One of the most dangerous insider threats in a supervisory control and data acquisition (SCADA) system is deontological threat. The concept of deontological threat has been introduced to underline the operator performance when he/she does not perform his/her duties perfectly or decides to abuse the privileges in order to perform malicious operations in remote substations. In this paper, a new alarm-and-trust-based access management system (ATAMS) has been proposed that is able to reinforce the security of the SCADA system against the deontological threats. In the proposed ATAMS, the accessibility of a remote substation will be determined based on the operator trust and the integrity level of the substation. The value of operator trust is calculated using the performance of the operator, periodically or when an anomaly is detected. One of the opportunities of the ATAMS is its ability in detecting the anomalies, which is rooted in the deontological threats.

中文翻译：

---

SCADA 系统中的操作员访问管理：义务威胁缓解


监督控制和数据采集 (SCADA) 系统中最危险的内部威胁之一是义务论威胁。引入义务论威胁的概念是为了强调操作员没有完美履行职责或决定滥用特权以在远程变电站执行恶意操作时的表现。在本文中，提出了一种新的基于警报和信任的访问管理系统（ATAMS），该系统能够增强 SCADA 系统抵御义务论威胁的安全性。在拟议的 ATAMS 中，远程变电站的可访问性将根据运营商的信任和变电站的完整性级别来确定。操作员信任值是根据操作员的表现定期或在检测到异常时计算的。 ATMS 的机遇之一是其检测异常的能力，这种异常植根于义务论威胁。