Cyber resilience is the ability of a system to resist and recover from a cyber attack, thereby restoring the system's functionality. Effective design and development of a cyber resilient system requires experimental methods and tools for quantitative measuring of cyber resilience. This paper describes an experimental method and test bed for obtaining resilience-relevant data as a system (in our case -- a truck) traverses its route, in repeatable, systematic experiments. We model a truck equipped with an autonomous cyber-defense system and which also includes inherent physical resilience features. When attacked by malware, this ensemble of cyber-physical features (i.e., "bonware") strives to resist and recover from the performance degradation caused by the malware's attack. We propose parsimonious mathematical models to aid in quantifying systems' resilience to cyber attacks. Using the models, we identify quantitative characteristics obtainable from experimental data, and show that these characteristics can serve as useful quantitative measures of cyber resilience.

翻译：网络弹性是指系统抵抗网络攻击并从中恢复，从而恢复系统功能的能力。有效设计和开发具备网络弹性的系统需要用于定量测量网络弹性的实验方法和工具。本文描述了一种实验方法和测试平台，用于在可重复、系统化的实验中，当系统（在本研究中为一辆卡车）沿其路线行驶时获取与弹性相关的数据。我们建模了一辆配备自主网络防御系统并包含固有物理弹性特征的卡车。当受到恶意软件攻击时，这一系列网络物理特征（即“良性软件”）会努力抵抗并恢复由恶意软件攻击导致的性能下降。我们提出了简约的数学模型以帮助量化系统对网络攻击的弹性。利用这些模型，我们识别了可从实验数据中获取的定量特征，并证明这些特征可作为网络弹性的有效定量度量指标。