IoT supply chain security risk analysis and mitigation : modeling, computations, and software tools / Timothy Kieras, Junaid Farooq, Quanyan Zhu.
Kieras, Timothy.; Farooq, Junaid.; Zhu, Quanyan.
2022
TK5105.8857
Available Online

Linked e-resources

Linked Resource
Online Access
Concurrent users
Unlimited
Authorized users
Authorized users
Document Delivery Supplied
Can lend chapters, not whole ebooks

Details

Title
IoT supply chain security risk analysis and mitigation : modeling, computations, and software tools / Timothy Kieras, Junaid Farooq, Quanyan Zhu.
Author
Kieras, Timothy.
ISBN
9783031084805 (electronic bk.)
3031084802 (electronic bk.)
9783031084799 (print)
3031084799
DOI
https://doi.org/10.1007/978-3-031-08480-5
Publication Details
Cham : Springer, 2022.
Language
English
Description
1 online resource (142 pages)
Item Number
10.1007/978-3-031-08480-5 doi
Call Number
TK5105.8857
Dewey Decimal Classification
004.67/8
Summary
This SpringerBrief introduces methodologies and tools for quantitative understanding and assessment of supply chain risk to critical infrastructure systems. It unites system reliability analysis, optimization theory, detection theory and mechanism design theory to study vendor involvement in overall system security. It also provides decision support for risk mitigation. This SpringerBrief introduces I-SCRAM, a software tool to assess the risk. It enables critical infrastructure operators to make risk-informed decisions relating to the supply chain, while deploying their IT/OT and IoT systems. The authors present examples and case studies on supply chain risk assessment/mitigation of modern connected infrastructure systems such as autonomous vehicles, industrial control systems, autonomous truck platooning and more. It also discusses how vendors of different system components are involved in the overall security posture of the system and how the risk can be mitigated through vendor selection and diversification. The specific topics in this book include: Risk modeling and analysis of IoT supply chains Methodologies for risk mitigation, policy management, accountability, and cyber insurance Tutorial on a software tool for supply chain risk management of IoT These topics are supported by up-to-date summaries of the authors recent research findings. The authors introduce a taxonomy of supply chain security and discusses the future challenges and directions in securing the supply chains of IoT systems. It also focuses on the need for joint policy and technical solutions to counter the emerging risks, where technology should inform policy and policy should regulate technology development. This SpringerBrief has self-contained chapters, facilitating the readers to peruse individual topics of interest. It provides a broad understanding of the emerging field of cyber supply chain security in the context of IoT systems to academics, industry professionals and government officials.
Note
4.6.3.2 Insurance Policy Design
Bibliography, etc. Note
References-2 Risk Modeling and Analysis-2.1 Risk Scoring in Component Graphs-2.1.1 Introduction-2.1.2 Related Work-2.1.3 Contributions-2.2 System Model for Risk Assessment-2.2.1 Model Definitions-2.2.1.1 Component Security Graph-2.2.1.2 System Supplier Network-2.2.2 Supplier Trust-2.2.3 Systemic Risk Graph-2.3 Risk Analysis Metrics-2.3.1 Systemic Risk Function-2.3.2 Supplier Involvement Measure-2.4 Uncertainties in Model Development-2.4.1 Parametric Uncertainties in Probability Estimates-2.4.2 Structural Modeling Uncertainties
Includes bibliographical references and index.
Access Note
Access limited to authorized users.
Source of Description
Online resource; title from PDF title page (SpringerLink, viewed September 15, 2022).
Added Author
Farooq, Junaid.
Zhu, Quanyan.
Series
SpringerBriefs in computer science.
Available in Other Form
IoT Supply Chain Security Risk Analysis and Mitigation.
Linked Resources
Online Access
Record Appears in
Online Resources > Ebooks
All Resources
Intro
Preface
Acknowledgments
Contents
Acronyms
1 IoT and Supply Chain Security
1.1 Vendor Landscape of IoT Systems
1.2 Brief Taxonomy of Supply Chain Security
1.3 IoT Supply Chain Risk: Hard to Observe and Hard to Control
1.3.1 Dissecting Supply Chain Links in IoT
1.4 IoT Risk Implications and Consequences
1.4.1 Key Features of IoT Security
1.5 Challenges in Cyber Supply Chain Risk Analysis of IoT
1.6 Supply Chain Resilience
1.6.1 Top-Down Approach to Managing Risk
1.6.2 Bottom-Up Approach to Managing Risk
1.7 Overview of the Book

2.5 Uncertainty Case Studies
2.5.1 Case 0: Ground Truth
2.5.2 Case 1: Uncertainty of Single Node Logic
2.5.3 Case 2: Uncertainty of Node Omission
2.5.4 Case 3: Uncertainty in Edge Placement
2.5.5 Case 4: Uncertainty in Probability Values
2.6 Conclusion
References
3 Risk Mitigation Decisions
3.1 Cost Effective Vendor Selection
3.1.1 Strict Supplier Choice Problem
3.2 Supply Chain Diversification
3.2.1 Component Security Risk Minimization Problem
3.2.2 Supplier Involvement Minimization Problem
3.2.3 Relaxed Supplier Choice Problem

3.3 Case Study and Results
3.3.1 Simulation Setup
3.3.2 Example Scenarios and Results
3.3.3 Supplier Involvement Experiments
3.4 Conclusion
References
4 Policy Management
4.1 Introduction
4.2 Literature Review
4.3 Accountability Models in IoT Supply Chain
4.3.1 Running Examples
4.3.2 System Modeling
4.3.3 Accountability Investigation
4.3.4 Model Extensions
4.3.4.1 Single Supplier with Multiple Types
4.3.4.2 Multiple Suppliers
4.4 Case Study 1: Autonomous Truck Platooning
4.4.1 Background
4.4.2 Vehicle Dynamics Model

4.4.3 Accountability Testing
4.4.4 Parameter Analysis
4.4.5 Investigation Performance
4.4.5.1 Accountability Receiver Operating Characteristic
4.4.5.2 Area Under the AROC Curve
4.5 Case Study 2: Ransomware in IoT Supply Chain
4.5.1 Background
4.5.2 Smart Lock and Ransomware Attack
4.5.3 Accountability Investigation
4.5.3.1 Tier-1 Investigation
4.5.3.2 Multi-Stage Accountability Investigation
4.6 Compliance and Cyber Insurance
4.6.1 Compliance Modeling
4.6.2 Contract Design
4.6.3 Cyber Insurance
4.6.3.1 Background Introduction

Browse Subjects

Show more subjects...

Statistics

from
to
Export