TY - GEN
T1 - BACRank
T2 - 38th International Conference on Computer Safety, Reliability, and Security, SAFECOMP 2019
AU - Esquivel-Vargas, Herson
AU - Caselli, Marco
AU - Tews, Erik
AU - Bucur, Doina
AU - Peter, Andreas
N1 - Publisher Copyright:
© Springer Nature Switzerland AG 2019.
PY - 2019
Y1 - 2019
N2 - Organizations increasingly depend on Building Automation and Control Systems (BACSs) to support their daily tasks and to comply with laws and regulations. However, BACSs are prone to disruptions caused by failures or active attacks. Given the role BACSs play in critical locations such as airports and hospitals, a comprehensive impact assessment methodology is required that estimates the effect of unavailable components in the system. In this paper, we present the foundations of the first impact assessment methodology for BACSs focused on business continuity. At the core of our methodology, we introduce a novel graph centrality measure called BACRank. We quantify the contribution of BACS components to different business activities. Moreover, we take functional dependencies among components into account to estimate indirect consequences throughout the infrastructure. We show the practical applicability of our approach on a real BACS deployed at a 5-story building hosting 375 employees on an international university campus. The experimental evaluation confirms that the proposed methodology successfully prioritizes the most relevant components of the system with respect to the business continuity perspective.
AB - Organizations increasingly depend on Building Automation and Control Systems (BACSs) to support their daily tasks and to comply with laws and regulations. However, BACSs are prone to disruptions caused by failures or active attacks. Given the role BACSs play in critical locations such as airports and hospitals, a comprehensive impact assessment methodology is required that estimates the effect of unavailable components in the system. In this paper, we present the foundations of the first impact assessment methodology for BACSs focused on business continuity. At the core of our methodology, we introduce a novel graph centrality measure called BACRank. We quantify the contribution of BACS components to different business activities. Moreover, we take functional dependencies among components into account to estimate indirect consequences throughout the infrastructure. We show the practical applicability of our approach on a real BACS deployed at a 5-story building hosting 375 employees on an international university campus. The experimental evaluation confirms that the proposed methodology successfully prioritizes the most relevant components of the system with respect to the business continuity perspective.
UR - http://www.scopus.com/inward/record.url?scp=85072851139&partnerID=8YFLogxK
U2 - 10.1007/978-3-030-26601-1_13
DO - 10.1007/978-3-030-26601-1_13
M3 - Contribución a la conferencia
AN - SCOPUS:85072851139
SN - 9783030266004
T3 - Lecture Notes in Computer Science (including subseries Lecture Notes in Artificial Intelligence and Lecture Notes in Bioinformatics)
SP - 183
EP - 199
BT - Computer Safety, Reliability, and Security - 38th International Conference, SAFECOMP 2019, Proceedings
A2 - Romanovsky, Alexander
A2 - Troubitsyna, Elena
A2 - Bitsch, Friedemann
PB - Springer Verlag
Y2 - 10 September 2019 through 13 September 2019
ER -