Synergistic Security for the Industrial Internet of Things: Integrating Redundancy, Diversity, and Hardening

Lászka, Áron; Abbas, Waseem; Vorobeychik, Yevgeniy; Koutsoukos, Xenofon

doi:10.1109/icii.2018.00025

Cited by 18 publications

(9 citation statements)

References 40 publications

Supporting

Mentioning

Contrasting

Order By: Relevance

“…Risk assessment for the IIoT is another field that has seen activity in recent years. In [44] and [126] two risk assessment models for the IIoT are presented. The first is mainly focused on water sewage systems, but has aspects that can be generalized, while the second aims to be general, and utilizes use cases as its input.…”

Section: Models and Methodologiesmentioning

confidence: 99%

“…The implication that resilience requirements bring to the security domain are that security technologies should provide the capability to continue normal system operations if parts of the system are considered compromised. This could for example be done by rerouting tasks to other capable components, or through other means, often belonging to one of three canonical approaches identified by Laszka et al [126]: redundancy, diversity, and hardening.…”

Section: E Resiliencementioning

confidence: 99%

See 1 more Smart Citation

A Systematic Survey of Industrial Internet of Things Security: Requirements and Fog Computing Opportunities

Tange

Donno

Fafoutis

et al. 2020

IEEE Commun. Surv. Tutorials

295

112

View full text Add to dashboard Cite

A key application of the Internet of Things (IoT) paradigm lies within industrial contexts. Indeed, the emerging Industrial Internet of Things (IIoT), commonly referred to as Industry 4.0, promises to revolutionize production and manufacturing through the use of large numbers of networked embedded sensing devices, and the combination of emerging computing technologies, such as Fog/Cloud Computing and Artificial Intelligence. The IIoT is characterized by an increased degree of inter-connectivity, which not only creates opportunities for the industries that adopt it, but also for cyber-criminals. Indeed, IoT security currently represents one of the major obstacles that prevent the widespread adoption of IIoT technology. Unsurprisingly, such concerns led to an exponential growth of published research over the last few years. To get an overview of the field, we deem it important to systematically survey the academic literature so far, and distill from it various security requirements as well as their popularity. This paper consists of two contributions: our primary contribution is a systematic review of the literature over the period 2011-2019 on IIoT Security, focusing in particular on the security requirements of the IIoT. Our secondary contribution is a reflection on how the relatively new paradigm of Fog computing can be leveraged to address these requirements, and thus improve the security of the IIoT.

show abstract

Section: Models and Methodologiesmentioning

confidence: 99%

Section: E Resiliencementioning

confidence: 99%

A Systematic Survey of Industrial Internet of Things Security: Requirements and Fog Computing Opportunities

Tange

Donno

Fafoutis

et al. 2020

IEEE Commun. Surv. Tutorials

295

112

View full text Add to dashboard Cite

show abstract

“…The impacts of the resilience obligations on the security realm necessitate mechanisms that ought to deliver the ability to keep on regular system functions when portions of the system are deemed to malfunction. This might be accomplished by deflecting tasks to alternative efficient IoT elements, or via other methods, habitually belonging to one of three established approaches for improving the security and resilience of IoT-based systems, namely diversity, redundancy, and hardening [37].…”

Section: Resilience (S10)mentioning

confidence: 99%

Internet of Things Security Requirements, Threats, Attacks, and Countermeasures

Abdel‐Basset

Moustafa

Hawash

et al. 2021

Deep Learning Techniques for IoT Security and Privacy

View full text Add to dashboard Cite

This chapter elaborates on different security aspects to be taken into accounts during the development and the deployments of IoT architecture. To make the reader about the security of the IoT based system, this chapter begins by defining the contemporary security requirements that should be considered to realize a reliable and trustworthy IoT environment. Then, the discussion extends to differentiate different concepts of IoT security i.e., threat, vulnerability, countermeasure, attacks, risks; and also explain how the concepts relate to each other. Later, a systematic taxonomy is presented for classifying IoT attacks according to IoT assets, where each class of IoT is further classified into more subcategories. Finally, the discussion of each elaborate different categories of IoT attack indicating their main security targets and possible IoT countermeasures.To sum up, this chapter intends to provide a comprehensive overview regarding IoT security vulnerabilities, threats, countermeasures, risks along with practices of handling them all through the following sections: • Security Requirements in Internet of Things • IoT threats, Attacks, vulnerabilities, and risks • Today's IoT attacks and Countermeasures • IoT attack surfaces • Summary and Learnt Lessons.

show abstract

“…To build a trustworthy VRLE system architecture which ensures security and privacy, integration of design principles in the life cycle of edge computing interconnected and distributed IoT device based systems is essential [25]. We adapt the following three design principles from NIST SP800-160 [13], [25] such as: (i) Hardening -defined as reinforcement of individual or types of components to ensure that they are harder to compromise or impair, (ii) Diversity -defined as the implementation of a feature with diverse types of components to restrict the threat impact from proliferating further into the system, and (iii) Principle of least privilege -defined as limiting the privileges of any entity, that is just enough to perform its functions and prevents the effect of threat from propagating beyond the affected component.…”

Section: Design Principlesmentioning

confidence: 99%

Attack Trees for Security and Privacy in Social Virtual Reality Learning Environments

Valluripally,

Gulhane,

Mitra

et al. 2019

Preprint

View full text Add to dashboard Cite

Social Virtual Reality Learning Environment (VRLE) is a novel edge computing platform for collaboration amongst distributed users. Given that VRLEs are used for critical applications (e.g., special education, public safety training), it is important to ensure security and privacy issues. In this paper, we present a novel framework to obtain quantitative assessments of threats and vulnerabilities for VRLEs. Based on the use cases from an actual social VRLE viz., vSocial, we first model the security and privacy using the attack trees. Subsequently, these attack trees are converted into stochastic timed automata representations that allow for rigorous statistical model checking. Such an analysis helps us adopt pertinent design principles such as hardening, diversity and principle of least privilege to enhance the resilience of social VRLEs. Through experiments in a vSocial case study, we demonstrate the effectiveness of our attack tree modeling with a reduction of 26% in probability of loss of integrity (security) and 80% in privacy leakage (privacy) in before and after scenarios pertaining to the adoption of the design principles.

show abstract

Synergistic Security for the Industrial Internet of Things: Integrating Redundancy, Diversity, and Hardening

Cited by 18 publications

References 40 publications

A Systematic Survey of Industrial Internet of Things Security: Requirements and Fog Computing Opportunities

A Systematic Survey of Industrial Internet of Things Security: Requirements and Fog Computing Opportunities

Internet of Things Security Requirements, Threats, Attacks, and Countermeasures

Attack Trees for Security and Privacy in Social Virtual Reality Learning Environments

Contact Info

Product

Resources

About