A Review on C3I Systems’ Security: Vulnerabilities, Attacks, and Countermeasures

Ahmad, Hussain; Dharmadasa, Isuru; Ullah, Faheem; Babar, Muhammad Ali

doi:10.1145/3558001

Cited by 14 publications

(7 citation statements)

References 112 publications

Supporting

Mentioning

Contrasting

Order By: Relevance

“…This study utilizes a combination of literature analysis and expert consultations to develop the indicator system. It starts with searching for keywords like "vulnerability of intelligent weapon systems", "AI system vulnerability", "intelligent weapon system reliability", and "AI system safety" in major document databases to identify relevant documents [21][22][23][24][25][26][27][28]. An initial indicator system, formed through keyword mining and clustering analysis, is then refined by consulting experts.…”

Section: Assessment Indicator Systemmentioning

confidence: 99%

Vulnerability Assessment of Intelligent Weapon Systems Based on Combined Weighting Method and Cloud Model

Zhao,

Li,

Zhang

et al. 2024

Preprint

View full text Add to dashboard Cite

With the rapid integration of artificial intelligence (AI) capabilities into weapon systems, vulnerabilities arising from the inherent limitations of AI technologies have emerged as a critical issue that jeopardizes system reliability and stability. This study presents a quantitative model for assessing the vulnerabilities of intelligent weapon systems by combining the weighting technique with cloud models. Through a review of literature and expert elicitation, a hierarchical index system comprising 5 primary indices and 14 secondary indices is constructed to facilitate vulnerability appraisal. The subjective Analytic Hierarchy Process is combined with the objective entropy method to calculate indicator weights for reducing subjectivity. The cloud model ingeniously transforms the ambiguity and randomness associated with evaluating qualitative indices into quantifiable cloud characteristics, thereby enabling the effective management of uncertainties. A case study assessing the vulnerability of a specific unmanned aerial vehicle system invites 10 field experts to validate the feasibility of the proposed methodology. The calculation of the similarity between the derived comprehensive cloud and predefined benchmark clouds can accurately classify the vulnerability level. The research conclusions provide essential guidelines for enhancing algorithm transparency, improving data diversity, and strengthening redundancy designs to mitigate vulnerabilities. With the accelerating integration of AI capabilities into weapon systems, it will be an ongoing imperative to continually assess and address vulnerabilities stemming from the inherent limitations of AI.

show abstract

Section: Assessment Indicator Systemmentioning

confidence: 99%

Vulnerability Assessment of Intelligent Weapon Systems Based on Combined Weighting Method and Cloud Model

Zhao,

Li,

Zhang

et al. 2024

Preprint

View full text Add to dashboard Cite

show abstract

“…The process of transmitting tactical data to another element and receiving tactical data from another element [2,51] 등 전투체계/무기체계와 연관된 요소를 분석한 연 구뿐만 아니라 [3][4][5][6][7][8]23,50] 함정 항해•운용을 위한 장비(GPS, AIS 등)가 전투체계와 직접 연동됨에 따라 발생할 수 있는 위협 [52][53][54] , 전투체계 전반 COTS(Commercial Of The Shelf) 구성품 사용에 따른 공급망 공격 가능성 [55][56][57][58][59][60] , 전투체계가 함정 전투를 위해 각종 시스템을 제 어하는 체계라는 관점에서 ICS 측면의 특성 [61,62] [16] . T31, T34, T38, T42, T44, T46, T48, T50, T52, T54, T57, T61, T64, T67, T70, T72, T73, T74, T76, T79, T84, T90, T95, T107, T113, T116, T120, T125, T128, T132, T147, T180, T181 OR 1.1.1.2 Flooding T31, T34, T38, T42, T44, T46, T48, T50, T52, T54, T57, T61, T64, T67, T70, T72, T73, T74, T76, T79, T84, T90, T95, T107, T113, T116, T120, T125, T128, T132, T147, T179, T180, T181, T184, T186, T192 OR 1.1.1.3 Land attack T31, T34, T38, T42, T44, T46, T48, T50, T52, T54, T57, T61, T64, T67, T70, T72, T73, T74, T76, T79, T84, T90, T95, T107, T113, T116, T120, T125, T128, T132, T147, T180, T181, T192 OR 1.1.1.4 Teardrop T31, T34, T38, T42, T44, T46, T48, T50, T52, T54, T57, T76, T79, T84, T90, T95, T107, T113, T116, T120, T125, T128, T132, T147, T180, T181, T192 Installing Spy Chips T5, T15, T21, T27, T56, T83, T89, T94, T106, T112, T131, T196, T197 OR 3.1.1.2 ARP Spoofing T1, T4, T10, T12, T14, T18, T20, T56, T81, T86, T91, T97, T103, T109, T117, T122, T129, T106, T112, T131, T194, T195, T196, T197 OR 3.1.1.3 ICMP Redirect T1, T4, T5, T12, T15, T18, T21, T27, T56, T81, T86, T91, T97, T83, T89, T94, T103, T109, T117, T122, T129, T106, T112, T131, T194, T195, T196, T197 OR 3.1.1.4 Switch jamming attack T5, T15, T21, T27, T81, T86, T91, T97, T103, T109, T117, T122, T129, T106, T112, T131, T194, T195, T196, T197 Omit 를 정의하고 있다 [67] .…”

