Van Joshua Abergos
A risk assessment analysis to enhance the security of OT WAN with SD-WAN
Abergos, Van Joshua; Medjek, Faiza
Authors
Faiza Medjek
Abstract
This paper introduces a comprehensive risk assessment of various wide area network (WAN) technologies as applied to Operational Technology (OT) infrastructures, thus uncovering which WAN technology is best suited for OT to mitigate the risks of Denial of View (DoV), Denial of Control (DoC), and Denial of Service (DoS). A new risk weight-based evaluation approach is proposed following NIST CSF and ISA/IEC 62443 standard risk scoring (RS). In this approach, RS was modified by introducing new risk metrics, namely, risk (Rn), mitigation (Mm), risk prioritization (WRn), and mitigation prioritization (WMm) to create a specialized probability formula to assess risks on OT WAN infrastructure. The proposed formula has been implemented to automate data analysis and risk scoring across nine WAN technologies. The obtained results demonstrated that software-defined wide area network (SD-WAN) has the best security features that even overshadow its vulnerabilities to perform not just as a WAN solution but as a security solution against DoV, DoC, and DoS. Furthermore, this paper identifies and highlights what to prioritize when designing and assessing an SD-WAN setup. In addition, this paper proposes an SD-WAN-based architecture to reduce DoV, DoC, and DoS risks.
Journal Article Type | Article |
---|---|
Acceptance Date | Oct 7, 2024 |
Online Publication Date | Oct 10, 2024 |
Publication Date | Oct 10, 2024 |
Deposit Date | Nov 27, 2024 |
Publicly Available Date | Nov 28, 2024 |
Journal | Journal of Cybersecurity and Privacy |
Electronic ISSN | 2624-800X |
Publisher | MDPI |
Peer Reviewed | Peer Reviewed |
Volume | 4 |
Issue | 4 |
Pages | 910-937 |
DOI | https://doi.org/10.3390/jcp4040042 |
Public URL | https://uwe-repository.worktribe.com/output/13320524 |
Files
A risk assessment analysis to enhance the security of OT WAN with SD-WAN
(3.8 Mb)
PDF
Licence
http://creativecommons.org/licenses/by/4.0/
Publisher Licence URL
http://creativecommons.org/licenses/by/4.0/
You might also like
Trust-aware and cooperative routing protocol for IoT security
(2020)
Journal Article
Fault-tolerant AI-driven intrusion detection system for the Internet of Things
(2021)
Journal Article
Security threats in the internet of things: RPL's attacks and countermeasures
(2018)
Book Chapter
Multicast DIS attack mitigation in RPL-based IoT-LLNs
(2021)
Journal Article
A trust-based intrusion detection system for mobile RPL based networks
(2018)
Presentation / Conference Contribution
Downloadable Citations
About UWE Bristol Research Repository
Administrator e-mail: repository@uwe.ac.uk
This application uses the following open-source libraries:
SheetJS Community Edition
Apache License Version 2.0 (http://www.apache.org/licenses/)
PDF.js
Apache License Version 2.0 (http://www.apache.org/licenses/)
Font Awesome
SIL OFL 1.1 (http://scripts.sil.org/OFL)
MIT License (http://opensource.org/licenses/mit-license.html)
CC BY 3.0 ( http://creativecommons.org/licenses/by/3.0/)
Powered by Worktribe © 2024
Advanced Search