-
Cyber Resilience in IoT network: Methodology and example of assessment through epidemic spreading
Authors:
Emanuele Bellini,
Franco Bagnoli,
Alexander A. Ganin,
Igor Linkov
Abstract:
Cyber Resilience is an important property of complex systems and is important consideration in develo** specific IoT applications. This work aims at introducing a novel approach to assess IoT resilience adopting the risk perception in network based epidemic spreading approach. In particular IoT has been considered a network of devices where the probability of infection and interactions (communic…
▽ More
Cyber Resilience is an important property of complex systems and is important consideration in develo** specific IoT applications. This work aims at introducing a novel approach to assess IoT resilience adopting the risk perception in network based epidemic spreading approach. In particular IoT has been considered a network of devices where the probability of infection and interactions (communication), needs to be balanced in order to reduce the malware outbreack while maintaining the network functionalities at an acceptable level. The mathematical model and the simulation results reveal the benefit of a shift from a risk-based to a resilience based approach to threat management in IoT.
△ Less
Submitted 23 September, 2021;
originally announced September 2021.
-
Resilience and efficiency in transportation networks
Authors:
Alexander A. Ganin,
Maksim Kitsak,
Dayton Marchese,
Jeffrey M. Keisler,
Thomas Seager,
Igor Linkov
Abstract:
Urban transportation systems are vulnerable to congestion, accidents, weather, special events, and other costly delays. Whereas typical policy responses prioritize reduction of delays under normal conditions to improve the efficiency of urban road systems, analytic support for investments that improve resilience (defined as system recovery from additional disruptions) is still scarce. In this effo…
▽ More
Urban transportation systems are vulnerable to congestion, accidents, weather, special events, and other costly delays. Whereas typical policy responses prioritize reduction of delays under normal conditions to improve the efficiency of urban road systems, analytic support for investments that improve resilience (defined as system recovery from additional disruptions) is still scarce. In this effort, we represent paved roads as a transportation network by map** intersections to nodes and road segments between the intersections to links. We built road networks for 40 of the urban areas defined by the U.S. Census Bureau. We developed and calibrated a model to evaluate traffic delays using link loads. The loads may be regarded as traffic-based centrality measures, estimating the number of individuals using corresponding road segments. Efficiency was estimated as the average annual delay per peak-period auto commuter, and modeled results were found to be close to observed data, with the notable exception of New York City. Resilience was estimated as the change in efficiency resulting from roadway disruptions and was found to vary between cities, with increased delays due to a 5% random loss of road linkages ranging from 9.5% in Los Angeles to 56.0% in San Francisco. The results demonstrate that many urban road systems that operate inefficiently under normal conditions are nevertheless resilient to disruption, whereas some more efficient cities are more fragile. The implication is that resilience, not just efficiency, should be considered explicitly in roadway project selection and justify investment opportunities related to disaster and other disruptions.
△ Less
Submitted 21 December, 2017;
originally announced December 2017.
-
Stability of a Giant Connected Component in a Complex Network
Authors:
Maksim Kitsak,
Alexander A. Ganin,
Daniel A. Eisenberg,
Pavel L. Krapivsky,
Dmitri Krioukov,
David L. Alderson,
Igor Linkov
Abstract:
We analyze the stability of the network's giant connected component under impact of adverse events, which we model through the link percolation. Specifically, we quantify the extent to which the largest connected component of a network consists of the same nodes, regardless of the specific set of deactivated links. Our results are intuitive in the case of single-layered systems: the presence of la…
▽ More
We analyze the stability of the network's giant connected component under impact of adverse events, which we model through the link percolation. Specifically, we quantify the extent to which the largest connected component of a network consists of the same nodes, regardless of the specific set of deactivated links. Our results are intuitive in the case of single-layered systems: the presence of large degree nodes in a single-layered network ensures both its robustness and stability. In contrast, we find that interdependent networks that are robust to adverse events have unstable connected components. Our results bring novel insights to the design of resilient network topologies and the reinforcement of existing networked systems.
△ Less
Submitted 23 January, 2018; v1 submitted 28 September, 2017;
originally announced September 2017.
-
Security Metrics in Industrial Control Systems
Authors:
Zachary A. Collier,
Mahesh Panwar,
Alexander A. Ganin,
Alex Kott,
Igor Linkov
Abstract:
Risk is the best known and perhaps the best studied example within a much broader class of cyber security metrics. However, risk is not the only possible cyber security metric. Other metrics such as resilience can exist and could be potentially very valuable to defenders of ICS systems. Often, metrics are defined as measurable properties of a system that quantify the degree to which objectives of…
▽ More
Risk is the best known and perhaps the best studied example within a much broader class of cyber security metrics. However, risk is not the only possible cyber security metric. Other metrics such as resilience can exist and could be potentially very valuable to defenders of ICS systems. Often, metrics are defined as measurable properties of a system that quantify the degree to which objectives of the system are achieved. Metrics can provide cyber defenders of an ICS with critical insights regarding the system. Metrics are generally acquired by analyzing relevant attributes of that system. In terms of cyber security metrics, ICSs tend to have unique features: in many cases, these systems are older technologies that were designed for functionality rather than security. They are also extremely diverse systems that have different requirements and objectives. Therefore, metrics for ICSs must be tailored to a diverse group of systems with many features and perform many different functions. In this chapter, we first outline the general theory of performance metrics, and highlight examples from the cyber security domain and ICS in particular. We then focus on a particular example of a class of metrics that is different from the one we have considered in earlier chapters. Instead of risk, here we consider metrics of resilience. Resilience is defined by the National Academy of Sciences (2012) as the ability to prepare and plan for, absorb, recover from, or more successfully adapt to actual or potential adverse events. This chapter presents two approaches for the generation of metrics based on the concept of resilience using a matrix-based approach and a network-based approach. Finally, a discussion of the benefits and drawbacks of different methods is presented along with a process and tips intended to aid in devising effective metrics.
△ Less
Submitted 25 December, 2015;
originally announced December 2015.
-
Operational resilience: concepts, design and analysis
Authors:
Alexander A. Ganin,
Emanuele Massaro,
Alexander Gutfraind,
Nicolas Steen,
Jeffrey M. Keisler,
Alexander Kott,
Rami Mangoubi,
Igor Linkov
Abstract:
Building resilience into today's complex infrastructures is critical to the daily functioning of society and its ability to withstand and recover from natural disasters, epidemics, and cyber-threats. This study proposes quantitative measures that implement the definition of engineering resilience advanced by the National Academy of Sciences. The approach is applicable across physical, information,…
▽ More
Building resilience into today's complex infrastructures is critical to the daily functioning of society and its ability to withstand and recover from natural disasters, epidemics, and cyber-threats. This study proposes quantitative measures that implement the definition of engineering resilience advanced by the National Academy of Sciences. The approach is applicable across physical, information, and social domains. It evaluates the critical functionality, defined as a performance function of time set by the stakeholders. Critical functionality is a source of valuable information, such as the integrated system resilience over a time interval, and its robustness. The paper demonstrates the formulation on two classes of models: 1) multi-level directed acyclic graphs, and 2) interdependent coupled networks. For both models synthetic case studies are used to explore trends. For the first class, the approach is also applied to the Linux operating system. Results indicate that desired resilience and robustness levels are achievable by trading off different design parameters, such as redundancy, node recovery time, and backup supply available. The nonlinear relationship between network parameters and resilience levels confirms the utility of the proposed approach, which is of benefit to analysts and designers of complex systems and networks.
△ Less
Submitted 5 August, 2015;
originally announced August 2015.