skip to main content
OSTI.GOV title logo U.S. Department of Energy
Office of Scientific and Technical Information

Title: Comparison of two methods to quantify cyber and physical security effectiveness.

Abstract

With the increasing reliance on cyber technology to operate and control physical security system components, there is a need for methods to assess and model the interactions between the cyber system and the physical security system to understand the effects of cyber technology on overall security system effectiveness. This paper evaluates two methodologies for their applicability to the combined cyber and physical security problem. The comparison metrics include probabilities of detection (P{sub D}), interruption (P{sub I}), and neutralization (P{sub N}), which contribute to calculating the probability of system effectiveness (P{sub E}), the probability that the system can thwart an adversary attack. P{sub E} is well understood in practical applications of physical security but when the cyber security component is added, system behavior becomes more complex and difficult to model. This paper examines two approaches (Bounding Analysis Approach (BAA) and Expected Value Approach (EVA)) to determine their applicability to the combined physical and cyber security issue. These methods were assessed for a variety of security system characteristics to determine whether reasonable security decisions could be made based on their results. The assessments provided insight on an adversary's behavior depending on what part of the physical security system is cyber-controlled. Analysis showedmore » that the BAA is more suited to facility analyses than the EVA because it has the ability to identify and model an adversary's most desirable attack path.« less

Authors:
;
Publication Date:
Research Org.:
Sandia National Laboratories
Sponsoring Org.:
USDOE
OSTI Identifier:
876367
Report Number(s):
SAND2005-7177
TRN: US200606%%144
DOE Contract Number:  
AC04-94AL85000
Resource Type:
Technical Report
Country of Publication:
United States
Language:
English
Subject:
99 GENERAL AND MISCELLANEOUS//MATHEMATICS, COMPUTING, AND INFORMATION SCIENCE; COMPUTERIZED CONTROL SYSTEMS; SABOTAGE; DETECTION; PROBABILITY; SECURITY; PHYSICAL PROTECTION; COMPUTER NETWORKS; Intranets (Computer networks)-Security measures.; Dwellings-Security measures.; Computer security.; Computer networks-Security measures.; Electronic security systems.

Citation Formats

Wyss, Gregory Dane, and Gordon, Kristl A. Comparison of two methods to quantify cyber and physical security effectiveness.. United States: N. p., 2005. Web. doi:10.2172/876367.
Wyss, Gregory Dane, & Gordon, Kristl A. Comparison of two methods to quantify cyber and physical security effectiveness.. United States. doi:10.2172/876367.
Wyss, Gregory Dane, and Gordon, Kristl A. Tue . "Comparison of two methods to quantify cyber and physical security effectiveness.". United States. doi:10.2172/876367. https://www.osti.gov/servlets/purl/876367.
@article{osti_876367,
title = {Comparison of two methods to quantify cyber and physical security effectiveness.},
author = {Wyss, Gregory Dane and Gordon, Kristl A.},
abstractNote = {With the increasing reliance on cyber technology to operate and control physical security system components, there is a need for methods to assess and model the interactions between the cyber system and the physical security system to understand the effects of cyber technology on overall security system effectiveness. This paper evaluates two methodologies for their applicability to the combined cyber and physical security problem. The comparison metrics include probabilities of detection (P{sub D}), interruption (P{sub I}), and neutralization (P{sub N}), which contribute to calculating the probability of system effectiveness (P{sub E}), the probability that the system can thwart an adversary attack. P{sub E} is well understood in practical applications of physical security but when the cyber security component is added, system behavior becomes more complex and difficult to model. This paper examines two approaches (Bounding Analysis Approach (BAA) and Expected Value Approach (EVA)) to determine their applicability to the combined physical and cyber security issue. These methods were assessed for a variety of security system characteristics to determine whether reasonable security decisions could be made based on their results. The assessments provided insight on an adversary's behavior depending on what part of the physical security system is cyber-controlled. Analysis showed that the BAA is more suited to facility analyses than the EVA because it has the ability to identify and model an adversary's most desirable attack path.},
doi = {10.2172/876367},
journal = {},
number = ,
volume = ,
place = {United States},
year = {Tue Nov 01 00:00:00 EST 2005},
month = {Tue Nov 01 00:00:00 EST 2005}
}

Technical Report:

Save / Share: