A review of cyber security risk assessment methods for SCADA systems

Cherdantseva, Yulia; Burnap, Pete; Blyth, Andrew; Eden, Peter; Jones, Kevin; Soulsby, Hugh; Stoddart, Kristan

doi:10.1016/j.cose.2015.09.009

reviewComputers & SecurityOct 21, 2015HYBRID OA

A review of cyber security risk assessment methods for SCADA systems

YCYulia Cherdantseva PBPete Burnap ABAndrew Blyth PEPeter Eden KJKevin Jones

Cardiff University · UNSW Sydney · +2 more institutions

Indexed incrossref

Abstract

This paper reviews the state of the art in cyber security risk assessment of Supervisory Control and Data Acquisition (SCADA) systems. We select and in-detail examine twenty-four risk assessment methods developed for or applied in the context of a SCADA system. We describe the essence of the methods and then analyse them in terms of aim; application domain; the stages of risk management addressed; key risk management concepts covered; impact measurement; sources of probabilistic data; evaluation and tool support. Based on the analysis, we suggest an intuitive scheme for the categorisation of cyber security risk assessment methods for SCADA systems. We also outline five research challenges facing the domain and…

Citation impact

576

total citations

FWCI: 84.05
Percentile: 100%
References: 122

Citations per year

Authors

7

Topics & keywords

Topics

Keywords

SCADA
Computer science
Risk management
Risk analysis (engineering)
Computer security
Context (archaeology)
Risk assessment
Probabilistic logic

No related works found for this paper.