Assessing the Severity of Smart Attacks in Industrial Cyber-Physical Systems

IF 2 Q3 COMPUTER SCIENCE, INTERDISCIPLINARY APPLICATIONS

ACM Transactions on Cyber-Physical Systems Pub Date : 2020-12-30 DOI:10.1145/3422369

Abdelaziz Khaled, Samir Ouchani, Z. Tari, K. Drira

{"title":"Assessing the Severity of Smart Attacks in Industrial Cyber-Physical Systems","authors":"Abdelaziz Khaled, Samir Ouchani, Z. Tari, K. Drira","doi":"10.1145/3422369","DOIUrl":null,"url":null,"abstract":"Industrial cyber-physical systems (ICPS) are heterogeneous inter-operating parts that can be physical, technical, networking, and even social like agent operators. Incrementally, they perform a central role in critical and industrial infrastructures, governmental, and personal daily life. Especially with the Industry 4.0 revolution, they became more dependent on the connectivity by supporting novel communication and distance control functionalities, which expand their attack surfaces that result in a high risk for cyber-attacks. Furthermore, regarding physical and social constraints, they may push up new classes of security breaches that might result in serious economic damages. Thus, designing a secure ICPS is a complex task, since this needs to guarantee security and harmonize the functionalities between the various parts that interact with different technologies. This article highlights the significance of cyber-security infrastructure and shows how to evaluate, prevent, and mitigate ICPS-based cyber-attacks. We carried out this objective by establishing an adequate semantics for ICPS’s entities and their composition, which includes social actors that act differently than mobile robots and automated processes. This article also provides the feasible attacks generated by a reinforcement learning mechanism based on multiple criteria that selects both appropriate actions for each ICPS component and the possible countermeasures for mitigation. To efficiently analyze ICPS’s security, we proposed a model-checking-based framework that relies on a set of predefined attacks from where the security requirements are used to assess how well the model is secure. Finally, to show the effectiveness of the proposed solution, we model, analyze, and evaluate the ICPS security on two real use cases.","PeriodicalId":7055,"journal":{"name":"ACM Transactions on Cyber-Physical Systems","volume":null,"pages":null},"PeriodicalIF":2.0000,"publicationDate":"2020-12-30","publicationTypes":"Journal Article","fieldsOfStudy":null,"isOpenAccess":false,"openAccessPdf":"https://sci-hub-pdf.com/10.1145/3422369","citationCount":"7","resultStr":null,"platform":"Semanticscholar","paperid":null,"PeriodicalName":"ACM Transactions on Cyber-Physical Systems","FirstCategoryId":"1085","ListUrlMain":"https://doi.org/10.1145/3422369","RegionNum":0,"RegionCategory":null,"ArticlePicture":[],"TitleCN":null,"AbstractTextCN":null,"PMCID":null,"EPubDate":"","PubModel":"","JCR":"Q3","JCRName":"COMPUTER SCIENCE, INTERDISCIPLINARY APPLICATIONS","Score":null,"Total":0}

引用次数: 7

Abstract

Industrial cyber-physical systems (ICPS) are heterogeneous inter-operating parts that can be physical, technical, networking, and even social like agent operators. Incrementally, they perform a central role in critical and industrial infrastructures, governmental, and personal daily life. Especially with the Industry 4.0 revolution, they became more dependent on the connectivity by supporting novel communication and distance control functionalities, which expand their attack surfaces that result in a high risk for cyber-attacks. Furthermore, regarding physical and social constraints, they may push up new classes of security breaches that might result in serious economic damages. Thus, designing a secure ICPS is a complex task, since this needs to guarantee security and harmonize the functionalities between the various parts that interact with different technologies. This article highlights the significance of cyber-security infrastructure and shows how to evaluate, prevent, and mitigate ICPS-based cyber-attacks. We carried out this objective by establishing an adequate semantics for ICPS’s entities and their composition, which includes social actors that act differently than mobile robots and automated processes. This article also provides the feasible attacks generated by a reinforcement learning mechanism based on multiple criteria that selects both appropriate actions for each ICPS component and the possible countermeasures for mitigation. To efficiently analyze ICPS’s security, we proposed a model-checking-based framework that relies on a set of predefined attacks from where the security requirements are used to assess how well the model is secure. Finally, to show the effectiveness of the proposed solution, we model, analyze, and evaluate the ICPS security on two real use cases.

查看原文本刊更多论文

评估工业网络物理系统中智能攻击的严重性

工业网络物理系统(ICPS)是异构的互操作部件，可以是物理的、技术的、网络的，甚至像代理运营商一样是社会的。逐渐地，它们在关键和工业基础设施、政府和个人日常生活中发挥着核心作用。特别是随着工业4.0革命的到来，他们通过支持新颖的通信和远程控制功能变得更加依赖于连接，这扩大了他们的攻击面，导致网络攻击的高风险。此外，就物理和社会限制而言，它们可能会引发新的安全漏洞，从而可能导致严重的经济损失。因此，设计安全的ICPS是一项复杂的任务，因为这需要保证安全性，并协调与不同技术交互的各个部分之间的功能。本文强调了网络安全基础设施的重要性，并展示了如何评估、预防和减轻基于icps的网络攻击。我们通过为ICPS的实体及其组成建立适当的语义来实现这一目标，其中包括与移动机器人和自动化过程不同的社会参与者。本文还提供了由基于多个标准的强化学习机制生成的可行攻击，该机制为每个ICPS组件选择适当的操作和可能的缓解对策。为了有效地分析ICPS的安全性，我们提出了一个基于模型检查的框架，该框架依赖于一组预定义的攻击，其中使用安全需求来评估模型的安全性。最后，为了证明所提出的解决方案的有效性，我们在两个实际用例上对ICPS安全性进行了建模、分析和评估。

本文章由计算机程序翻译，如有差异，请以英文原文为准。

求助全文

约1分钟内获得全文求助全文

来源期刊

ACM Transactions on Cyber-Physical Systems COMPUTER SCIENCE, INTERDISCIPLINARY APPLICATIONS-

CiteScore

5.70

自引率

4.30%

发文量