security profile for openadr - Open Smart Grid - OpenSG - UCA ...

More documents

Recommendations

Info

3 708 Failure Analysis 709 710 711 712 713 714 715 716 717 718 719 720 721 722 723 724 725 726 727 728 729 730 The approach used to create this security profile defines the functions of OpenADR systems based on defined abstract roles and use cases. The development of the use cases and the definition of roles take into account a foundational set of security and operational objectives that is also used in the failure analysis. The failure analysis begins with a description of the process for identifying failures in Section 3.1 below. A brief overview of the foundational security and operational objectives is presented in Section 3.2 and a more detailed view of the identified failures is presented in Section 3.3. 3.1 Failure Analysis Process The failure identification and analysis process is loosely based on conducting a Failure Modes and Effects Analysis (FMEA) on the OpenADR logical architecture presented in Section 2.1, however the analysis was performed with a security bias to failure identification. A FMEA is a qualitative procedure for analyzing potential system failures and their associated modes as a function of assemblies, subassemblies, components, subcomponents, and so forth. This process leads to a quantification of the number and severity of failures and to an understanding of their impact on system stability and operations. With this information, a cost-benefits analysis can then be conducted to eliminate those risks that are considered catastrophic and accept those risks that are considered acceptable/manageable during operations. In general, the protocol for conducting a FMEA includes: 1. Establish a comprehensive understanding of the enterprise/system/process under consideration by gathering all relevant information and invoking a proper review process. SECURITY PROFILE FOR OPENADR Version – 0.02 UCA International Users Group December 15, 2011 40
731 732 733 734 735 736 737 738 739 740 741 742 743 744 745 746 747 748 749 750 751 752 753 754 755 756 757 758 759 760 761 762 763 764 765 2. Based on (1), develop a functional hierarchy of roles and responsibilities. 3. At an appropriate level of abstraction, identify all failures, effects, consequences, and initiating events associated with each role. 4. Identify and analyze controls for each failure, its effects and consequences, or both. 5. Qualitatively assign a risk for each failure pairing through a Risk Priority Number (RPN) calculation. 6. Perform a cost-benefit evaluation for controls (with respect to risk reduction) and provide a balanced decision process for corrective action implementation. For the OpenADR security profile, the failure analysis process centers on steps 1-4. Steps 5-6 must account for the specific needs of the organization that owns or operates the system, so the outcome of these steps is necessarily specific to that organization and is not covered by this profile. Given the system elements and their roles (Section 2) and relationships (Section 2.3), the set of role/failure pairings are applied to a finite set of use cases (Section 2.4) to provide a descriptive analysis of how the OpenADR system may fail. The resulting list of failures serves as a basis for (1) justifying the set of selected controls, as each control must address an identified failure, and (2) identifying and remediating gaps in the selected controls, as each failure must be addressed by at least one control. For this security profile, failure analysis centers on the roles and use cases defined in Sections 2 and 2.4 and the impact of potential failures on an OpenADR system. This process is used to identify OpenADR system issues, which are in turn used as inputs to assign failure incidents for the pairing of each role with each step of each use case. Each step of each use case is examined for potential failures against the security and operational objectives with respect to each role. All of the identified failures are then aggregated and generalized across all use cases. 3.2 Security and Operational Objectives The goal of this document is to establish a cyber environment in which an OpenADR system can successfully and securely operate. Meeting this goal requires that a number of security and operational objectives that support that goal are achieved. This section defines the assumptions made regarding the operational context for OpenADR systems and how the systems will be operated in the context of a security analysis, and then presents a set of security objectives around which the remainder of the document revolves. SECURITY PROFILE FOR OPENADR Version – 0.02 UCA International Users Group December 15, 2011 41
Page 1 and 2: SECURITY PROFILE FOR OPENADR SECURI
Page 3 and 4: Executive Summary This document pre
Page 5 and 6: 4.2.9 Controls Mapped to Roles ....
Page 7 and 8: Table of Tables TABLE 1 - CONTROLS:
Page 9 and 10: Authors Bruce Bartell Darren Highfi
Page 11 and 12: 22 23 24 25 26 27 28 29 30 31 32 33
Page 13 and 14: 79 80 81 82 83 84 85 86 87 88 89 90
Page 15 and 16: 142 143 144 145 146 147 148 149 150
Page 17 and 18: 200 201 202 203 204 205 206 207 208
Page 19 and 20: 243 244 245 246 247 248 249 250 251
Page 21 and 22: 304 305 306 307 308 309 310 311 312
Page 23 and 24: 358 359 360 361 362 363 364 365 366
Page 25 and 26: 412 413 414 415 416 417 418 419 420
Page 27 and 28: 455 456 457 458 459 460 461 462 463
Page 29 and 30: 502 503 504 505 506 507 508 509 510
Page 31 and 32: 541 542 543 544 545 546 547 548 549
Page 33 and 34: 581 582 583 584 585 586 587 588 589
Page 35 and 36: 622 623 624 625 626 627 628 629 630
Page 37 and 38: 665 666 667 668 669 670 671 672 673
Page 39: 700 701 702 703 704 705 706 707 sd
Page 43 and 44: 803 804 805 806 807 808 809 810 811
Page 45 and 46: 842 843 844 845 846 847 848 849 850
Page 47 and 48: F8 sends an incorrect type of mess
Page 49 and 50: 859 SF1 DR Resource is physically u
Page 51 and 52: 881 882 883 884 885 886 887 888 889
Page 53 and 54: 955 956 957 958 959 960 961 962 •
Page 55 and 56: 966 967 968 Control Control ID ID I
Page 57 and 58: 973 974 975 4.2.5 Identification &
Page 59 and 60: 981 Control Control ID ID ID Short
Page 61 and 62: 984 985 Control Control ID ID ID Sh
Page 63 and 64: Controlling Control Control ID ID S
Page 65 and 66: 987 988 989 990 991 992 993 994 995
Page 67 and 68: 1022 1023 1024 1025 1026 1027 1028
Page 69 and 70: 1048 1049 1050 1051 1052 NIST IR 76
Page 71 and 72: NIST NIST IR IR IR 7628 7628 7628 R
Page 77 and 78: 1065 1066 SECURITY PROFILE FOR OPEN
Page 79 and 80: 1074 1075 1076 1077 1078 1079 1080
Page 81 and 82: 1104 1105 1106 1107 1108 1109 1110
Page 83 and 84: 1131 1132 1133 1134 1135 1136 1137
Page 85 and 86: 1197 1198 1199 1200 1201 1202 1203
Page 87 and 88: 1265 1266 1267 1268 1269 1270 1271
Page 89 and 90: 1331 1332 1333 1334 1335 1336 1337
Page 91 and 92:
1364 1365 1366 1367 1368 1369 1370
Page 93 and 94:
1420 1421 1422 1423 1424 1425 1426
Page 95 and 96:
1470 1471 1472 1473 1474 1475 1476
Page 97:
1529 1530 1531 1532 1533 1534 suite
show all

security profile for openadr - Open Smart Grid - OpenSG - UCA ...

Create successful ePaper yourself

Delete template?

Save as template?