Compliance-Driven Cybersecurity Planning Based on Formalized Attack Patterns for Instrumentation and Control Systems of Nuclear Power Plants

<table class="table-group" id="tab2"><tr><td><table class="table"><tr><td class="thead-hr" colspan="2"><hr/></td></tr><tr class="thead"><td class="align_left">Attack Method</td><td class="align_center">Security principle</td></tr><tr><td class="thead-hr" colspan="2"><hr/></td></tr><tr><td class="align_left">Spoofing</td><td class="align_center">Authentication</td></tr><tr><td class="align_left">Tampering</td><td class="align_center">Integrity</td></tr><tr><td class="align_left">Repudiation</td><td class="align_center">Nonrepudiation</td></tr><tr><td class="align_left">Information disclosure</td><td class="align_center">Confidentiality</td></tr><tr><td class="align_left">Denial of service</td><td class="align_center">Availability</td></tr><tr><td class="align_left">Elevation of privilege</td><td class="align_center">Authorization</td></tr><tr><td class="align_left">-</td><td class="align_center">Hardening</td></tr><tr class="table-tr"><td colspan="2"><hr class="tbody-hr"/></td></tr></table></td></tr></table>

<div>Mapping between methods of attack and security principles.</div>

Security and Communication Networks

tab2

Table 2

Table 2: Compliance-Driven Cybersecurity Planning Based on Formalized Attack Patterns for Instrumentation and Control Systems of Nuclear Power Plants 

Table 2 | Compliance-Driven Cybersecurity Planning Based on Formalized Attack Patterns for Instrumentation and Control Systems of Nuclear Power Plants 