Internet-of-Things (IoT) and cyber-physical systems (CPSs) may consist of thousands of devices connected in a complex network topology. The diversity and complexity of these components present an enormous attack surface, allowing an adversary to exploit security vulnerabilities of different devices to execute a potent attack. Though significant efforts have been made to improve the security of individual devices in these systems, little attention has been paid to security at the aggregate level. In this article, we describe a comprehensive risk management system, called GRAVITAS, for IoT/CPS that can identify undiscovered attack vectors and optimize the placement of defenses within the system for optimal performance and cost. While existing risk management systems consider only known attacks, our model employs a machine learning approach to extrapolate undiscovered exploits, enabling us to identify attacks overlooked by manual penetration testing (pen-testing). The model is flexible enough to analyze practically any IoT/CPS and provide the system administrator with a concrete list of suggested defenses that can reduce system vulnerability at optimal cost. GRAVITAS can be employed by governments, companies, and system administrators to design secure IoT/CPS at scale, providing a quantitative measure of security and efficiency in a world where IoT/CPS devices will soon be ubiquitous.
翻译:互联网和网络物理系统(CPS)可能由在复杂的网络地形中连接的数千个装置组成。这些部件的多样性和复杂性呈现出巨大的攻击表面,使对手能够利用不同装置的安全弱点实施强有力的攻击。虽然已作出重大努力来改善这些系统中个别装置的安全,但很少注意总体一级的安全。在本篇文章中,我们描述了一个综合风险管理系统,称为GRAVITAS,这个系统可以识别未发现的攻击矢量并优化防御在系统中的最佳性能和成本。虽然现有的风险管理系统只考虑已知的攻击,但我们的模型采用机器学习方法来推断未发现的各种装置的安全弱点,从而使我们能够查明被人工穿透测试忽视的攻击事件(现场测试)。模型足够灵活,可以实际分析任何IOT/CPS,并向系统管理员提供一份建议的具体防御清单,以最佳成本降低系统的脆弱性。GRAVITS可以被政府、公司和系统管理员使用,以便迅速设计IS/CP的定量标准。在IS/CP上提供一种安全度的IS/Q。