Skip to main content
OSTI.GOVU.S. Department of Energy Office of Scientific and Technical Information
U.S. Department of Energy
Office of Scientific and Technical Information
 

Engineering in Cyber Resilience with Cyber-Informed Engineering

Conference ·
OSTI ID:2370999
 [1]
  1. Idaho National Laboratory
+ Show Author Affiliations

Engineers have super powers to provide cybersecurity resilience with deterministic engineering solutions and to protect systems from the most catastrophic consequences that a cyber saboteur could cause. Come to this session to learn how to use engineering risk management skills to harden your engineered systems from cyberattacks. Objective 1 Identify what system functions could be digitally induced to cause undesired high-impact consequences. Objective 2 Analyze how loss or instability of digital controls in a subsystem could lead to high-impact consequences. Objective 3 Analyze how loss or instability in the digital connectivity between systems could lead to high-impact consequences. Objective 4 Identify engineering controls which could build resilience by eliminating digital loss or instability pathways or reduce the impact of digital loss or instability. This presentation will introduce Cyber-Informed Engineering, described below, and walk participants through specific engineering use cases to show how engineers can consider the potential for cyber sabotage in their existing system designs and enact deterministic engineering-based controls which eliminate pathways for attack or mitigate specific consequences. A wide variety of application use cases will be considered so that audience members can align the material with familiar engineering applications. CIE is an engineering approach that integrates cyber resilience into the conception, design, build, and operation of any physical system that has digital connectivity, sensors, monitoring, or control. CIE offers the opportunity to use engineering to eliminate or mitigate avenues for cyber attack—starting from the earliest stage of design and continuing throughout the system’s lifecycle. Today, engineers and industrial control system (ICS) technicians build engineered systems with specific goals for safety, reliability, and functionality. While systems engineering includes considerable safety and failure mode analysis, cybersecurity risks are often not specifically addressed—particularly the risks of intentional cyber compromise, exploitation, and misuse. Cyber-Informed Engineering pairs well with traditional cyber defenses and offers an extra designed-in protection to eliminate the most catastrophic consequences which can be realized by an adversary should traditional cyber defenses fail.

Research Organization:
Idaho National Laboratory (INL), Idaho Falls, ID (United States)
Sponsoring Organization:
58
DOE Contract Number:
AC07-05ID14517
OSTI ID:
2370999
Report Number(s):
INL/CON-24-78118-Rev000
Country of Publication:
United States
Language:
English

Similar Records

Cyber-Informed Engineering (CIE) – Engineered Controls Database and Use
Technical Report · Mon Sep 29 20:00:00 EDT 2025 · OSTI ID:3006995
Cyber-Informed Engineering Principles: What’s in it for me?
Conference · Mon Oct 23 00:00:00 EDT 2023 · OSTI ID:2298974
Cyber-Informed Engineering Implementation Guide
Program Document · Tue Sep 05 00:00:00 EDT 2023 · OSTI ID:1995796

Related Subjects

42 ENGINEERING
97 MATHEMATICS AND COMPUTING
Critical infrastructure
Cyber-Informed Engineering
Cybersecurity
Engineering
water booster pump station