IDEAS home Printed from https://ideas.repec.org/a/wly/syseng/v22y2019i2p114-133.html
   My bibliography  Save this article

A model‐based systems engineering approach to critical infrastructure vulnerability assessment and decision analysis

Author

Listed:
  • Johnathon Huff
  • Hugh Medal
  • Kelly Griendling

Abstract

Securing critical infrastructure against attack presents significant challenges. As new infrastructure is built and existing infrastructure is maintained, a method to assess the vulnerabilities and support decision makers in determining the best use of security resources is needed. In response to this need, this research develops a methodology for performing vulnerability assessment and decision analysis of critical infrastructure using model‐based systems engineering, an approach that has not been applied to this problem. The approach presented allows architects to link regulatory requirements, system architecture, subject matter expert opinion and attack vectors to a Department of Defense Architecture Framework (DoDAF)‐based model that allows decision makers to evaluate system vulnerability and determine alternatives to securing their systems based on their budget constraints. The decision analysis is done using an integer linear program that is integrated with DoDAF to provide solutions for how to allocate scarce security resources. Securing an electrical substation is used as an illustrative case study to demonstrate the methodology. The case study shows that the method presented here can be used to answer key questions, for example, what security resources should a decision maker invest in based on their budget constraints? Results show that the modeling and analysis approach provides a means to effectively evaluate the infrastructure vulnerability and presents a set of security alternatives for decision makers to choose from, based on their vulnerabilities and budget profile.

Suggested Citation

  • Johnathon Huff & Hugh Medal & Kelly Griendling, 2019. "A model‐based systems engineering approach to critical infrastructure vulnerability assessment and decision analysis," Systems Engineering, John Wiley & Sons, vol. 22(2), pages 114-133, March.
  • Handle: RePEc:wly:syseng:v:22:y:2019:i:2:p:114-133
    DOI: 10.1002/sys.21460
    as

    Download full text from publisher

    File URL: https://doi.org/10.1002/sys.21460
    Download Restriction: no

    File URL: https://libkey.io/10.1002/sys.21460?utm_source=ideas
    LibKey link: if access is restricted and if your library uses this service, LibKey will redirect you to where you can use your library subscription to access this item
    ---><---

    References listed on IDEAS

    as
    1. Lee W. Wagenhals & Alexander H. Levis, 2009. "Service Oriented Architectures, the DoD Architecture Framework 1.5, and Executable Architectures," Systems Engineering, John Wiley & Sons, vol. 12(4), pages 312-343, December.
    Full references (including those not matched with items on IDEAS)

    Most related items

    These are the items that most often cite the same works as this one and are cited by the same works as this one.
    1. Yune‐Yu Cheng & Shuo‐Fang Liu & Hsin‐His Lai, 2012. "Constructing an SOA‐based model for integrating design‐centric Internet‐mediated product information," Systems Engineering, John Wiley & Sons, vol. 15(3), pages 255-274, September.
    2. Ashraf M. Abusharekh & Lawrence E. Gloss & Alexander H. Levis, 2011. "Evaluation of Service Oriented Architecture‐based federated architectures," Systems Engineering, John Wiley & Sons, vol. 14(1), pages 56-72, March.
    3. Bingfeng Ge & Keith W. Hipel & Kewei Yang & Yingwu Chen, 2013. "A data‐centric capability‐focused approach for system‐of‐systems architecture modeling and analysis," Systems Engineering, John Wiley & Sons, vol. 16(3), pages 363-377, September.
    4. Jo Erskine Hannay & Karsten Brathen & Ole Martin Mevassvik, 2017. "A Hybrid Architecture Framework for Simulations in a Service‐Oriented Environment," Systems Engineering, John Wiley & Sons, vol. 20(3), pages 235-256, May.

    More about this item

    Statistics

    Access and download statistics

    Corrections

    All material on this site has been provided by the respective publishers and authors. You can help correct errors and omissions. When requesting a correction, please mention this item's handle: RePEc:wly:syseng:v:22:y:2019:i:2:p:114-133. See general information about how to correct material in RePEc.

    If you have authored this item and are not yet registered with RePEc, we encourage you to do it here. This allows to link your profile to this item. It also allows you to accept potential citations to this item that we are uncertain about.

    If CitEc recognized a bibliographic reference but did not link an item in RePEc to it, you can help with this form .

    If you know of missing items citing this one, you can help us creating those links by adding the relevant references in the same way as above, for each refering item. If you are a registered author of this item, you may also want to check the "citations" tab in your RePEc Author Service profile, as there may be some citations waiting for confirmation.

    For technical questions regarding this item, or to correct its authors, title, abstract, bibliographic or download information, contact: Wiley Content Delivery (email available below). General contact details of provider: https://doi.org/10.1002/(ISSN)1520-6858 .

    Please note that corrections may take a couple of weeks to filter through the various RePEc services.

    IDEAS is a RePEc service. RePEc uses bibliographic data supplied by the respective publishers.