showcase industry research partnership cyber resilience
play

Showcase: Industry/Research Partnership: Cyber Resilience Metrics - PowerPoint PPT Presentation

Dec 14, 2023 •344 likes •499 views

Showcase: Industry/Research Partnership: Cyber Resilience Metrics for Bulk Power System Sachin Shetty, Old Dominion University Bheshaj Krishnappa, ReliabilityFirst CREDC Industry Workshop March 27-29, 2017 Funded by the U.S. Department of

  1. Showcase: Industry/Research Partnership: Cyber Resilience Metrics for Bulk Power System Sachin Shetty, Old Dominion University Bheshaj Krishnappa, ReliabilityFirst CREDC Industry Workshop March 27-29, 2017 Funded by the U.S. Department of Energy and the U.S. Department of Homeland Security | cred-c.org

  2. Outline • Collaborative Research Agreement • Industry Relevance • Partnership Establishment • Research Motivation • Research Challenges • Research Approach • Overcoming Hurdles • Technology Transition Plan • Milestones and Deliverables

  3. Collaborative Research Agreement • Research Agreement Goal • Derive metrics to evaluate cyber resilience • ReliabilityFirst (RF) will provide industry knowledge. • Research Agreement Purpose • Collaborative project between Old Dominion University and RF to develop cyber resilience metrics for bulk power system • Advance RF’s mission of promoting grid reliability and resiliency. • Provide industry relevance for CREDC research based on data and RF expertise • Performance Period – Q2 2016 – Q2 2017

  4. Abou out RF t RF • RF is one of the eight FERC approved regional entities responsible for ensuring the reliability of the BPS. • RF is responsible for the reliability and security of the power system within a footprint which spans 13 states in the Eastern Interconnection. • Mission involves developing, monitoring, and enforcing compliance with the FERC approved reliability standards for owners, operators and users of the BPS (approximately 230 utilities) • Developing and disseminating timely and instructive information to enhance the reliability of the BPS; • Provide seasonal and long-term assessments of BPS reliability.

  5. Industry Relevance • Develop techniques to compute cyber resilience metrics for BPS. • Opportunity to provide the BPS stakeholders with improved mechanisms or methods to quantify cyber resilience and increase reliability. • Proposed project will provide methods to quantify and measure cyber resilience. • Characterize the ability of the BPS infrastructure to ensure operational resilience in presence of cyber attacks • Monitor and simulate scenarios to improve the resilience.

  6. Partner ership E Establishmen ent • Initial Meeting • First CREDC industry workshop, March 2016 • Follow on Discussions • Several meetings to identify a research project which addresses EDS gaps and relevant to RF and their stakeholders. • Research Project Identification • SDN based EDS Risk assessment research activity not a good fit • Developed new research activity for BPS cyber resilience metrics • Research Collaboration and Work • Established the mechanism between ODU and RF • Started working on the project from Q3 2016

  7. Research Motivation • Availability of BPS cyber resilience metrics will support risk management and mitigation decisions. • Provide quantitative insights to ensure operational resilience and assist in development of cost-effective mitigation plan. • Motivate BPS operators to continually assess their resilience capabilities and benchmark their performance

  8. Resea earch Challen enges es • Understanding the North American BPS which is a complex technological network comprising of large number of system states, dynamic operating conditions, complex network configurations, wide variety and geographically distributed assets and attack paths • Existing models for power grid structural resilience focus on graceful degradation in presence of failures, hence the need to quantify graceful degradation • Quantifying cyber resilience is challenging • Resilience of a system depends critically on defining acceptable system performance • Cyber resilience metrics for BPS vulnerable to cyber threats needs to be developed • Lack of methods to quantify cyber resilience metrics

  9. Research Approach • Understanding the factors impacting resilience of BPS in terms of availability of essential services • Utilize and simulate the analytical models to study resilience using the knowledge of BPS Infrastructure, network topologies, firewall configurations, communication technologies, etc. • Verify and validate the numerical results for BPS cyber resilience metrics • Measure cyber resilience for power systems as a function of robustness, redundancy, resourcefulness and rapidity.

