loading
Papers Papers/2022 Papers Papers/2022

Research.Publish.Connect.

Paper

Authors: Roland Plaka ; Mikael Asplund and Simin Nadjm-Tehrani

Affiliation: Department of Computer and Information Science, Linköping University, Sweden

Keyword(s): Vulnerability, Prioritization, Topology, Exploitable Path.

Abstract: Modern critical infrastructures are becoming increasingly complex and exposed to cyber-attacks. As with any digitalized system, these systems suffer from vulnerabilities that threaten overall system security. As a result, eliminating vulnerabilities is imperative for security analysts to counteract potential future attacks. However, vulnerability management is time-consuming and expensive because it requires testing, verification, and validation for the patches. Therefore, there is a need to prioritize which vulnerabilities to fix first in an efficient manner. This paper introduces a patching strategy by identifying the attack path that poses the most severe system risk and the patches with the highest potential to mitigate this risk. The risk assessment is based on novel metrics incorporating dynamic exploitability, impact scores, and the network topology. The method is evaluated on a case study based on electric vehicle charging infrastructures. We collect information on vulnerabil ities, exploits, and available patches for this domain and instantiate a realistic network model with relevant components, some of which contain vulnerabilities. Our results show that the proposed method outperforms baseline methods to reduce overall system risk. (More)

CC BY-NC-ND 4.0

Sign In Guest: Register as new SciTePress user now for free.

Sign In SciTePress user: please login.

PDF ImageMy Papers

You are not signed in, therefore limits apply to your IP address 216.73.216.77

In the current month:
Recent papers: 100 available of 100 total
2+ years older papers: 200 available of 200 total

Paper citation in several formats:
Plaka, R., Asplund, M., Nadjm-Tehrani and S. (2025). Topology-Aware Prioritized Patching for EV Charging Infrastructure Vulnerabilities. In Proceedings of the 11th International Conference on Vehicle Technology and Intelligent Transport Systems - VEHITS; ISBN 978-989-758-745-0; ISSN 2184-495X, SciTePress, pages 113-124. DOI: 10.5220/0013293300003941

@conference{vehits25,
author={Roland Plaka and Mikael Asplund and Simin Nadjm{-}Tehrani},
title={Topology-Aware Prioritized Patching for EV Charging Infrastructure Vulnerabilities},
booktitle={Proceedings of the 11th International Conference on Vehicle Technology and Intelligent Transport Systems - VEHITS},
year={2025},
pages={113-124},
publisher={SciTePress},
organization={INSTICC},
doi={10.5220/0013293300003941},
isbn={978-989-758-745-0},
issn={2184-495X},
}

TY - CONF

JO - Proceedings of the 11th International Conference on Vehicle Technology and Intelligent Transport Systems - VEHITS
TI - Topology-Aware Prioritized Patching for EV Charging Infrastructure Vulnerabilities
SN - 978-989-758-745-0
IS - 2184-495X
AU - Plaka, R.
AU - Asplund, M.
AU - Nadjm-Tehrani, S.
PY - 2025
SP - 113
EP - 124
DO - 10.5220/0013293300003941
PB - SciTePress

- Science and Technology Publications, Lda.
RESOURCES

Proceedings

Papers

Authors

Ontology

CONTACTS

Science and Technology Publications, Lda
Avenida de S. Francisco Xavier, Lote 7 Cv. C,
2900-616 Setúbal, Portugal.

Phone: +351 265 520 185 (National fixed network call)
Fax: +351 265 520 186
Email: info@scitepress.org

EXTERNAL LINKS

PRIMORIS

INSTICC

SCITEVENTS

CROSSREF

PROCEEDINGS SUBMITTED FOR INDEXATION BY:

dblp

Ei Compendex

SCOPUS

Semantic Scholar

Google Scholar

Microsoft Academic