Cargando…
Cyberbiosecurity in high-containment laboratories
High-containment laboratories (HCLs) conduct critical research on infectious diseases, provide diagnostic services, and produce vaccines for the world’s most dangerous pathogens, often called high-consequence pathogens (HCPs). The modernization of HCLs has led to an increasingly cyber-connected labo...
Autores principales: | , , , , , , , |
---|---|
Formato: | Online Artículo Texto |
Lenguaje: | English |
Publicado: |
Frontiers Media S.A.
2023
|
Materias: | |
Acceso en línea: | https://www.ncbi.nlm.nih.gov/pmc/articles/PMC10407794/ https://www.ncbi.nlm.nih.gov/pubmed/37560539 http://dx.doi.org/10.3389/fbioe.2023.1240281 |
_version_ | 1785086041282052096 |
---|---|
author | Crawford, Elizabeth Bobrow, Adam Sun, Landy Joshi, Sridevi Vijayan, Viji Blacksell, Stuart Venugopalan, Gautham Tensmeyer, Nicole |
author_facet | Crawford, Elizabeth Bobrow, Adam Sun, Landy Joshi, Sridevi Vijayan, Viji Blacksell, Stuart Venugopalan, Gautham Tensmeyer, Nicole |
author_sort | Crawford, Elizabeth |
collection | PubMed |
description | High-containment laboratories (HCLs) conduct critical research on infectious diseases, provide diagnostic services, and produce vaccines for the world’s most dangerous pathogens, often called high-consequence pathogens (HCPs). The modernization of HCLs has led to an increasingly cyber-connected laboratory infrastructure. The unique cyberphysical elements of these laboratories and the critical data they generate pose cybersecurity concerns specific to these laboratories. Cyberbiosecurity, the discipline devoted to the study of cybersecurity risks in conjunction with biological risks, is a relatively new field for which few approaches have been developed to identify, assess, and mitigate cyber risks in biological research and diagnostic environments. This study provides a novel approach for cybersecurity risk assessment and identification of risk mitigation measures by applying an asset-impact analysis to the unique environment of HCLs. First, we identified the common cyber and cyberphysical systems in HCLs, summarizing the typical cyber-workflow. We then analyzed the potential adverse outcomes arising from a compromise of these cyber and cyberphysical systems, broadly categorizing potential consequences as relevant to scientific advancement, public health, worker safety, security, and the financial wellbeing of these laboratories. Finally, we discussed potential risk mitigation strategies, leaning heavily on the cybersecurity materials produced by the Center for Internet Security (CIS), including the CIS Controls(®), that can serve as a guide for HCL operators to begin the process of implementing risk mitigation measures to reduce their cyberbiorisk and considering the integration of cyber risk management into existing biorisk management practices. This paper provides a discussion to raise awareness among laboratory decision-makers of these critical risks to safety and security within HCLs. Furthermore, this paper can serve as a guide for evaluating cyberbiorisks specific to a laboratory by identifying cyber-connected assets and the impacts associated with a compromise of those assets. |
format | Online Article Text |
id | pubmed-10407794 |
institution | National Center for Biotechnology Information |
language | English |
publishDate | 2023 |
publisher | Frontiers Media S.A. |
record_format | MEDLINE/PubMed |
spelling | pubmed-104077942023-08-09 Cyberbiosecurity in high-containment laboratories Crawford, Elizabeth Bobrow, Adam Sun, Landy Joshi, Sridevi Vijayan, Viji Blacksell, Stuart Venugopalan, Gautham Tensmeyer, Nicole Front Bioeng Biotechnol Bioengineering and Biotechnology High-containment laboratories (HCLs) conduct critical research on infectious diseases, provide diagnostic services, and produce vaccines for the world’s most dangerous pathogens, often called high-consequence pathogens (HCPs). The modernization of HCLs has led to an increasingly cyber-connected laboratory infrastructure. The unique cyberphysical elements of these laboratories and the critical data they generate pose cybersecurity concerns specific to these laboratories. Cyberbiosecurity, the discipline devoted to the study of cybersecurity risks in conjunction with biological risks, is a relatively new field for which few approaches have been developed to identify, assess, and mitigate cyber risks in biological research and diagnostic environments. This study provides a novel approach for cybersecurity risk assessment and identification of risk mitigation measures by applying an asset-impact analysis to the unique environment of HCLs. First, we identified the common cyber and cyberphysical systems in HCLs, summarizing the typical cyber-workflow. We then analyzed the potential adverse outcomes arising from a compromise of these cyber and cyberphysical systems, broadly categorizing potential consequences as relevant to scientific advancement, public health, worker safety, security, and the financial wellbeing of these laboratories. Finally, we discussed potential risk mitigation strategies, leaning heavily on the cybersecurity materials produced by the Center for Internet Security (CIS), including the CIS Controls(®), that can serve as a guide for HCL operators to begin the process of implementing risk mitigation measures to reduce their cyberbiorisk and considering the integration of cyber risk management into existing biorisk management practices. This paper provides a discussion to raise awareness among laboratory decision-makers of these critical risks to safety and security within HCLs. Furthermore, this paper can serve as a guide for evaluating cyberbiorisks specific to a laboratory by identifying cyber-connected assets and the impacts associated with a compromise of those assets. Frontiers Media S.A. 2023-07-25 /pmc/articles/PMC10407794/ /pubmed/37560539 http://dx.doi.org/10.3389/fbioe.2023.1240281 Text en Copyright © 2023 Crawford, Bobrow, Sun, Joshi, Vijayan, Blacksell, Venugopalan and Tensmeyer. https://creativecommons.org/licenses/by/4.0/This is an open-access article distributed under the terms of the Creative Commons Attribution License (CC BY). The use, distribution or reproduction in other forums is permitted, provided the original author(s) and the copyright owner(s) are credited and that the original publication in this journal is cited, in accordance with accepted academic practice. No use, distribution or reproduction is permitted which does not comply with these terms. |
spellingShingle | Bioengineering and Biotechnology Crawford, Elizabeth Bobrow, Adam Sun, Landy Joshi, Sridevi Vijayan, Viji Blacksell, Stuart Venugopalan, Gautham Tensmeyer, Nicole Cyberbiosecurity in high-containment laboratories |
title | Cyberbiosecurity in high-containment laboratories |
title_full | Cyberbiosecurity in high-containment laboratories |
title_fullStr | Cyberbiosecurity in high-containment laboratories |
title_full_unstemmed | Cyberbiosecurity in high-containment laboratories |
title_short | Cyberbiosecurity in high-containment laboratories |
title_sort | cyberbiosecurity in high-containment laboratories |
topic | Bioengineering and Biotechnology |
url | https://www.ncbi.nlm.nih.gov/pmc/articles/PMC10407794/ https://www.ncbi.nlm.nih.gov/pubmed/37560539 http://dx.doi.org/10.3389/fbioe.2023.1240281 |
work_keys_str_mv | AT crawfordelizabeth cyberbiosecurityinhighcontainmentlaboratories AT bobrowadam cyberbiosecurityinhighcontainmentlaboratories AT sunlandy cyberbiosecurityinhighcontainmentlaboratories AT joshisridevi cyberbiosecurityinhighcontainmentlaboratories AT vijayanviji cyberbiosecurityinhighcontainmentlaboratories AT blacksellstuart cyberbiosecurityinhighcontainmentlaboratories AT venugopalangautham cyberbiosecurityinhighcontainmentlaboratories AT tensmeyernicole cyberbiosecurityinhighcontainmentlaboratories |