  10. Research Approach • Robustness —the ability of systems, system elements, and other units of analysis to withstand disaster forces without significant degradation or loss of performance; • Redundancy —the extent to which systems, system elements, or other units are substitutable, that is, capable of satisfying functional requirements, if significant degradation or loss of functionality occurs; • Resourcefulness —the ability to diagnose and prioritize problems and to initiate solutions by identifying and mobilizing material, monetary informational, techno- logical, and human resources; and • Rapidity —the capacity to restore functionality in a timely way, containing losses and avoiding disruptions. Source: Bruneau, M., S. E. Chang, R. T. Eguchi, G. C. Lee, T. D. O’Rourke, A. M. Reinhorn, M. Shinozuka, K. Tierney, W. A. Wallace, and D. von Winterfeldt. A Framework to Quantitatively Assess and Enhance the Seismic Resilience of Communities. Earthquake Spectra, Vol. 19, No. 4, 2003, pp. 733–752.

  11. Overcoming Hurdles • Access to data to validate the proposed theoretical framework • In our effort, the data requirements were knowledge of BPS Infrastructure, network topologies, firewall configurations, communication technologies, etc. • We were able to acquire the information that was relevant to validate our technique based on weekly discussions with RF

  12. Technology Transition Plan Develop tools to measure robustness, redundancy, • rapidity and resourcefulness properties of BPS in the presence of cyber threats. Qualitative - Develop tool which provides BPS operators with a • qualitative approach to self-assess the cyber resilience indicators Quantitative – Develop tool which provides cyber resilience • metrics for BPS operators based on their operating assets and conditions

  13. Milestones and Deliverables • Q4, 2016 – Completed research paper on graph- theoretic framework to measure cyber resilience of BPS that takes into account the ability to tolerate N-K contingencies. • Q2, 2017 – Preliminary version of qualitative tool to assess security posture of RF stakeholders • Q3, 2017 – Preliminary version of quantitative tool which implements proposed framework to provide cyber resilience metrics for utility companies.

  14. http://cred-c.org @credcresearch facebook.com/credcresearch/ Funded by the U.S. Department of Energy and the U.S. Department of Homeland Security

Recommend

Cyber Resilience OCTOBER 19, 2018 COLUMBIA, SC Cyber Resilience Professional Tom Scott

Cyber Resilience OCTOBER 19, 2018 COLUMBIA, SC Cyber Resilience Professional Tom Scott

Financial Planning Association South Carolina Cyber Resilience OCTOBER 19, 2018 COLUMBIA, SC Cyber Resilience Professional Tom Scott New Century Solutions LLC | NCS Cyber Certified Information Systems Security Professional Certified

863 views • 46 slides
CYBER RESILIENCE AND CRISIS MANAGEMENT IN THE SECURITIES INDUSTRY FEBRUARY 6, 2014 Karl Schimmeck

CYBER RESILIENCE AND CRISIS MANAGEMENT IN THE SECURITIES INDUSTRY FEBRUARY 6, 2014 Karl Schimmeck

CYBER RESILIENCE AND CRISIS MANAGEMENT IN THE SECURITIES INDUSTRY FEBRUARY 6, 2014 Karl Schimmeck Karl Schimmeck is Managing Director of Financial Services Operations at SIFMA. He brings over 15 years of experience in operations,

702 views • 25 slides
Strengthening Europes Cyber Resilience System a nd Fostering a Competitive & Innovative

Strengthening Europes Cyber Resilience System a nd Fostering a Competitive & Innovative

& National Emergency Coordination MEUSAC Consultation Session Strengthening Europes Cyber Resilience System a nd Fostering a Competitive & Innovative Cybersecurity Industry (13 March 2017 ) Venue: Fortress Builders

703 views • 27 slides
Strengthening Europes Cyber Resilience System & Fostering a Competitive and Innovative

Strengthening Europes Cyber Resilience System & Fostering a Competitive and Innovative

Strengthening Europes Cyber Resilience System & Fostering a Competitive and Innovative Cybersecurity Industry COM(2016) 410: Malta Perspective MEUSAC Meeting, Valletta Dr. Keith Cilia-Debono 13th March, 2017 Cyberspace : Prelude

300 views • 17 slides
Safe, Secure and Prosperous: A Cyber Resilience Strategy for Scotland Learning & Skills

Safe, Secure and Prosperous: A Cyber Resilience Strategy for Scotland Learning & Skills

Safe, Secure and Prosperous: A Cyber Resilience Strategy for Scotland Learning & Skills Daniel Sellers Strategic Them es Leadership and Partnership Working Awareness Raising and Communication Education, Skills and Professional Developm

