Abstract: A physical model generation apparatus (2000) acquires architecture information (10), state information (20), and template information (30). The architecture information (10) describes physical components (52) included in a target control system (50), and connections (54) for each physical component (52). The state information (20) describes associations between a state of the physical component and one or more working connections through which signals are transferred in the corresponding state. The template information (30) describes associations between a behavior template and a connection condition. The behavior template describes behaviors that are common to the physical components (52) whose working connections satisfy the connection condition corresponding thereto. The physical model generation apparatus (2000) generates a physical model (40) that includes, for each physical component (52), behavior information (42) that describes behaviors of the physical component (52) for each of its possible states.

Abstract: The present disclosure provides a security assessment apparatus, a method, and a program capable of making an assessment of a security risk simply and appropriately. The security assessment apparatus according to the present disclosure is a security assessment apparatus of a facility to be controlled using a controller, including: an identification unit (15) configured to identify a compromised component which puts the facility into an unsafe situation based on data regarding a plurality of components provided in the facility and control program code of the controller, thereby generating a list of the compromised component; and a compromised behavior generating unit (16) configured to generate a compromised behavior of a selected component selected from the list of the compromised component.

Abstract: A policy generation apparatus according to one example embodiment of the present disclosure includes at least one memory configured to store instructions; and at least one processor configured to execute the instructions to: acquire, regarding a plurality of elements related to access control, relation data indicating a relation between a plurality of elements and score data that defines at least one of a score which is based on a viewpoint of risk of access or a score which is based on a viewpoint of a need for access; and generate a policy for access control using the relation data and the score data.

Abstract: A network control apparatus (10) according to the present disclosure is a network control apparatus (10) configured to control a node included in a network, and the network control apparatus (10) includes a collecting unit (11) configured to collect data pertaining to a node included in a network, a calculating unit (12) configured to calculate a security index pertaining to a threat of the node based on the data collected by the collecting unit (11), and a determining unit (13) configured to determine a zone of the node based on the security index calculated by the calculating unit (12).

Abstract: A physical model generation apparatus (2) acquires design information of a target control system, and generate plant architecture information from the design information. The plant architecture information describes physical components and connections therebetween included in the target control system. The physical model generation apparatus (2) generates component state information that describes possible states for each physical component described in the plant architecture information. The physical model generation apparatus (2) acquires general behavior information that describes general behavior for each types of physical components. The physical model generation apparatus (2) generates physical model of the target control system based on the plant architecture information, the component state information, and the general behavior information.

Abstract: The present disclosure provides a security assessment apparatus (8) of a facility to be controlled using a controller, the security assessment apparatus (8) including: a binary tree generating unit (5) configured to generate a binary tree from controller program code of the controller; a transition rules generating unit (6) configured to generate transition rules from the binary tree; and a controller rules generating unit configured to generate controller rules from the transition rules, the controller rules modeling the actual behavior of the controller.

Abstract: The present disclosure provides a security assessment apparatus, a method, and a program capable of making an assessment of a security risk simply and appropriately. The security assessment apparatus according to the present disclosure is a security assessment apparatus of a facility to be controlled using a controller, including: an identification unit (15) configured to identify a compromised component which puts the facility into an unsafe situation based on data regarding a plurality of components provided in the facility and control program code of the controller, thereby generating a list of the compromised component; and a compromised behavior generating unit (16) configured to generate a compromised behavior of a selected component selected from the list of the compromised component.