Securing industrial cyber-physical systems: A run-time multi-layer monitoring
Khan, Taimoor ORCID: https://orcid.org/0000-0002-5752-6420 and Tomic, Ivana ORCID: https://orcid.org/0000-0003-3502-5980 (2020) Securing industrial cyber-physical systems: A run-time multi-layer monitoring. IEEE Transactions on Industrial Informatics, 17 (9). pp. 6251-6259. ISSN 1551-3203 (Print), 1941-0050 (Online) (doi:10.1109/TII.2020.3032968)
Preview |
PDF (Author Accepted Manuscript)
30046 TOMIC_Securing_Industrial_Cyber-Physical_Systems_(AAM)_2020.pdf - Accepted Version Download (5MB) | Preview |
Abstract
Industrial Cyber-Physical Systems (ICPSs) are widely deployed in monitoring and control of the nation's critical industrial processes such as water distribution networks and power grids. ICPSs are the tight integration of cyber (software) and physical entities connected via communication networks. Communication networks are typically realised via wireless channels to reduce the cost of wires and installation. However, they are also inherently unreliable, easy to disrupt and subvert, which makes them a potential target for cyber attacks. The failure of communication can cause data loss or delays, which can compromise system functionality and have catastrophic consequences due to the strict real-time requirements of ICPSs. Current run-time security monitors protect ICPSs either at communication level (through network intrusion monitors) or application level (through threat detection monitors). Such monitors are layer-specific and thus fail to detect advanced threats arising from the multi-layer disruption. In this paper, we present a multi-layer run-time security monitor that can detect discrepancies caused by interdependent application and communication layer attacks and prevent their propagation into the system's control loops. We demonstrate the effectiveness of the approach via an example of the ICPS used for control and monitoring of a water distribution network.
Item Type: | Article |
---|---|
Uncontrolled Keywords: | Industrial Cyber-Physical System (ICPS), security, communication and application layer attacks, run-time monitoring |
Subjects: | Q Science > QA Mathematics > QA75 Electronic computers. Computer science |
Faculty / School / Research Centre / Research Group: | Faculty of Engineering & Science Faculty of Engineering & Science > Internet of Things and Security Research Centre (ISEC) Faculty of Engineering & Science > School of Computing & Mathematical Sciences (CMS) |
Last Modified: | 23 May 2022 10:20 |
URI: | http://gala.gre.ac.uk/id/eprint/30046 |
Actions (login required)
View Item |
Downloads
Downloads per month over past year