317 views • 18 slides
SARNET ENHANCING RESILIENCE AGAINST CYBER ATTACKS Frank Fransen | 5 October 2016 SARNET -

SARNET ENHANCING RESILIENCE AGAINST CYBER ATTACKS Frank Fransen | 5 October 2016 SARNET -

SARNET ENHANCING RESILIENCE AGAINST CYBER ATTACKS Frank Fransen | 5 October 2016 SARNET - Enhancing Cyber Resilience Relation to NCSRA II SARNET | October 5th 2016 CYBER THREATS ARE EVOLVING Key trends Cyber Cyber Cyber Magnitude of

153 views • 13 slides
University of Brighton/Boingboing Partnership Co-producing resilience research to address

University of Brighton/Boingboing Partnership Co-producing resilience research to address

University of Brighton/Boingboing Partnership Co-producing resilience research to address inequalities Anne Rathbone, Simon Duncan, Prof Angie Hart, Dr Suna Eryigit-Madzwamuse, Dr Josh Cameron, Lisa Buttery LSE 14 th June 2017 Overview

209 views • 19 slides
Cyber Risk Research at CCRS Jennifer Copic Research Assistant Cambridge Centre for Risk Studies

Cyber Risk Research at CCRS Jennifer Copic Research Assistant Cambridge Centre for Risk Studies

Cambridge Centre for Risk Studies Advisory Board Research Showcase 24 January 2017 Cyber Risk Research at CCRS Jennifer Copic Research Assistant Cambridge Centre for Risk Studies Largest Cyber Data Exfiltration Event: Yahoo August 2013

296 views • 18 slides
Conceptualizing Human Resilience in the Face of the Global Epidemiology of Cyber Attacks L Jean

Conceptualizing Human Resilience in the Face of the Global Epidemiology of Cyber Attacks L Jean

Conceptualizing Human Resilience in the Face of the Global Epidemiology of Cyber Attacks L Jean Camp, Marthie Grobler, Julian Jang-Jaccard, Christian Probst, Karen Renaud, Paul Watters Cyber is Global It is unrealistic to study cyber at a

719 views • 36 slides
Collaboration and Showcase of Cyber Performance ZULKIFLI BIN MOHAMAD, PhD. Arts Exchange in

Collaboration and Showcase of Cyber Performance ZULKIFLI BIN MOHAMAD, PhD. Arts Exchange in

Collaboration and Showcase of Cyber Performance ZULKIFLI BIN MOHAMAD, PhD. Arts Exchange in Asia, Kuala Lumpur, Fulbright Scholar, UCRiverside/UCLA ABSTRACT This presentation will focus on the cultural differences and understanding needed

88 views • 5 slides
Cyber Insurance Illinois State Innovation Consulting Community Agenda Our Research Method

Cyber Insurance Illinois State Innovation Consulting Community Agenda Our Research Method

Cyber Insurance Illinois State Innovation Consulting Community Agenda Our Research Method Segment Definition Why is cyber different? Major Takeaways How will cyber change the industry? Recommendations Research Approach

1.11k views • 22 slides
NIST Information Technology Laboratory (ITL) The Cyber Maryland Showcase Security Automation

NIST Information Technology Laboratory (ITL) The Cyber Maryland Showcase Security Automation

NIST Information Technology Laboratory (ITL) The Cyber Maryland Showcase Security Automation Guidance Tower of Babel Documents Too much Alerts & Web Sites proprietary, Advisories incompatible information Costly

93 views • 8 slides
SAME Resilience Webinar Dedicated to National Security Since 1920 JETC Resilience Program Wed, 23

SAME Resilience Webinar Dedicated to National Security Since 1920 JETC Resilience Program Wed, 23

SAME Resilience Webinar Dedicated to National Security Since 1920 JETC Resilience Program Wed, 23 May Government Panel on Priority Resilience Issues Cyber Resiliency of Mission Critical Automation Systems Thr, 24 May Resilience

564 views • 27 slides
NIST Information Technology Laboratory (ITL) The Cyber Maryland Showcase Cryptography Sign

NIST Information Technology Laboratory (ITL) The Cyber Maryland Showcase Cryptography Sign

NIST Information Technology Laboratory (ITL) The Cyber Maryland Showcase Cryptography Sign Hash Accuracy O r i g i n Key Encrypt Challenges Processing delays Concealment I nformation overhead Key Key Management overhead

228 views • 7 slides
Cyber Security Research on Industrial Control Systems SM Yiu Department of Computer Science The

Cyber Security Research on Industrial Control Systems SM Yiu Department of Computer Science The

Cyber Security Research on Industrial Control Systems SM Yiu Department of Computer Science The University of Hong Kong Cyber-security for industry 4.0 conference 23 June, 2017 1 Will the followings only be seen in movies? Movies: Cyber

510 views • 28 slides
Cyber Security In Cyber Security In Industry: Industry: How How vulnerable is your plant?

