Cyberthreats to infrastructure
Click HERE for Part One
Any cooperative effort that supports large-scale infrastructure protection must begin with an accurate perception of the real cyber risks that must be addressed. Experts understand that risk is measured by combining the probability of bad outcomes with the consequences of such outcomes. In the context of infrastructure protection, risks are driven by malicious threats and consequences of compromise to valued assets. To understand cyber risk, one must be able to effectively measure and evaluate these key components.
What are the cyberthreats to large-scale infrastructure?
The CIA model
of confidentiality, integrity, and availability offers a well-known, textbook view
of cyberthreats to large-scale infrastructures. As such, it can be used to
create a hierarchical representation of threats to large-scale systems. These levels
of the hierarchy can model general or domain-specific issues to highlight
scenarios that target infrastructure assets. The depth and details of the
hierarchy used should always be selected in a manner designed to help security
engineers understand threats.
An example of
a…
