P7.4 - Incorporating a Measure for Attacker Motivation into Software Risk Assessment for Measuring Instruments in Legal Metrology
- Event
- 18. GMA/ITG-Fachtagung Sensoren und Messsysteme 2016
2016-05-10 - 2016-05-11
Nürnberg, Germany - Chapter
- P7 Messunsicherheit und Funktionssicherheit von Messsystemen
- Author(s)
- M. Esche, F. Thiel - Physikalisch-Technische Bundesanstalt, Berlin (Germany)
- Pages
- 735 - 742
- DOI
- 10.5162/sensoren2016/P7.4
- ISBN
- 978-3-9816876-0-6
- Price
- free
Abstract
Modern measuring instruments mainly rely on software to perform their intended operations. Measuring instruments are thus also susceptible to malicious software-related attacks. Especially in the highly regulated area of legal metrology, risk assessment is one possible tool for assessing the resistance of an instrument to unintended modifications and intentional manipulations. Where previous risk assessment approaches solely relied on the technical features of the instrument, the authors here propose a method that also covers the important influence factor of attacker motivation. Based on two different solutions to the problem, a well-suited method is selected with the help of a short experimental evaluation.