Research Article
Comprehensive Risk Identification Model for SCADA Systems
Table 2
Risk parameters mapping stated in each work.
| Paper | 2D Matrix | 3D Matrix | 6D Matrix | Other Mapping | Who /Why | What /Who | Who /How | What /How | What /Where | Where /When | How/ When | What /Who /Why | What /Who /How | What/ Where /When | What /How /When | What/Who/ Why/How/ Where/When |
| SCADA & ICS Risk Databases |
| ICS-CERT [19] | | | | | | √ | | | | | | | | Byres and Fabro [18] | | √ | | | √ | | | | | | | | |
| SCADA & ICS Reports and guides |
| Schwab and Poujol [31] | | | | | | | | | | | | | | ENISA [32] | | √ | √ | | | √ | | | | | | | | Brown and Wylie [33] | | | | | | √ | | | | | | | | Stouffer et al. [23] | | √ | | | √ | | | | | | | | | TISN [34] | | | | | | √ | | | | | | | who, where, when | DHS[35] | | | | | | √ | | | | | | | |
| SCADA & ICS scientific research |
| Nasser et al. [36] | | | | √ | | | | | | | | | | Finogeev and Finogeev [37] | | | | | √ | | | | | | | | | Eden et al. [38] | | | | | √ | | | | | | | | | Woo and Kim [39] | | | | | | | | | | | | | | Hewett et al. [22] | | | | | | | | | | √ | | | | Miller et al. [24] | | | | | | | | | | | | | | Bompard et al. [20] | | √ | | | √ | | | | | | | | what/ who / where | Gabriel et al. [25] | | | | | | | | | | √ | | | | Nan et al. [11] | | | | | | √ | | | | √ | | | | Guillermo et al. [40] | | √ | | | | √ | | | | | | | | Zhu et al. [21] | | √ | | | √ | | | | | | | | what/ where/ how | Tsang [41] | | | | √ | √ | | √ | | | | | | | Kang et al. [42] | | | | | | | | | | | | | what/ where/ how |
|
|