Analysis of energy delivery sector malware attack response mechanisms
Thesis: S.M. in Engineering and Management, Massachusetts Institute of Technology, Engineering Systems Division, System Design and Management Program, 2019
| Main Author: | |
|---|---|
| Other Authors: | |
| Format: | Thesis |
| Language: | eng |
| Published: |
Massachusetts Institute of Technology
2022
|
| Subjects: | |
| Online Access: | https://hdl.handle.net/1721.1/145237 |
| _version_ | 1826189300491878400 |
|---|---|
| author | Sapienza, Michael Louis. |
| author2 | Massachusetts Institute of Technology. Engineering Systems Division. |
| author_facet | Massachusetts Institute of Technology. Engineering Systems Division. Sapienza, Michael Louis. |
| author_sort | Sapienza, Michael Louis. |
| collection | MIT |
| description | Thesis: S.M. in Engineering and Management, Massachusetts Institute of Technology, Engineering Systems Division, System Design and Management Program, 2019 |
| first_indexed | 2024-09-23T08:12:38Z |
| format | Thesis |
| id | mit-1721.1/145237 |
| institution | Massachusetts Institute of Technology |
| language | eng |
| last_indexed | 2024-09-23T08:12:38Z |
| publishDate | 2022 |
| publisher | Massachusetts Institute of Technology |
| record_format | dspace |
| spelling | mit-1721.1/1452372022-09-01T03:48:00Z Analysis of energy delivery sector malware attack response mechanisms Sapienza, Michael Louis. Massachusetts Institute of Technology. Engineering Systems Division. System Design and Management Program. Massachusetts Institute of Technology. Engineering Systems Division System Design and Management Program. Engineering Systems Division. System Design and Management Program. Thesis: S.M. in Engineering and Management, Massachusetts Institute of Technology, Engineering Systems Division, System Design and Management Program, 2019 Cataloged from PDF version of thesis. "Due to the condition of the original material, there are unavoidable flaws in this reproduction. We have made every effort possible to provide you with the best copy available. The images contained in this document are of the best quality available"--Disclaimer Notice page. Includes bibliographical references (pages 165-180). Recent cyberattacks on the electricity grids in the U.S. and Ukraine, the rise of malware tailored to industrial control systems, failure of basic sanitary and life-saving systems after prolonged power outages, economic losses numbering in the billions: these are the consequences of malware attacks on critical infrastructure sectors across the globe. New and continuously evolving cyber threats demand new and better response mechanisms to mitigate their effects. However, critical infrastructure sectors, and the electricity subsector in particular, are faced with the enormous challenge of identifying gaps in their extremely complex cyber incident response mechanisms. This thesis takes a novel, systems-level approach to pinpoint deficiencies in incident response mechanisms of the U.S. electricity sector. An analysis of current and future external influences on the electricity sector validates that malware threats and vulnerabilities are rapidly evolving and are already outpacing the sector's ability to adapt its cyber incident response mechanisms. Using the Architecting Innovative Enterprise Strategies (ARIES) Framework to explore current incident response mechanisms reveals that the traditional, all-hazards approach to major incident response is insufficient to keep the grid secure. Instead, improvements in cyber incident response strategies, processes, organizations, information flow, products, and services are all necessary to overcome the disparity. Most importantly, the systems-level approach exposes the culture of cybersecurity in the sector is the systemic driver of those shortfalls and must be the primary consideration for improvement to the electricity sector's cyber incident response mechanisms. by Michael Louis Sapienza. S.M. in Engineering and Management S.M. in Engineering and Management Massachusetts Institute of Technology, Engineering Systems Division, System Design and Management Program 2022-08-31T16:29:35Z 2022-08-31T16:29:35Z 2019 2019 Thesis https://hdl.handle.net/1721.1/145237 1342000007 eng MIT theses may be protected by copyright. Please reuse MIT thesis content according to the MIT Libraries Permissions Policy, which is available through the URL provided. http://dspace.mit.edu/handle/1721.1/7582 180 pages application/pdf Massachusetts Institute of Technology |
| spellingShingle | Engineering Systems Division. System Design and Management Program. Sapienza, Michael Louis. Analysis of energy delivery sector malware attack response mechanisms |
| title | Analysis of energy delivery sector malware attack response mechanisms |
| title_full | Analysis of energy delivery sector malware attack response mechanisms |
| title_fullStr | Analysis of energy delivery sector malware attack response mechanisms |
| title_full_unstemmed | Analysis of energy delivery sector malware attack response mechanisms |
| title_short | Analysis of energy delivery sector malware attack response mechanisms |
| title_sort | analysis of energy delivery sector malware attack response mechanisms |
| topic | Engineering Systems Division. System Design and Management Program. |
| url | https://hdl.handle.net/1721.1/145237 |
| work_keys_str_mv | AT sapienzamichaellouis analysisofenergydeliverysectormalwareattackresponsemechanisms |