Print Email Facebook Twitter Quantitative Risk Assessment of Cyber Attacks on Cyber-Physical Systems using Attack Graphs Title Quantitative Risk Assessment of Cyber Attacks on Cyber-Physical Systems using Attack Graphs Author Semertzis, I. (TU Delft Intelligent Electrical Power Grids) Subramaniam Rajkumar, Vetrivel (TU Delft Intelligent Electrical Power Grids) Stefanov, Alexandru (TU Delft Intelligent Electrical Power Grids) Fransen, Frank (TNO) Palensky, P. (TU Delft Intelligent Electrical Power Grids) Date 2022 Abstract Over the past decade, the number of cyber attack incidents targeting critical infrastructures such as the electrical power system has increased. To assess the risk of cyber attacks on the cyber-physical system, a holistic approach is needed that considers both system layers. However, the existing risk assessment methods are either qualitative in nature or employ probabilistic models to study the impact on only one system layer. Hence, in this work, we propose a quantitative risk assessment method for cyber-physical systems based on probabilistic and deterministic techniques. The former uses attack graphs to evaluate the attack likelihood, while the latter analyzes the potential cyber-physical impact. This is achieved through a dynamic cyber-physical power system model, i.e., digital twin, able to simulate power system cascading failures caused by cyber attacks. Additionally, we propose a domain-specific language to describe the assets of digital substations and thereby model the attack graphs. Using the proposed method, combined risk metrics are calculated that consider the likelihood and impact of cyber threat scenarios. The risk assessment is conducted using the IEEE 39-bus system, consisting of 27 user-defined digital substations. These substations serve as the backbone of the examined cyber system layer and as entry-points for the attackers. Results indicate that cyber attacks on specific substations can cause major cascading failures or even a blackout. Thereby, the proposed method identifies the most critical substations and assets that must be cyber secured. Subject attack graphscyber-physical systemsdigital twincyber attacksrisk assessment To reference this document use: http://resolver.tudelft.nl/uuid:346912da-ec31-44ca-ac3c-680cbe469973 DOI https://doi.org/10.1109/MSCPES55116.2022.9770140 Publisher IEEE Embargo date 2022-11-09 ISBN 978-1-6654-6866-4 Source 2022 10th Workshop on Modelling and Simulation of Cyber-Physical Energy Systems (MSCPES) Event 2022 10th Workshop on Modelling and Simulation of Cyber-Physical Energy Systems (MSCPES), 2022-05-03, Milan, Italy Bibliographical note Green Open Access added to TU Delft Institutional Repository 'You share, we take care!' - Taverne project https://www.openaccess.nl/en/you-share-we-take-care Otherwise as indicated in the copyright section: the publisher is the copyright holder of this work and the author uses the Dutch legislation to make this work public. Part of collection Institutional Repository Document type conference paper Rights © 2022 I. Semertzis, Vetrivel Subramaniam Rajkumar, Alexandru Stefanov, Frank Fransen, P. Palensky Files PDF Quantitative_Risk_Assessm ... Graphs.pdf 1.4 MB Close viewer /islandora/object/uuid:346912da-ec31-44ca-ac3c-680cbe469973/datastream/OBJ/view