Barnaby Craggs scite author profile

Securing cyber-physical systems is hard. They are complex infrastructures comprising multiple technological artefacts, designers, operators and users. Existing research has established the security challenges in such systems as well as the role of usable security to support humans in effective security decisions and actions. In this paper we focus on smart cyberphysical systems, such as those based on the Internet of Things (IoT). Such smart systems aim to intelligently automate a variety of functions, with the goal of hiding that complexity from the user. Furthermore, the interactions of the user with such systems are more often implicit than explicit, for instance, a pedestrian with wearables walking through a smart city environment will most likely interact with the smart environment implicitly through a variety of inferred preferences based on previously provided or automatically collected data. The key question that we explore is that of empowering software engineers to pragmatically take into account how users make informed security choices about their data and information in such a pervasive environment. We discuss a range of existing frameworks considering the impact of automation on user behaviours and argue for the need of a shift-from usability to security ergonomics as a key requirement when designing and implementing security features in smart cyber-physical environments. Of course, the considerations apply more broadly than security but, in this paper, we focus only on security as a key concern.

show abstract

A Reference Architecture for IIoT and Industrial Control Systems Testbeds

Craggs

Rashid

Hankin

et al. 2019

View full text Add to dashboard Cite

Conducting cyber security research within live operational technology and industrial Internet of Things environments is, understandably, not practical and as such research needs to be undertaken within non-live mimics or testbeds. However, testbeds and especially those which are built using real-world infrastructure are expensive to develop and maintain. Moreover, such testbeds tend to be representative of a single industry vertical (often based upon the skill set or research focus) and built in isolation. In this paper we present a reference architecture, developed whilst designing and building the Bristol Cyber Security Group ICS/IIoT testbed for critical national infrastructure security research.

show abstract

Design Considerations for Building Credible Security Testbeds: Perspectives from Industrial Control System Use Cases

Ani

Watson

Green

et al. 2020

Journal of Cyber Security Technology

View full text Add to dashboard Cite

show abstract

Trust Beyond Computation Alone: Human Aspects of Trust in Blockchain Technologies

Craggs

Rashid

2019

View full text Add to dashboard Cite

Blockchains-with their inherent properties of transaction transparency, distributed consensus, immutability and cryptographic verifiability-are increasingly seen as a means to underpin innovative products and services in a range of sectors from finance through to energy and healthcare. Discussions, too often, make assertions that the trustless nature of blockchain technologies enables and actively promotes their suitability-there being no need to trust third parties or centralised control. Yet humans need to be able to trust systems, and others with whom the system enables transactions. In this paper, we highlight that understanding this need for trust is critical for the development of blockchain-based systems. Through an online study with 125 users of the most wellknown of blockchain based systems-the cryptocurrency Bitcoin-we uncover that human and institutional aspects of trust are pervasive. Our analysis highlights that, when designing future blockchain-based technologies, we ought to not only consider computational trust but also the wider ecosystem , how trust plays a part in users engaging/disengaging with such ecosystems and where design choices impact upon trust. From this, we distill a set of guidelines for software engineers developing blockchainbased systems for societal applications.

show abstract

scite is a Brooklyn-based organization that helps researchers better discover and understand research articles through Smart Citations–citations that display the context of the citation and describe whether the article provides supporting or contrasting evidence. scite is used by students and researchers from around the world and is funded in part by the National Science Foundation and the National Institute on Drug Abuse of the National Institutes of Health.

Contact Info

hi@scite.ai

10624 S. Eastern Ave., Ste. A-614

Henderson, NV 89052, USA

Blog Terms and Conditions API Terms Privacy Policy Contact Cookie Preferences Do Not Sell or Share My Personal Information

Made with 💙 for researchers

Part of the Research Solutions Family.

Barnaby Craggs

Buddy's Wearable Is Not Your Buddy: Privacy Implications of Pet Wearables

Smart Cyber-Physical Systems: Beyond Usable Security to Security Ergonomics by Design

A Reference Architecture for IIoT and Industrial Control Systems Testbeds

Design Considerations for Building Credible Security Testbeds: Perspectives from Industrial Control System Use Cases

Trust Beyond Computation Alone: Human Aspects of Trust in Blockchain Technologies

Contact Info

Product

Resources

About