Analysis of energy delivery sector malware attack response mechanisms

• dc.contributor.advisor: Stuart Madnick and Keri Pearlson.
• dc.contributor.author: Sapienza, Michael Louis.
• dc.contributor.other: Massachusetts Institute of Technology. Engineering Systems Division.
• dc.contributor.other: System Design and Management Program.
• dc.date.copyright: 2019
• dc.date.issued: 2019
• dc.identifier.uri: https://hdl.handle.net/1721.1/145237
• dc.description: Thesis: S.M. in Engineering and Management, Massachusetts Institute of Technology, Engineering Systems Division, System Design and Management Program, 2019
• dc.description: Cataloged from PDF version of thesis. "Due to the condition of the original material, there are unavoidable flaws in this reproduction. We have made every effort possible to provide you with the best copy available. The images contained in this document are of the best quality available"--Disclaimer Notice page.
• dc.description: Includes bibliographical references (pages 165-180).
• dc.description.abstract: Recent cyberattacks on the electricity grids in the U.S. and Ukraine, the rise of malware tailored to industrial control systems, failure of basic sanitary and life-saving systems after prolonged power outages, economic losses numbering in the billions: these are the consequences of malware attacks on critical infrastructure sectors across the globe. New and continuously evolving cyber threats demand new and better response mechanisms to mitigate their effects. However, critical infrastructure sectors, and the electricity subsector in particular, are faced with the enormous challenge of identifying gaps in their extremely complex cyber incident response mechanisms. This thesis takes a novel, systems-level approach to pinpoint deficiencies in incident response mechanisms of the U.S. electricity sector. An analysis of current and future external influences on the electricity sector validates that malware threats and vulnerabilities are rapidly evolving and are already outpacing the sector's ability to adapt its cyber incident response mechanisms. Using the Architecting Innovative Enterprise Strategies (ARIES) Framework to explore current incident response mechanisms reveals that the traditional, all-hazards approach to major incident response is insufficient to keep the grid secure. Instead, improvements in cyber incident response strategies, processes, organizations, information flow, products, and services are all necessary to overcome the disparity. Most importantly, the systems-level approach exposes the culture of cybersecurity in the sector is the systemic driver of those shortfalls and must be the primary consideration for improvement to the electricity sector's cyber incident response mechanisms.
• dc.description.statementofresponsibility: by Michael Louis Sapienza.
• dc.format.extent: 180 pages
• dc.language.iso: eng
• dc.publisher: Massachusetts Institute of Technology
• dc.subject: Engineering Systems Division.
• dc.subject: System Design and Management Program.
• dc.type: Thesis
• dc.description.degree: S.M. in Engineering and Management
• dc.contributor.department: Massachusetts Institute of Technology. Engineering Systems Division
• dc.contributor.department: System Design and Management Program.
• dc.identifier.oclc: 1342000007
• dc.description.collection: S.M. in Engineering and Management Massachusetts Institute of Technology, Engineering Systems Division, System Design and Management Program
• mit.thesis.degree: Master
• mit.thesis.department: Sloan