Synergistic Security for the Industrial Internet of Things: Integrating Redundancy, Diversity, and Hardening

Aron Laszka, Waseem Abbas, Yevgeniy Vorobeychik, Xenofon Koutsoukos

Research output: Chapter in Book/Report/Conference proceedingConference contribution

19 Scopus citations

Abstract

As the Industrial Internet of Things (IIot) becomes more prevalent in critical application domains, ensuring security and resilience in the face of cyber-attacks is becoming an issue of paramount importance. Cyber-attacks against critical infrastructures, for example, against smart water-distribution and transportation systems, pose serious threats to public health and safety. Owing to the severity of these threats, a variety of security techniques are available. However, no single technique can address the whole spectrum of cyber-attacks that may be launched by a determined and resourceful attacker. In light of this, we consider a multi-pronged approach for designing secure and resilient IIoT systems, which integrates redundancy, diversity, and hardening techniques. We introduce a framework for quantifying cyber-security risks and optimizing IIoT design by determining security investments in redundancy, diversity, and hardening. To demonstrate the applicability of our framework, we present a case study in water-distribution systems. Our numerical evaluation shows that integrating redundancy, diversity, and hardening can lead to reduced security risk at the same cost.

Original languageEnglish (US)
Title of host publicationProceedings - 2018 IEEE International Conference on Industrial Internet, ICII 2018
PublisherInstitute of Electrical and Electronics Engineers Inc.
Pages153-158
Number of pages6
ISBN (Electronic)9781538677711
DOIs
StatePublished - Nov 16 2018
Event1st IEEE International Conference on Industrial Internet, ICII 2018 - Bellevue, United States
Duration: Oct 21 2018Oct 23 2018

Publication series

NameProceedings - 2018 IEEE International Conference on Industrial Internet, ICII 2018

Conference

Conference1st IEEE International Conference on Industrial Internet, ICII 2018
Country/TerritoryUnited States
CityBellevue
Period10/21/1810/23/18

All Science Journal Classification (ASJC) codes

  • Computer Networks and Communications
  • Hardware and Architecture
  • Industrial and Manufacturing Engineering
  • Safety, Risk, Reliability and Quality

Fingerprint

Dive into the research topics of 'Synergistic Security for the Industrial Internet of Things: Integrating Redundancy, Diversity, and Hardening'. Together they form a unique fingerprint.

Cite this