research-article

On the use of the Clark-Wilson security model to protect industrial automation control systems

Author:

Dennis K. HolsteinAuthors Info & Claims

CSIIRW '13: Proceedings of the Eighth Annual Cyber Security and Information Intelligence Research Workshop

Article No.: 61, Pages 1 - 5

https://doi.org/10.1145/2459976.2460044

Published: 08 January 2013 Publication History

Get Access

Abstract

IEC 62443 is a work-in-progress standard specifying the requirements for protecting industrial automation control systems against cyber-initiated attacks such as Stuxnet, Confiker, DKU, and most recently Flame. Part 1-3 specifies Jaquith-based security metrics to be used to determine compliance with IEC 62443 security policies, requirements and audit criteria. In order to align the metrics with system requirements and audit criteria which are specified as a base requirement and if needed one or more requirement enhancements, a formal model is needed. Furthermore, the model must accommodate the concept of security levels defined in IEC 62443. The Clark-Wilson Security Model is used to provide a formal framework of rules for compliance and enforcement. This paper describes how the model could be used and identifies deficiencies in IEC 62443 that need to be addressed.

References

[1]

D. D. Clark and D. R. Wilson, "A Comparison of Commercial and Military Computer Security Policies," IEEE Technical Paper, 1987.

Google Scholar

[2]

"Framework for Key Management Extensions," American National Standards Institute Standard ANS/ABA X9.69--1999, 1999.

Google Scholar

[3]

A. Jaquith, Security Metrics: replacing fear, uncertainty and doubt. Boston, MA, United States: Pearson Education, Inc., 2007.

Digital Library

Google Scholar

Cited By

View all

Avorgbedor FLiu J(2020)Enhancing User Privacy Protection by Enforcing Clark-Wilson Security Model on Facebook2020 IEEE International Conference on Electro Information Technology (EIT)10.1109/EIT48999.2020.9208279(155-161)Online publication date: Jul-2020
https://doi.org/10.1109/EIT48999.2020.9208279

Index Terms

On the use of the Clark-Wilson security model to protect industrial automation control systems

Recommendations

Transforming commodity security policies to enforce Clark-Wilson integrity
ACSAC '12: Proceedings of the 28th Annual Computer Security Applications Conference

Modern distributed systems are composed from several off-the-shelf components, including operating systems, virtualization infrastructure, and application packages, upon which some custom application software (e.g., web application) is often deployed. ...
Adaptive edge security framework for dynamic IoT security policies in diverse environments
Abstract
The rapid expansion of Internet of Things (IoT) technologies has introduced significant cybersecurity challenges, particularly at the network edge where IoT devices operate. Traditional security policies designed for static environments fall ...
Highlights
- Novel adaptive edge security framework enhances IoT security policies.
- AI-driven adaptability ensures robust, real-time threat response.
- Comprehensive risk assessment and compliance analysis integrated.
- Simulations show ...
On enabling data-aware compliance checking of business process models
ER'10: Proceedings of the 29th international conference on Conceptual modeling

In the light of an increasing demand on business process compliance, the verification of process models against compliance rules has become essential in enterprise computing. To be broadly applicable compliance checking has to support data-aware ...

Comments

Information & Contributors

Information

Published In

CSIIRW '13: Proceedings of the Eighth Annual Cyber Security and Information Intelligence Research Workshop

January 2013

282 pages

ISBN:9781450316873

DOI:10.1145/2459976

Editors:
Frederick Sheldon
Oak Ridge National Laboratory
,
Annarita Giani
Los Alamos National Laboratory
,
Axel Krings
University of Idaho
,
Robert Abercrombie
Oak Ridge National Laboratory

Publisher

Association for Computing Machinery

New York, NY, United States

Publication History

Published: 08 January 2013

Permissions

Request permissions for this article.

Request Permissions

Check for updates

Author Tags

Qualifiers

Research-article

Conference

CSIIRW '13

Sponsor:

Los Alamos National Labs
Sandia National Labs
DOE
Lawrence Livermore National Lab.
BERKELEYLAB
Argonne Natl Lab
Idaho National Lab.
Nevada National Security Site

CSIIRW '13: Cyber Security and Information Intelligence

January 8 - 10, 2013

Tennessee, Oak Ridge, USA

Contributors

Other Metrics

View Article Metrics

Bibliometrics & Citations

Bibliometrics

Article Metrics

1
Total Citations
View Citations
363
Total Downloads

Downloads (Last 12 months)9
Downloads (Last 6 weeks)0

Reflects downloads up to 07 Mar 2025

Other Metrics

View Author Metrics

Citations

Cited By

View all

Avorgbedor FLiu J(2020)Enhancing User Privacy Protection by Enforcing Clark-Wilson Security Model on Facebook2020 IEEE International Conference on Electro Information Technology (EIT)10.1109/EIT48999.2020.9208279(155-161)Online publication date: Jul-2020
https://doi.org/10.1109/EIT48999.2020.9208279

View Options

Login options

Check if you have access through your login credentials or your institution to get full access on this article.

Full Access

Get this Publication

View options

PDF

View or Download as a PDF file.

PDF

eReader

View online with eReader.

eReader

Abstract

References

Cited By

Index Terms

Recommendations

Transforming commodity security policies to enforce Clark-Wilson integrity

Adaptive edge security framework for dynamic IoT security policies in diverse environments

On enabling data-aware compliance checking of business process models

Comments

Information

Published In

Sponsors

Publisher

Publication History

Permissions

Check for updates

Author Tags

Qualifiers

Conference

Contributors

Other Metrics

Bibliometrics

Article Metrics

Other Metrics

Citations

Cited By

Login options

Full Access

View options

PDF

eReader

Share

Share this Publication link

Share on social media

Affiliations