Cyber Security In Cyber Security In Industry: Industry: How How vulnerable is your plant?

Cyber Security In Cyber Security In Industry: Industry: How How vulnerable is your plant? vulnerable is your plant? vulnerable is your plant? vulnerable is your plant? Brian Cole Brian Cole Research Projects Developer Research Projects

140 views • 13 slides
Resilience, Research and the GFSS Sheila Roquitte, Director, Ag Research & Policy, USAID

Resilience, Research and the GFSS Sheila Roquitte, Director, Ag Research & Policy, USAID

Resilience, Research and the GFSS Sheila Roquitte, Director, Ag Research & Policy, USAID Photo Credit Goes Here OVERVIEW Asia: a region of dynamic change 1 Resilience definition & key concepts 2 Research, Resilience and the

479 views • 25 slides
The Active Resilience Wellbeing Serv rvice What t is is The Acti tive Resilience Well

The Active Resilience Wellbeing Serv rvice What t is is The Acti tive Resilience Well

The Active Resilience Wellbeing Serv rvice What t is is The Acti tive Resilience Well llbeing Service? A partnership between Active Resilience & HEADSSUP. We offer an online portal which empowers organisations to enable employees to

585 views • 15 slides
Enhancing the resilience of Telecommunications a partnership with RAYNET Overview

Enhancing the resilience of Telecommunications a partnership with RAYNET Overview

Enhancing the resilience of Telecommunications a partnership with RAYNET Overview Conversation in two parts: 1: Civil Contingencies Secretariat Who we are and what we do look in more depth work we are doing in a specific area 2:

524 views • 31 slides
CREATE the Next Generation IoT eXperience for the Future European Industry Partnership

CREATE the Next Generation IoT eXperience for the Future European Industry Partnership

CREATE the Next Generation IoT eXperience for the Future European Industry Partnership Collaborative Event Strategic Directions and Research Priorities. Amsterdam, April 17 th 11:20 EFFRA Roadmap and Connected Factories 2025 pathways

581 views • 21 slides
When It All Hits The Fan: Self-Care Strategies for Resilience is the result of a partnership

When It All Hits The Fan: Self-Care Strategies for Resilience is the result of a partnership

When It All Hits The Fan: Self-Care Strategies for Resilience is the result of a partnership between Behavior/Mental Health TAC Website https://www.marshall.edu/bmhtac/ Compassion Satisfaction Compassion Fatigue Overview Burnout and

463 views • 43 slides
European Framework for Threat Intelligence Based Ethical Redteaming (TIBER- EU) & Cyber

European Framework for Threat Intelligence Based Ethical Redteaming (TIBER- EU) & Cyber

European Framework for Threat Intelligence Based Ethical Redteaming (TIBER- EU) & Cyber Resilience Oversight Expectations (CROE) AMI-Pay 17 April 2018 Cyber Resilience Oversight Expectations (CROE) Rubric CROE why? Sets up a

415 views • 9 slides
Industry Academic Partnership Genesis Research and Stevens School of Business Dr. Chris

Industry Academic Partnership Genesis Research and Stevens School of Business Dr. Chris

Industry Academic Partnership Genesis Research and Stevens School of Business Dr. Chris Asakiewicz, Stevens School of Business Dr. Frank Corvino, Genesis Research Welcome Dr. Gregory Prastacos, Dean Stevens Institute of Technology School

269 views • 14 slides
DEMONSTRATION PARTNERSHIP WELCOME TO THE FEDERAL PHASE IV WHAT IS THE FDP? The FDP is a

DEMONSTRATION PARTNERSHIP WELCOME TO THE FEDERAL PHASE IV WHAT IS THE FDP? The FDP is a

1 DEMONSTRATION PARTNERSHIP WELCOME TO THE FEDERAL PHASE IV WHAT IS THE FDP? The FDP is a cooperative effort among federal research agencies, universities and the National Academy of Sciences Government- University-Industry Research

340 views • 32 slides

More recommend