The Ohio State Model of ICS Cybersecurity

EasyChair Preprint 7183

4 pages•Date: December 7, 2021

Theodore Allen, John McCarty, Tu Feng, Shih-Hsien Tseng, Vimal Buck and Robert Pardee

Abstract

We propose a simple framework for Industrial Control System (ICS) system cybersecurity. The proposed system is based on considerations which include known vulnerabilities, safety issues, and the centrality of assets in hypothetical attack vectors. We relate the proposed system to the Purdue Model and two optimization formulations from the literature. We also relate our point system to the results of a recent penetration testing exercise on a manufacturing robotic cell. Finally, we discuss multiple challenges including that posed by legacy equipment and threats to manufacturing uptime.

Keyphrases: Cyber Security, Purdue Model, Zero Trust, air gap, decision tree models, vulnerability management

Links:

https://easychair.org/publications/preprint/WfsS

BibTeX entry

BibTeX does not have the right entry for preprints. This is a hack for producing the correct reference:

@booklet{EasyChair:7183,
  author    = {Theodore Allen and John McCarty and Tu Feng and Shih-Hsien Tseng and Vimal Buck and Robert Pardee},
  title     = {The Ohio State Model of ICS Cybersecurity},
  howpublished = {EasyChair Preprint 7183},
  year      = {EasyChair, 2021}}

Download PDF Open PDF in browser