Critical Infrastructure Security and Resilience

This book presents the latest trends in attacks and protection methods of Critical Infrastructures. It describes original research models and applied solutions for protecting major emerging threats in Critical Infrastructures and their underlying networks. It presents a number of emerging endeavors, from newly adopted technical expertise in industrial security to efficient modeling and implementation of attacks and relevant security measures in industrial control systems; including advancements in hardware and services security, interdependency networks, risk analysis, and control systems security along with their underlying protocols.
Novel attacks against Critical Infrastructures (CI) demand novel security solutions. Simply adding more of what is done already (e.g. more thorough risk assessments, more expensive Intrusion Prevention/Detection Systems, more efficient firewalls, etc.) is simply not enough against threats and attacks that seem to have evolved beyond modern analyses and protection methods.

The knowledge presented here will help Critical Infrastructure authorities, security officers, Industrial Control Systems (ICS) personnel and relevant researchers to (i) get acquainted with advancements in the field, (ii) integrate security research into their industrial or research work, (iii) evolve current practices in modeling and analyzing Critical Infrastructures, and (iv) moderate potential crises and emergencies influencing or emerging from Critical Infrastructures.

Offers practical solutions that target major emerging threats Includes new models and tools that facilitate analysis and coordination of security Describes applied practices and results Contains state-of-the-art research in critical infrastructure protection and resilience

Auteur
Dimitris GRITZALIS is a Professor of IT Security and the Associate Rector for Research at Athens University of Economics and Business, Greece. He also serves as the Director of the M.Sc. Programme of the Dept. of Informatics on Information Systems. He holds degrees in Mathematics (BSc), Computer Science (MSc) and Information Security (PhD). His current research interests focus on critical infrastructure protection, risk assessment, smartphonesecurity, and digital forensics. Prof. Gritzalis is the Academic Editor of the Computers & Security journal (Elsevier), and the Scientific Editor of the International Journal of Critical Infrastructure Protection (Elsevier).
Marianthi THEOCHARIDOU is a Project Officer of the European Commission's Joint Research Centre, Italy. She holds degrees in Informatics (BSc), Information Systems (MSc) and Critical Infrastructure Protection (PhD). Her current research interests focus on critical infrastructure protection and resilience, andrisk assessment. Dr. Theocharidou is an Associate Editor of the International Journal of Critical Infrastructure Protection (Elsevier).
George STERGIOPOULOS is a Senior Researcher and an Adjunct Lecturer with the Dept. of Informatics at Athens University of Economics & Business, Greece. He holds degrees in Informatics (BSc), Information Systems (MSc) and Critical Infrastructure Protection (PhD). His current research interests focus on critical infrastructure protection, risk assessment, applied cryptology, and side-channel attacks.

Contenu
Resilience Approach to Critical Information Infrastructures.- Methodologies and Strategies for Critical Infrastructure Protection.- Risk Analysis for Critical Infrastructure Protection.- On Risk-Based Analysis of the Vulnerability of Urban Infrastructure to the Consequences of Climate Change.- Identification of Vulnerabilities in Networked Systems.- Game-Theoretic Decision Making for the Resilience of Interdependent Infrastructures Exposed to Disruptions.- Smallest Pseudo Target Set Identification and Related Problems Using the Implicative Interdependency Model.- Leveraging Network Theory and Stress Tests to Assess Interdependencies in Critical Infrastructures.- Micro-Grid Control Security Analysis: Analysis of Current and Emerging Vulnerabilities.- Engineering Edge Security in Industrial Control Systems.- Secure Interconnection of IT-OT Networks in the Industry 4.- Analysis and Triage of Advanced Hacking Groups Targeting Western Countries Critical National Infrastructure: APT28, Red October, and REGIN.- Aviation Cybersecurity and Cyber-Resilience: Assessing Risk in Air Traffic Management.- Open Source Intelligence for Energy Sector Cyberattacks.- A Target-Based Classification Method of Side Channel Attacks Towards Critical Infrastructure Protection.