A Systems Theoretic Approach to the Security Threats in Cyber Physical Systems Applied to Stuxnet

Nourian, Arash; Madnick, Stuart

Author(s)

Nourian, Arash; Madnick, Stuart E

DownloadMadnick_A Systems.pdf (2.871Mb)

OPEN_ACCESS_POLICY

Terms of use

Creative Commons Attribution-Noncommercial-Share Alike http://creativecommons.org/licenses/by-nc-sa/4.0/

Metadata

Show full item record

Abstract

Cyber Physical Systems (CPSs) are increasingly being adopted in a wide range of industries such as smart power grids. Even though the rapid proliferation of CPSs brings huge benefits to our society, it also provides potential attackers with many new opportunities to affect the physical world such as disrupting the services controlled by CPSs. Stuxnet is an example of such an attack that was designed to interrupt the Iranian nuclear program. In this paper, we show how the vulnerabilities exploited by Stuxnet could have been addressed at the design level. We utilize a system theoretic approach, based on prior research on system safety, that takes both physical and cyber components into account to analyze the threats exploited by Stuxnet. We conclude that such an approach is capable of identifying cyber threats towards CPSs at the design level and provide practical recommendations that CPS designers can utilize to design a more secure CPS.

Date issued

2015-12

URI

http://hdl.handle.net/1721.1/109718

Department

Sloan School of Management

Journal

IEEE Transactions on Dependable and Secure Computing

Publisher

Institute of Electrical and Electronics Engineers (IEEE)

Citation

Nourian, Arash, and Stuart Madnick. “A Systems Theoretic Approach to the Security Threats in Cyber Physical Systems Applied to Stuxnet.” IEEE Transactions on Dependable and Secure Computing (2015): 1–1.

Version: Author's final manuscript

ISSN

1545-5971

Collections

MIT Open Access Articles

MIT Libraries homeDSpace@MIT