Securing Industrial Cyber–Physical Systems: A Run-Time Multilayer Monitoring

Khan, Muhammad Taimoor; Tomić, Ivana

doi:10.1109/tii.2020.3032968

Cited by 12 publications

(6 citation statements)

References 32 publications

Supporting

Mentioning

Contrasting

Order By: Relevance

“…In this research, we focused on security and did not optimize performance well; hence, finding a balance between security and performance in the next work will be one of the focuses of our research work. With the advent of Industry 4.0, this protocol will involve more application scenarios [24,25], such as cloud center-based device data transmission and computing migration, which requires multifeature authentication (such as biometrics, smart cards) verification. Protocol security solutions based on these application scenarios need to consider the actual environment and development trends [26].…”

Section: Discussionmentioning

confidence: 99%

Formal Security Evaluation and Improvement of Wireless HART Protocol in Industrial Wireless Network

Luo

Feng

2021

Security and Communication Networks

View full text Add to dashboard Cite

With the rapid development of wireless communication technology in the field of industrial control systems, Wireless HART is an international wireless standard, because of its low cost and strong scalability, as well as its wide range of applications in the industrial control field. However, it is more open communication so that the possibility of increased attacks by external. At present, there are many types of research on wireless protocol security at home and abroad, but they all focus on the realization of the security function of the protocol itself, which has certain limitations for the formal modeling of the protocol security assessment. Taking into account the aforementioned research status, this paper takes the Wireless HART protocol as the research object and adopts the model detection method combining eCK model theory and colored Petri net theory to evaluate and improve the security of the protocol. First, the colored Petri net theory and CPN Tools modeling tool were introduced to verify the consistency of the original model of the protocol. And the eCK model was used to evaluate the security of the original protocol model. It was found that the protocol has two types of man-in-the-middle attack vulnerabilities: tampering and deception. Aiming at the attack loopholes of the protocol, an improvement plan was proposed. After improving the original protocol, CPN Tools modeling tool was used for security verification. It was found that the new scheme improvement can effectively prevent the existing attacks and reasonably improve the security of the protocol.

show abstract

Section: Discussionmentioning

confidence: 99%

Formal Security Evaluation and Improvement of Wireless HART Protocol in Industrial Wireless Network

Luo

Feng

2021

Security and Communication Networks

View full text Add to dashboard Cite

show abstract

“…Reference [115] developed a methodology called Multilayer Run-Time Security Monitor (ML-RSM), which is capable of identifying divergences caused by communications and attacks on the application layer, as well as preventing the spread to other control layers. The robustness of this approach is tested in a water distribution monitoring system [115]. To monitor and secure ICPSs, the author of [116] developed a robust tool capable of identifying possible cyberattacks through hierarchically distributed intrusion detection.…”

Section: Cybersecurity On Monitoring Systemsmentioning

confidence: 99%

“…Experimental study of intelligent home intrusion detection [124] For monitoring industrial systems, industrial cyber-physical systems (ICPSs) are used, consisting of a link between the software and hardware parts of the system. Reference [115] developed a methodology called Multilayer Run-Time Security Monitor (ML-RSM), which is capable of identifying divergences caused by communications and attacks on the application layer, as well as preventing the spread to other control layers. The robustness of this approach is tested in a water distribution monitoring system [115].…”

Section: Cpsmentioning

confidence: 99%

Cybersecurity in Cyber–Physical Power Systems

2023

View full text Add to dashboard Cite

The current energy transition combined with the modernization of power systems has provided meaningful transformations in the transmission, distribution, operation, planning, monitoring, and control of power systems. These advancements are heavily dependent on the employment of new computing and communications technologies, which, combined with traditional physical systems, lead to the emergence of cyber–physical systems (CPSs). In this sense, besides the traditional challenges of keeping a reliable, affordable, and safe power grid, one must now deal with the new vulnerabilities to cyberattacks that emerge with the advancement of CPSs. Aware of this perspective and the severity of the ongoing challenges faced by the industry due to cyberattacks, this paper aims to provide a comprehensive survey of the literature on cybersecurity in cyber–physical power systems. For this, clear definitions, historical timelines, and classifications of the main types of cyberattacks, including the concepts, architectures, and basic components that make up, as well as the vulnerabilities in managing, controlling, and protecting, a CPS are presented. Furthermore, this paper presents defense strategies and future trends for cybersecurity. To conduct this study, a careful search was made in relevant academic and industrial databases, leading to a detailed reporting of key works focused on mitigating cyberattacks and ensuring the cybersecurity of modern CPSs. Finally, the paper presents some standards and regulations that technical and international institutions on cybersecurity in smart grids have created.

show abstract

“…The performance evaluation consists of simulating the workflow scheduling algorithms and measuring their execution times, since the overall goal is to decrease the probability of errors caused by transient faults while ensuring security services. Malicious activities are considered in [35] where the communication layer is monitored to guarantee reliability and to avoid the propagation of security threats at the application level. He et al [12] survey malicious attacks in MAS and report those considered in this paper, i.e., deception attacks including false data injection.…”

Section: Related Workmentioning

confidence: 99%

Performance Analysis of Fault-Tolerant Multiagent Coordination Mechanisms

Pinciroli

Trubiani

2023

IEEE Trans. Ind. Inf.

View full text Add to dashboard Cite

Performance evaluation of multi-agent systems (MAS) embraces several challenges due to uncertain operational environments, such as software/hardware failures and unfaithful communications that facilitate the spread of deceptive messages. One way to smooth the impact of reliability and security potential issues in MAS is to enforce different coordination mechanisms among agents (i.e., coordinating multiple agents that need to perform a sequence of actions to maximize a system-level reward), and evaluate their efficiency. In this paper, we propose a tool-based approach, namely COORDINATE, that simulates and compares the performance characteristics of different coordination mechanisms for MAS while considering faulttolerant and corrupted agents. A Smart Hospital is adopted as illustrative example to show the need of performancebased analysis results pointing out which coordination mechanism is more efficient. Experimental results indicate that the inter-arrival time of tasks to be accomplished, the failure probability of agents, and the ratio of faithful to malicious agents contribute to determining the efficiency of different coordination mechanisms. When varying these parameters in the considered scenarios, the system latency can be reduced up to 4.2× by selecting the optimal coordination mechanism. This way, software developers are informed on the system peculiarities that trigger the switching among such coordination mechanisms for a performance-based optimal solution.

show abstract

Securing Industrial Cyber–Physical Systems: A Run-Time Multilayer Monitoring

Cited by 12 publications

References 32 publications

Formal Security Evaluation and Improvement of Wireless HART Protocol in Industrial Wireless Network

Formal Security Evaluation and Improvement of Wireless HART Protocol in Industrial Wireless Network

Cybersecurity in Cyber–Physical Power Systems

Performance Analysis of Fault-Tolerant Multiagent Coordination Mechanisms

Contact Info

Product

Resources

About