Section: Sharing Tactical Datamentioning

confidence: 99%

A Study on Security Requirements of Shipboard Combat System based on Threat Modelling

Yun¹,

Shon²

2023

J. KIMS Technol

View full text Add to dashboard Cite

The shipboard combat system is a key system for naval combat that supports a command and control process cycle consisting of Detect - Control - Engage in real time to ensure ship viability and conduct combat missions. Modern combat systems were developed on the basis of Open Architecture(OA) to maximize acceptance of latest technology and interoperability between systems, and actively introduced the COTS(Commercial-of-the-shelf). However, as a result of that, vulnerabilities inherent in COTS SW and HW also occurred in the combat system. The importance of combat system cybersecurity is being emphasized but cybersecurity research reflecting the characteristics of the combat system is still lacking in Korea. Therefore, in this paper, we systematically identify combat system threats by applying Data Flow Diagram, Microsoft STRIDE threat modelling methodology. The threats were analyzed using the Attack Tree & Misuse case. Finally we derived the applicable security requirements which can be used at stages of planning and designing combat system and verified security requirements through NIST 800-53 security control items.

show abstract

“…System crashes, data damage, unauthorized access, and the installation of new malware are all possible consequences of malware. Maintaining the overall security and stability of computer systems and networks involves finding and eliminating PDF malware [10].…”

Section: Attacks Using Social Engineeringmentioning

confidence: 99%

Comparative Analysis of Machine Learning Models for PDF Malware Detection: Evaluating Different Training and Testing Criteria

Khan,

Arshad,

Shah Khan

2023

Journal of Cyber Security

View full text Add to dashboard Cite

The proliferation of maliciously coded documents as file transfers increase has led to a rise in sophisticated attacks. Portable Document Format (PDF) files have emerged as a major attack vector for malware due to their adaptability and wide usage. Detecting malware in PDF files is challenging due to its ability to include various harmful elements such as embedded scripts, exploits, and malicious URLs. This paper presents a comparative analysis of machine learning (ML) techniques, including Naive Bayes (NB), K-Nearest Neighbor (KNN), Average One Dependency Estimator (A1DE), Random Forest (RF), and Support Vector Machine (SVM) for PDF malware detection. The study utilizes a dataset obtained from the Canadian Institute for Cyber-security and employs different testing criteria, namely percentage splitting and 10-fold cross-validation. The performance of the techniques is evaluated using F1score, precision, recall, and accuracy measures. The results indicate that KNN outperforms other models, achieving an accuracy of 99.8599% using 10-fold cross-validation. The findings highlight the effectiveness of ML models in accurately detecting PDF malware and provide insights for developing robust systems to protect against malicious activities. KEYWORDSCyber-security; PDF malware; model training; testing to the research team members, Bilal Khan (BK), Muhammad Arshad (MA), and Sarwar Shah Khan (SSK), for their collaboration and valuable insights throughout the research process. We extend our appreciation to the institutions that supported this research work. We are deeply grateful to the Canadian Institute for Cyber-security for providing the dataset that formed the foundation of our analysis. Their contributions have been instrumental in enabling us to conduct this study on PDF malware detection and assess the performance of various ML models. Our heartfelt appreciation goes to all the individuals and institutions that reviewed and provided constructive feedback on this research paper. Your valuable input helped improve the quality and rigor of our work. Without the collective efforts and support of all these individuals and organizations, this research paper would not have been possible. Thank you all for your invaluable contributions.

show abstract

A Review on C3I Systems’ Security: Vulnerabilities, Attacks, and Countermeasures

Cited by 14 publications

References 112 publications

Vulnerability Assessment of Intelligent Weapon Systems Based on Combined Weighting Method and Cloud Model

Vulnerability Assessment of Intelligent Weapon Systems Based on Combined Weighting Method and Cloud Model

A Study on Security Requirements of Shipboard Combat System based on Threat Modelling

Comparative Analysis of Machine Learning Models for PDF Malware Detection: Evaluating Different Training and Testing Criteria

Contact Info

Product

Resources

About