TY - GEN
T1 - Cyber-Security Incident Analysis by Causal Analysis using System Theory (CAST)
AU - Kaneko, Tomoko
AU - Yoshioka, Nobukazu
AU - Sasaki, Ryoichi
N1 - Funding Information:
The experiment in this presentation was done with the researchers of Japan Society for Science and Technology Software Quality Management Study Group Safety & Security WG. We would like to express our sincere gratitude to all the 2019 researchers of the Japan Science and Technology Federation Software Quality Control Study Group (SQiP Study Group) Exercise Course III for their great cooperation in conducting the application evaluation experiment. In addition, this research is this research is supported by JST Mirai eAI Project (JPMJMI20B8) and JSPS KAKENHI Grant-in-Aid for Scientific Research (Research Activity Start-up)21K21301, and we are deeply grateful for the grant.
Publisher Copyright:
© 2021 IEEE.
PY - 2021
Y1 - 2021
N2 - STAMP (System Theoretic Accident Model and Processes) is one of the theories that has been attracting attention as a new safety analysis method for complex systems. CAST (Causal Analysis using System Theory) is a causal analysis method based on STAMP theory. The authors investigated an information security incident case, 'AIST (National Institute of Advanced Industrial Science and Technology) report on unauthorized access to information systems,' and attempted accident analysis using CAST. We investigated whether CAST could be applied to the cyber security analysis. Since CAST is a safety accident analysis technique, this study was the first to apply CAST to cyber security incidents. Its effectiveness was confirmed from the viewpoint of the following three research questions. Q1:Features of CAST as an accident analysis method Q2:Applicability and impact on security accident analysis Q3:Understanding cyber security incidents with a five-layer model.
AB - STAMP (System Theoretic Accident Model and Processes) is one of the theories that has been attracting attention as a new safety analysis method for complex systems. CAST (Causal Analysis using System Theory) is a causal analysis method based on STAMP theory. The authors investigated an information security incident case, 'AIST (National Institute of Advanced Industrial Science and Technology) report on unauthorized access to information systems,' and attempted accident analysis using CAST. We investigated whether CAST could be applied to the cyber security analysis. Since CAST is a safety accident analysis technique, this study was the first to apply CAST to cyber security incidents. Its effectiveness was confirmed from the viewpoint of the following three research questions. Q1:Features of CAST as an accident analysis method Q2:Applicability and impact on security accident analysis Q3:Understanding cyber security incidents with a five-layer model.
KW - Accident Analysis
KW - CAST
KW - Security Incident
KW - STAMP
KW - STAMP S&S
KW - System Theory
UR - http://www.scopus.com/inward/record.url?scp=85140915458&partnerID=8YFLogxK
UR - http://www.scopus.com/inward/citedby.url?scp=85140915458&partnerID=8YFLogxK
U2 - 10.1109/QRS-C55045.2021.00123
DO - 10.1109/QRS-C55045.2021.00123
M3 - Conference contribution
AN - SCOPUS:85140915458
T3 - Proceedings - 2021 21st International Conference on Software Quality, Reliability and Security Companion, QRS-C 2021
SP - 806
EP - 815
BT - Proceedings - 2021 21st International Conference on Software Quality, Reliability and Security Companion, QRS-C 2021
PB - Institute of Electrical and Electronics Engineers Inc.
T2 - 21st International Conference on Software Quality, Reliability and Security Companion, QRS-C 2021
Y2 - 6 December 2021 through 10 December 2021
ER -