Cargando…

Cyberbiosecurity in high-containment laboratories

High-containment laboratories (HCLs) conduct critical research on infectious diseases, provide diagnostic services, and produce vaccines for the world’s most dangerous pathogens, often called high-consequence pathogens (HCPs). The modernization of HCLs has led to an increasingly cyber-connected labo...

Descripción completa

Detalles Bibliográficos
Autores principales: Crawford, Elizabeth, Bobrow, Adam, Sun, Landy, Joshi, Sridevi, Vijayan, Viji, Blacksell, Stuart, Venugopalan, Gautham, Tensmeyer, Nicole
Formato: Online Artículo Texto
Lenguaje:English
Publicado: Frontiers Media S.A. 2023
Materias:
Acceso en línea:https://www.ncbi.nlm.nih.gov/pmc/articles/PMC10407794/
https://www.ncbi.nlm.nih.gov/pubmed/37560539
http://dx.doi.org/10.3389/fbioe.2023.1240281
_version_ 1785086041282052096
author Crawford, Elizabeth
Bobrow, Adam
Sun, Landy
Joshi, Sridevi
Vijayan, Viji
Blacksell, Stuart
Venugopalan, Gautham
Tensmeyer, Nicole
author_facet Crawford, Elizabeth
Bobrow, Adam
Sun, Landy
Joshi, Sridevi
Vijayan, Viji
Blacksell, Stuart
Venugopalan, Gautham
Tensmeyer, Nicole
author_sort Crawford, Elizabeth
collection PubMed
description High-containment laboratories (HCLs) conduct critical research on infectious diseases, provide diagnostic services, and produce vaccines for the world’s most dangerous pathogens, often called high-consequence pathogens (HCPs). The modernization of HCLs has led to an increasingly cyber-connected laboratory infrastructure. The unique cyberphysical elements of these laboratories and the critical data they generate pose cybersecurity concerns specific to these laboratories. Cyberbiosecurity, the discipline devoted to the study of cybersecurity risks in conjunction with biological risks, is a relatively new field for which few approaches have been developed to identify, assess, and mitigate cyber risks in biological research and diagnostic environments. This study provides a novel approach for cybersecurity risk assessment and identification of risk mitigation measures by applying an asset-impact analysis to the unique environment of HCLs. First, we identified the common cyber and cyberphysical systems in HCLs, summarizing the typical cyber-workflow. We then analyzed the potential adverse outcomes arising from a compromise of these cyber and cyberphysical systems, broadly categorizing potential consequences as relevant to scientific advancement, public health, worker safety, security, and the financial wellbeing of these laboratories. Finally, we discussed potential risk mitigation strategies, leaning heavily on the cybersecurity materials produced by the Center for Internet Security (CIS), including the CIS Controls(®), that can serve as a guide for HCL operators to begin the process of implementing risk mitigation measures to reduce their cyberbiorisk and considering the integration of cyber risk management into existing biorisk management practices. This paper provides a discussion to raise awareness among laboratory decision-makers of these critical risks to safety and security within HCLs. Furthermore, this paper can serve as a guide for evaluating cyberbiorisks specific to a laboratory by identifying cyber-connected assets and the impacts associated with a compromise of those assets.
format Online
Article
Text
id pubmed-10407794
institution National Center for Biotechnology Information
language English
publishDate 2023
publisher Frontiers Media S.A.
record_format MEDLINE/PubMed
