Situational Awareness (SA) offers an analysed view of system’s security posture. Securing Industrial Control Systems (ICSs) and critical infrastructures requires timely and correct SA. System administrators make decisions and modify security mechanisms based on SA information. In this paper, we envision how security adaptation can facilitate administrators’ work in the ICS protection. Security adaptation is not widely applied in ICS context. Moreover, existing security adaptation approaches concentrate on recognition of an adaptation need, i.e,. building situational awareness, instead of security decision making. Therefore, we present steps to create a security adaptation plan, and apply fuzzy set theory and linguistic relations for decision making, when SA information indicates that required security is not reached.
Antti Evesti (VTT), Tapio Frantti (University of Oulu): Situational Awareness for security adaptation in Industrial Control Systems
Presented at the Seventh International Conference on Ubiquitos and Future Networks (ICUFN), 7-10 July, 2015. Sapporo