| Summary: | Cyber situational awareness is the result of both the analysis of cyber security and situational awareness studies and the line of research that uses artificial intelligence methods in the field of cybersecurity. It covers both methods of automatic detection of cyber threats in the network and methods of providing information to an analyst for further risk analysis and decision making to protect of the assets of the facility. Investigations of cyber situational awareness in the energy sector have become pertinent resulting from both the concept of the digital transformation of energy and the consideration of energy facilities and systems as cyber-physical systems. The problems of ensuring cybersecurity and raising awareness about the cyber environment of an energy facility are compounded by their high significance for the economies of countries. In this regard, such facilities are considered as critical infrastructure. The first part of this article discusses the basic concepts of cyber situational awareness, some knowledge representation models and some existing security metrics. The second part considers the use of frame, production and network models of knowledge representation in the analysis of the cyber situational awareness of energy facilities and the software components that implement them.
|
|---|