Apply STAMP to Critical Infrastructure Protection

Author

Laracy, Joseph R. ; Leveson, Nancy G.

Author_Institution

MIT, Cambridge

fYear

2007

fDate

16-17 May 2007

Firstpage

215

Lastpage

220

Abstract

Classical risk-based or game theoretic security models rely on assumptions from reliability theory and rational expectations economics that are not applicable for security risks. Additionally, these models suffer from serious deficiencies when they are applied to software-intensive, complex engineering systems. Recent work in the area of system safety engineering has led to the development of a new accident model for system safety that acknowledges the dynamic complexity of accidents. System-theoretic accident models and processes (STAMP) applies principles from control theory to enforce constraints on hazards and thereby prevent accidents. Appreciating the similarities between safety and security while still acknowledging the differences, this paper introduces the use of STAMP to security problems. In particular, it is applied to identify and mitigate the threats that could emerge in critical infrastructure systems such as the air transportation network.

Keywords

airports; control theory; safety; safety-critical software; complex engineering systems; control theory; critical infrastructure protection; critical infrastructure systems; security problems; security risks; software-intensive systems; system safety engineering; system-theoretic accident models; system-theoretic accident processes; Accidents; Constraint theory; Control theory; Game theory; Protection; Reliability engineering; Reliability theory; Safety; Security; Systems engineering and theory; Air transportation; Critical infrastructure; Public Safety; Security;

fLanguage

English

Publisher

ieee

Conference_Titel

Technologies for Homeland Security, 2007 IEEE Conference on

Conference_Location

Woburn, MA

Print_ISBN

1-4244-1053-5

Electronic_ISBN

1-4244-1053-5

Type

conf

DOI

10.1109/THS.2007.370048

Filename

4227811