From Detecting Cyber-Attacks to Mitigating Risk Within a Hybrid Environment

Foglietta, Chiara; Masucci, Dario; Palazzo, Cosimo; Santini, Riccardo; Panzieri, Stefano; Rosa, Luís; Cruz, Tiago; Lev, L. L.

doi:10.1109/jsyst.2018.2824252

Cited by 20 publications

(10 citation statements)

References 27 publications

Supporting

Mentioning

Contrasting

Order By: Relevance

“…These modelling approaches integrate only to a certain degree part of the CPS specifications and application domains. Otherwise, graph theory abstraction was used to model anomaly propagation, matching critical infrastructures interactions and interdependencies, based on mixed holistic reductionism [12], which is not adapted to CPS. Our work intends to further unify the CPS cyber space and physical world, with the perspective of a generic and comprehensive methodology [13], to cover the design, development, verification, and real-time analysis of CPS.…”

Section: R Wmentioning

confidence: 99%

Impact assessment of anomaly propagation in a naval water distribution cyber-physical system

Pelissero

Laso²,

Puentes

2021

2021 IEEE International Conference on Cyber Security and Resilience (CSR)

View full text Add to dashboard Cite

Cyber-Physical Systems (CPS) are composed by multiple subsystems that encompass numerous interdependencies. Although indispensable and highly performant from a functional perspective, complex interconnectivity constitutes paradoxically a significant vulnerability when an anomaly occurs. Anomalies could propagate and impact the entire CPS with irreversible consequences. This paper presents an approach to assess the anomaly propagation impact risk on a three layers oriented graph which represents the physical, digital, and system variables of a CPS components and interdependencies. Anomalies are detected applying information quality measures, while potential propagation paths are assessed computing the cumulated risk represented by weights assigned to the graph edges. To verify the cascading impact of different anomalies four cyber-attacks -denial of service, sensor offset alteration, false data injection, and replay attack -were implemented on a simulated naval water distribution CPS. The propagation impact of three anomalies was successfully assessed and the corresponding estimated propagation path, if applicable, confirmed.

show abstract

Section: R Wmentioning

confidence: 99%

Impact assessment of anomaly propagation in a naval water distribution cyber-physical system

Pelissero

Laso²,

Puentes

2021

2021 IEEE International Conference on Cyber Security and Resilience (CSR)

View full text Add to dashboard Cite

show abstract

“…Univ Roma,IT [96]; Univ Plymouth,UK [40]; Deakin Univ,AU & Univ Kentucky,US [41]; Chinese Acad Sci,CN [42]; Univ Roma,IT & Univ Coimbra,IT & Israel Elect Corp Ltd, IL [115]; UNIST,KR [43]; Air Force Inst Tech,US & Appl Res Solut,US & LGS Innovat,US [121]; DoD Nat Def Univ,US [88] Economic Evaluation Univ Virginia,US [9] Satisfiability Module theory Univ North Carolina,US [59] Tallin Manual Korea Univ,KR [102] Vulnerability Management Univ Luxembourg,LU & Itrust Consulting,LU & Roma Tre Univ,IT & CRAT,IT & Univ Coimbra,IT & Leonardo SpA,IT [58] Continued on next page Bayesian Max. Likelihood Est.…”

Section: Generalmentioning

confidence: 99%

A systematic review of cyber-resilience assessment frameworks

Estay

Sahay

Barfod

et al. 2020

Computers & Security

View full text Add to dashboard Cite

“…In light of the above, security monitoring solutions, along with other mechanisms for preventive and reactive purposes, play a key role in the protection of physical infrastructures and processes. But securing ICS is not an easy task, for reasons such as the substantial differences between these systems and their IT counterparts [2], their increasing complexity, or the considerable amount of legacy technologies still in use, further aggravated by the fact that deploying security mechanisms or migrating away from obsolete technologies often cannot be performed without disruption of service or prohibitive costs.…”

Section: Introductionmentioning

confidence: 99%

ELEGANT: Security of Critical Infrastructures With Digital Twins

et al. 2021

Self Cite

View full text Add to dashboard Cite

The past years have witnessed an increasing interest and concern regarding the development of security monitoring and management mechanisms for Critical Infrastructures, due to their vital role in ensuring the availability of many essential services. This task is not easy due to the specific characteristics of such systems, and the natural resistance of Critical Infrastructures operators against actions implying downtime. Digital Twins, as accurate virtual models of physical objects or processes, can provide a faithful environment for security analysis or evaluation of potential mitigation strategies to be deployed in face of specific situations. Nonetheless, their on-premises deployment can be expensive, implying a significant CAPEX whose return will depend on the ability to plan and deploy a suitable support infrastructure, as well as implementing efficient and scalable data collection and processing mechanisms capable of taking advantage of the acquired resources. This paper presents an off-premises approach to design and deploy Digital Twins to secure critical infrastructures, developed in the scope of the ELEGANT project. Such Digital Twins are built using real-time, high fidelity replicas of Programming Logic Controllers, coupled with scalable and efficient data collection processes, supporting the development and validation of Machine Learning models to mitigate security threats like Denial of Service attacks. The validation approach of ELEGANT, which leveraged from the capabilities of the Fed4Fire federated testbeds evaluated the feasibility of using cloudified Digital Twins, thus converting a significant part of the projected CAPEX for the in-premises model into on-demand, pay-as-you-go OPEX, eventually paving the way for the establishment of a DTaaS (Digital Twin as a Service) paradigm. The achieved results demonstrate that the data pipelines providing support for the ELEGANT Digital Twins have low impact in terms of resource usage in Denial of Service and Distributed Denial of Service attack scenarios, when higher volumes of data are generated.

show abstract

From Detecting Cyber-Attacks to Mitigating Risk Within a Hybrid Environment

Cited by 20 publications

References 27 publications

Impact assessment of anomaly propagation in a naval water distribution cyber-physical system

Impact assessment of anomaly propagation in a naval water distribution cyber-physical system

A systematic review of cyber-resilience assessment frameworks

ELEGANT: Security of Critical Infrastructures With Digital Twins

Contact Info

Product

Resources

About