Automation of the Process of Analysis of Security Threats in Cyber-Physical Systems

Purpose: development of a methodology for automating the process of analyzing security threats in cyberphysical systems, which is based on the study and analysis of the system architecture and possible risks of threat implementation, as well as the capabilities of the intruder. Method: the developed methodology is based on structuring information about the architectural features of cyberphysical systems. Structuring information and presenting it in the form of directories that are interconnected allows to determine the list of threats, vulnerabilities and attacks that are relevant to it based on structural and functional characteristics. When designing the database, an ontological approach was applied, which allows you to highlight concepts and their properties. Results: methodological recommendations for analyzing the security of cyber-physical systems have been developed, based on the study and assessment of vulnerabilities and security threats. The analysis of the structural and functional characteristics of the cyber-physical system is carried out and the main features from the point of view of information security are highlighted. Integration of new methods for assessing risks, identifying current threats, and developing effective recommendations for cyber-physical systems made it possible to create a knowledge base about threats, attacks, vulnerabilities of CPS. New threats to CPS have been identified, which are associated with their specific properties: mobility, use of wireless networks, location outside the controlled area. The result of the study is a product presented in the form of a knowledge base that allows you to determine the degree of threat of a threat for a given structural and functional characteristics of a cyber-physical system. Implemented automatic updating of information about vulnerabilities from open databases.