Skip to main content
OSTI.GOVU.S. Department of Energy Office of Scientific and Technical Information
U.S. Department of Energy
Office of Scientific and Technical Information
 

Comparison of Socio-Technical Threat Models

Conference ·
OSTI ID:2006810
 [1];  [2]
  1. Idaho National Laboratory
  2. Naval Postgraduate School
+ Show Author Affiliations

Given the adoption of emerging technologies and the increasing complexity of managing such systems with a lifecycle much shorter than that of critical infrastructure systems, there is a practical need to be able to analyze sociotechnical dependencies and their associated evolving risks. Threat models based on social influence techniques can be used to implement adversarial tactics analogous to the cyber kill chain and attested to within the MITRE ATT&CK for ICS framework including Initial Access, Persistence, Collection, and Impact. Furthermore, as with cyber disruptions, the impact of social influence threat models can have an asymmetric impact that is not spatially-localized. Finally, unlike cyber attacks with a reasonably short duration (ransomware takes days to months), social influence based attacks have the potential to persist for much longer as they are based on long-term strategic infrastructure investments within the private sector. Given the increased importance of electric vehicle charging stations as a long-term, strategic infrastructure investment within the Energy and Transportation Sectors, we provide initial results that compare the impact of a Loss of Availability (T0826) realized through cyber and social influence based threat models. The analysis employs techniques from automated reasoning and measures of network complexity to understand evolving dominance of EV payment and charging networks within geographic region of interest. Within this context, we compare the impact of a loss of availability due to ransomware versus that of loss of support due to a merger and acquisition. Results across several different metro areas will be provided.

Research Organization:
Idaho National Laboratory (INL), Idaho Falls, ID (United States)
Sponsoring Organization:
10
DOE Contract Number:
AC07-05ID14517
OSTI ID:
2006810
Report Number(s):
INL/CON-23-71157-Rev001
Country of Publication:
United States
Language:
English

Similar Records

Requirements and Recommendations for a Physical Attack Characterization Framework
Technical Report · Sat Jul 01 00:00:00 EDT 2023 · OSTI ID:2229613
Cyber Threat Dictionary Using MITRE ATT&CK Matrix and NIST Cybersecurity Framework Mapping
Conference · Sun Nov 01 23:00:00 EST 2020 · OSTI ID:1734565
Implementation of an ICS Ransomware Testbed: Scenarios, Variants, and Evaluation Methods
Technical Report · Fri Sep 01 00:00:00 EDT 2023 · OSTI ID:2327018

Related Subjects

29 ENERGY PLANNING, POLICY, AND ECONOMY
97 MATHEMATICS AND COMPUTING
99 GENERAL AND MISCELLANEOUS
EV Infrastructure
graph theory
socio-technical network analysis
system-of-systems
threat models