spelling pubmed-104077942023-08-09 Cyberbiosecurity in high-containment laboratories Crawford, Elizabeth Bobrow, Adam Sun, Landy Joshi, Sridevi Vijayan, Viji Blacksell, Stuart Venugopalan, Gautham Tensmeyer, Nicole Front Bioeng Biotechnol Bioengineering and Biotechnology High-containment laboratories (HCLs) conduct critical research on infectious diseases, provide diagnostic services, and produce vaccines for the world’s most dangerous pathogens, often called high-consequence pathogens (HCPs). The modernization of HCLs has led to an increasingly cyber-connected laboratory infrastructure. The unique cyberphysical elements of these laboratories and the critical data they generate pose cybersecurity concerns specific to these laboratories. Cyberbiosecurity, the discipline devoted to the study of cybersecurity risks in conjunction with biological risks, is a relatively new field for which few approaches have been developed to identify, assess, and mitigate cyber risks in biological research and diagnostic environments. This study provides a novel approach for cybersecurity risk assessment and identification of risk mitigation measures by applying an asset-impact analysis to the unique environment of HCLs. First, we identified the common cyber and cyberphysical systems in HCLs, summarizing the typical cyber-workflow. We then analyzed the potential adverse outcomes arising from a compromise of these cyber and cyberphysical systems, broadly categorizing potential consequences as relevant to scientific advancement, public health, worker safety, security, and the financial wellbeing of these laboratories. Finally, we discussed potential risk mitigation strategies, leaning heavily on the cybersecurity materials produced by the Center for Internet Security (CIS), including the CIS Controls(®), that can serve as a guide for HCL operators to begin the process of implementing risk mitigation measures to reduce their cyberbiorisk and considering the integration of cyber risk management into existing biorisk management practices. This paper provides a discussion to raise awareness among laboratory decision-makers of these critical risks to safety and security within HCLs. Furthermore, this paper can serve as a guide for evaluating cyberbiorisks specific to a laboratory by identifying cyber-connected assets and the impacts associated with a compromise of those assets. Frontiers Media S.A. 2023-07-25 /pmc/articles/PMC10407794/ /pubmed/37560539 http://dx.doi.org/10.3389/fbioe.2023.1240281 Text en Copyright © 2023 Crawford, Bobrow, Sun, Joshi, Vijayan, Blacksell, Venugopalan and Tensmeyer. https://creativecommons.org/licenses/by/4.0/This is an open-access article distributed under the terms of the Creative Commons Attribution License (CC BY). The use, distribution or reproduction in other forums is permitted, provided the original author(s) and the copyright owner(s) are credited and that the original publication in this journal is cited, in accordance with accepted academic practice. No use, distribution or reproduction is permitted which does not comply with these terms.
spellingShingle Bioengineering and Biotechnology
Crawford, Elizabeth
Bobrow, Adam
Sun, Landy
Joshi, Sridevi
Vijayan, Viji
Blacksell, Stuart
Venugopalan, Gautham
Tensmeyer, Nicole
Cyberbiosecurity in high-containment laboratories
title Cyberbiosecurity in high-containment laboratories
title_full Cyberbiosecurity in high-containment laboratories
title_fullStr Cyberbiosecurity in high-containment laboratories
title_full_unstemmed Cyberbiosecurity in high-containment laboratories
title_short Cyberbiosecurity in high-containment laboratories
title_sort cyberbiosecurity in high-containment laboratories
topic Bioengineering and Biotechnology
url https://www.ncbi.nlm.nih.gov/pmc/articles/PMC10407794/
https://www.ncbi.nlm.nih.gov/pubmed/37560539
http://dx.doi.org/10.3389/fbioe.2023.1240281
work_keys_str_mv AT crawfordelizabeth cyberbiosecurityinhighcontainmentlaboratories
AT bobrowadam cyberbiosecurityinhighcontainmentlaboratories
AT sunlandy cyberbiosecurityinhighcontainmentlaboratories
AT joshisridevi cyberbiosecurityinhighcontainmentlaboratories
AT vijayanviji cyberbiosecurityinhighcontainmentlaboratories
AT blacksellstuart cyberbiosecurityinhighcontainmentlaboratories
AT venugopalangautham cyberbiosecurityinhighcontainmentlaboratories
AT tensmeyernicole cyberbiosecurityinhighcontainmentlaboratories