Skip navigation

Securing industrial cyber-physical systems: A run-time multi-layer monitoring

Securing industrial cyber-physical systems: A run-time multi-layer monitoring

Khan, Taimoor ORCID logoORCID: https://orcid.org/0000-0002-5752-6420 and Tomic, Ivana ORCID logoORCID: https://orcid.org/0000-0003-3502-5980 (2020) Securing industrial cyber-physical systems: A run-time multi-layer monitoring. IEEE Transactions on Industrial Informatics, 17 (9). pp. 6251-6259. ISSN 1551-3203 (Print), 1941-0050 (Online) (doi:10.1109/TII.2020.3032968)

[thumbnail of Author Accepted Manuscript]
Preview
PDF (Author Accepted Manuscript)
30046 TOMIC_Securing_Industrial_Cyber-Physical_Systems_(AAM)_2020.pdf - Accepted Version

Download (5MB) | Preview

Abstract

Industrial Cyber-Physical Systems (ICPSs) are widely deployed in monitoring and control of the nation's critical industrial processes such as water distribution networks and power grids. ICPSs are the tight integration of cyber (software) and physical entities connected via communication networks. Communication networks are typically realised via wireless channels to reduce the cost of wires and installation. However, they are also inherently unreliable, easy to disrupt and subvert, which makes them a potential target for cyber attacks. The failure of communication can cause data loss or delays, which can compromise system functionality and have catastrophic consequences due to the strict real-time requirements of ICPSs. Current run-time security monitors protect ICPSs either at communication level (through network intrusion monitors) or application level (through threat detection monitors). Such monitors are layer-specific and thus fail to detect advanced threats arising from the multi-layer disruption. In this paper, we present a multi-layer run-time security monitor that can detect discrepancies caused by interdependent application and communication layer attacks and prevent their propagation into the system's control loops. We demonstrate the effectiveness of the approach via an example of the ICPS used for control and monitoring of a water distribution network.

Item Type: Article
Uncontrolled Keywords: Industrial Cyber-Physical System (ICPS), security, communication and application layer attacks, run-time monitoring
Subjects: Q Science > QA Mathematics > QA75 Electronic computers. Computer science
Faculty / School / Research Centre / Research Group: Faculty of Engineering & Science
Faculty of Engineering & Science > Internet of Things and Security Research Centre (ISEC)
Faculty of Engineering & Science > School of Computing & Mathematical Sciences (CMS)
Last Modified: 23 May 2022 10:20
URI: http://gala.gre.ac.uk/id/eprint/30046

Actions (login required)

View Item View Item

Downloads

Downloads per month over past year

View more statistics