; ISSN 2184-4356, SciTePress, pages 96-107. DOI: 10.5220/0010817400003120

@conference{icissp22,
author={Engla {Rencelj Ling}. and Mathias Ekstedt.},
title={Estimating the Time-To-Compromise of Exploiting Industrial Control System Vulnerabilities},
booktitle={Proceedings of the 8th International Conference on Information Systems Security and Privacy - ICISSP},
year={2022},
pages={96-107},
publisher={SciTePress},
organization={INSTICC},
doi={10.5220/0010817400003120},
isbn={978-989-758-553-1},
issn={2184-4356},
}

TY - CONF

JO - Proceedings of the 8th International Conference on Information Systems Security and Privacy - ICISSP
TI - Estimating the Time-To-Compromise of Exploiting Industrial Control System Vulnerabilities
SN - 978-989-758-553-1
IS - 2184-4356
AU - Rencelj Ling, E.
AU - Ekstedt, M.
PY - 2022
SP - 96
EP - 107
DO - 10.5220/0010817400003120
PB - SciTePress