Abstract: A network control apparatus (10) according to the present disclosure is a network control apparatus (10) configured to control a node included in a network, and the network control apparatus (10) includes a collecting unit (11) configured to collect data pertaining to a node included in a network, a calculating unit (12) configured to calculate a security index pertaining to a threat of the node based on the data collected by the collecting unit (11), and a determining unit (13) configured to determine a zone of the node based on the security index calculated by the calculating unit (12).

Abstract: A physical model generation apparatus (2) acquires design information of a target control system, and generate plant architecture information from the design information. The plant architecture information describes physical components and connections therebetween included in the target control system. The physical model generation apparatus (2) generates component state information that describes possible states for each physical component described in the plant architecture information. The physical model generation apparatus (2) acquires general behavior information that describes general behavior for each types of physical components. The physical model generation apparatus (2) generates physical model of the target control system based on the plant architecture information, the component state information, and the general behavior information.

Abstract: The present disclosure provides a security assessment apparatus (8) of a facility to be controlled using a controller, the security assessment apparatus (8) including: a binary tree generating unit (5) configured to generate a binary tree from controller program code of the controller; a transition rules generating unit (6) configured to generate transition rules from the binary tree; and a controller rules generating unit configured to generate controller rules from the transition rules, the controller rules modeling the actual behavior of the controller.

Abstract: The present disclosure provides a security assessment apparatus, a method, and a program capable of making an assessment of a security risk simply and appropriately. The security assessment apparatus according to the present disclosure is a security assessment apparatus of a facility to be controlled using a controller, including: an identification unit (15) configured to identify a compromised component which puts the facility into an unsafe situation based on data regarding a plurality of components provided in the facility and control program code of the controller, thereby generating a list of the compromised component; and a compromised behavior generating unit (16) configured to generate a compromised behavior of a selected component selected from the list of the compromised component.