Affiliation:
1. Department of Civil and Environmental Engineering University of Alberta Edmonton Alberta Canada
2. Mary Kay O'Connor Process Safety Centre, Artie McFerrin Department of Chemical Engineering Texas A&M University College Station Texas USA
Abstract
AbstractIn recent years, cyber‐connected industrial control systems (ICS) for remote operations have increased cyber and process risks. While process safety is widely studied, its connectivity with the cyber threat has not been well explored. It is crucial to study cybersecurity and process safety in an integrated way to ensure safe operations. This study addresses this gap by first analyzing the cyber incidents related to ICS since 1990. Subsequently, it connects cyber incidents with process accidents by Bowtie based on the ATT&CK framework. It further develops a Bayesian network due to the insignificant probabilities by Bowtie. The developed model is explained with case analysis. This study confirms that the process industry is prone to cyberattacks, and the field controllers are the main targets of attacks. The study observes that the safety instrument system (SIS) is critical for both the attackers and neutralizing the attacks (defenders). Moreover, attackers deploy newer approaches to attack the ICS, and therefore, methods of threat assessment and its neutralizing strategies should be dynamic.
Funder
Natural Sciences and Engineering Research Council of Canada
Mary Kay O'Connor Process Safety Center
Subject
General Chemical Engineering
Reference46 articles.
1. J.Lewis Economic Impact of Cybercrime: no Slowing Down https://www.csis.org/analysis/economic‐impact‐cybercrime(accessed: March 2023).
2. When Smart Systems Fail: The Ethics of Cyber–Physical Critical Infrastructure Risk
3. The role of inherently safer design in process safety
Cited by
1 articles.
订阅此论文施引文献
订阅此论文施引文献,注册后可以免费订阅5篇论文的施引文献,订阅后可以查看论文全部施引文献