Abstract : Diagnosing accidental and malicious events in an industrial control system requires an event model with specific capacities. Most models are dedicated to either safety or security but rarely both. And the latter are developed for objectives other than diagnosis and therefore unfit for this task. In this paper, we propose an event model considering both safety and security events, usable in real-time, with a probabilistic measure of on-going and future events. This model is able to replace alerts in the context of more global scenarios, including with reinforcements or conflicts between safety and security. The model is then used to provide an analysis of some of the security and safety events in the Taum Sauk Hydroelectric Power Station.
https://hal.inria.fr/hal-01954422 Contributor : Edwin BourgetConnect in order to contact the contributor Submitted on : Wednesday, March 6, 2019 - 2:28:08 PM Last modification on : Friday, August 5, 2022 - 2:54:52 PM Long-term archiving on: : Friday, June 7, 2019 - 7:41:10 PM
Edwin Bourget, Frédéric Cuppens, Nora Cuppens-Bouhlahia, Samuel Dubus, Simon N. Foley, et al.. Probabilistic Event Graph to Model Safety and Security for Diagnosis Purposes. 32th IFIP Annual Conference on Data and Applications Security and Privacy (DBSec), Jul 2018, Bergamo, Italy. pp.38-47, ⟨10.1007/978-3-319-95729-6_3⟩. ⟨hal-01954422v2⟩