Proceedings of the
The 33rd European Safety and Reliability Conference (ESREL 2023)
3 – 8 September 2023, Southampton, UK
Requirements Analysis Tool to Identify CERT and IDS Services for the Energy Industry
Clavis Institute for Information Security of the Niederrhein University of Applied Sciences and University of Wuppertal, Germany.
ABSTRACT
The Intrusion Detection System- Weighted Sum Model (IDS-WSM) is a sub-module of the CERT- Requirements Metamodel (CR2M). The CR2M is a modular and incremental requirements analysis tool for energy industry stakeholders. The CRM2 addresses the specific needs and requirements analysis of distribution system operators to design targeted integrative security processes. It uses its methodology to identify the specific requirements of distribution system operators for an OT CERT solution and intrusion detection system (IDS) services. On the basis of technical and organization-specific characteristics, strategic decision-makers are provided with different solution approaches as a basis for decision support. The IDS-WSM includes a dedicated utility analysis, which can be used to examine and select possible IDS solutions on the basis of an evaluation matrix. The IDS-WSM represents the result of empirical and industrial research, which can be used as a decision support tool for the purpose of fulfilling legal requirements regarding the IT security law 2.0 for the use of systems for attack detection. In the following paper, the results of the use of the decision support tool are presented. The IDS-WSM tool was tested at a DSO by four experts from different divisions. The goal was to select the most suitable tool for the company according to the individual user's expertise.
Keywords: Critical infrastructure, Energy industry, Information security, Intrusion, Detection.