Critical Infrastructure Asset Discovery and Monitoring for Cyber Security

Hareesh, Reddi; Kumar, R. K. Senthil; Kalluri, Rajesh; Bindhumadhava, B. S.

doi:10.1007/978-981-16-9008-2_27

Cited by 2 publications

(2 citation statements)

References 9 publications

Supporting

Mentioning

Contrasting

Order By: Relevance

“…Almost all PLCs lack encryption, authorization, and authentication mechanisms, leading to vulnerable and weak security [2]. More and more security events, e.g., the Stuxnet, Duqu, and Black Energy [3] have shown attacks against the PLC may cause substantive damages with economic and even life losses in the real world [4]. Specifically, a tampering attack against the PLC firmware is incredibly harmful and has become one of the most threatening attacks [5].…”

Section: Introductionmentioning

confidence: 99%

Aye: A Trusted Forensic Method for Firmware Tampering Attacks

Zhang

2023

Symmetry

View full text Add to dashboard Cite

The Programmable Logic Controller (PLC) is located at the junction of the virtual network and physical reality in the Industrial Control System (ICS), which is vulnerable to attacks due to its weak security. Specifically, firmware tampering attacks take the firmware under the PLC operating system as the primary attack target. The firmware provides the bridge between PLC’s hardware and software, which means tampering against the firmware can be more destructive and harmful than other attacks. However, existing defense and forensics methods against firmware tampering attacks are asymmetrical, which directly leads to the proliferation of such attacks and the difficulty of forensic tracing. How to accurately, quickly, and efficiently conduct forensics for such attacks is an urgent problem. In this paper, we designed and implemented a reliable detection method based on Joint Test Action Group (JTAG) and memory comparison—Aye, which can detect mainstream firmware tampering attacks reliably. To determine the effectiveness and reliability of Aye, we selected a widely used PLC to observe Aye’s performance in defense and forensics by simulating the two latest PLC firmware tampering attack methods. The experimental results show that Aye can effectively defend against firmware tampering attacks, helping improve the efficiency and accuracy of such attack detection and forensics.

show abstract

Section: Introductionmentioning

confidence: 99%

Aye: A Trusted Forensic Method for Firmware Tampering Attacks

Zhang

2023

Symmetry

View full text Add to dashboard Cite

show abstract

“…Most of the above-mentioned applications are realized in smart cities, that are municipalities using ICT to increase operational efficiency, share information with the public and improve both the quality of government services and citizen welfare. The key components of smart cities are the following [33]: a.…”

mentioning

confidence: 99%

Towards ‘Climate Proof’ Infrastructure Projects

Stamou

2022

CERJ

View full text Add to dashboard Cite

We construct our Infrastructure Projects (IP) with certain design life, during which we expect that they will be effective; however, in certain cases they are inadequate and fail. Since this failure can be partly attributed to the impacts of Climate Change (CC), we are urged to develop ‘climate proof’ IP. In this work, we pose the following research question “what IP do we need that can be ‘climate proof’?”. To answer this question, we performed a literature survey and firstly identify the main CC impacts of our IP that we present with a flow chart. Secondly, we describe critically with examples that our ‘climate proof’ IP need to be resilient, green, smart, innovative, and with low carbon footprint. Thirdly, we discuss the important role of social equity in the prioritization of our ‘climate proof’ IP, the significance of private funding, mainly via public-private partnerships, and the necessity of well informed and properly educated engineers and other scientists, who are expected to materialize our ‘climate proof’ IP.

show abstract

Critical Infrastructure Asset Discovery and Monitoring for Cyber Security

Cited by 2 publications

References 9 publications

Aye: A Trusted Forensic Method for Firmware Tampering Attacks

Aye: A Trusted Forensic Method for Firmware Tampering Attacks

Towards ‘Climate Proof’ Infrastructure Projects

Contact Info

Product

Resources

About