TY - GEN
T1 - Synergistic Security for the Industrial Internet of Things
T2 - 1st IEEE International Conference on Industrial Internet, ICII 2018
AU - Laszka, Aron
AU - Abbas, Waseem
AU - Vorobeychik, Yevgeniy
AU - Koutsoukos, Xenofon
N1 - Publisher Copyright:
© 2018 IEEE.
PY - 2018/11/16
Y1 - 2018/11/16
N2 - As the Industrial Internet of Things (IIot) becomes more prevalent in critical application domains, ensuring security and resilience in the face of cyber-attacks is becoming an issue of paramount importance. Cyber-attacks against critical infrastructures, for example, against smart water-distribution and transportation systems, pose serious threats to public health and safety. Owing to the severity of these threats, a variety of security techniques are available. However, no single technique can address the whole spectrum of cyber-attacks that may be launched by a determined and resourceful attacker. In light of this, we consider a multi-pronged approach for designing secure and resilient IIoT systems, which integrates redundancy, diversity, and hardening techniques. We introduce a framework for quantifying cyber-security risks and optimizing IIoT design by determining security investments in redundancy, diversity, and hardening. To demonstrate the applicability of our framework, we present a case study in water-distribution systems. Our numerical evaluation shows that integrating redundancy, diversity, and hardening can lead to reduced security risk at the same cost.
AB - As the Industrial Internet of Things (IIot) becomes more prevalent in critical application domains, ensuring security and resilience in the face of cyber-attacks is becoming an issue of paramount importance. Cyber-attacks against critical infrastructures, for example, against smart water-distribution and transportation systems, pose serious threats to public health and safety. Owing to the severity of these threats, a variety of security techniques are available. However, no single technique can address the whole spectrum of cyber-attacks that may be launched by a determined and resourceful attacker. In light of this, we consider a multi-pronged approach for designing secure and resilient IIoT systems, which integrates redundancy, diversity, and hardening techniques. We introduce a framework for quantifying cyber-security risks and optimizing IIoT design by determining security investments in redundancy, diversity, and hardening. To demonstrate the applicability of our framework, we present a case study in water-distribution systems. Our numerical evaluation shows that integrating redundancy, diversity, and hardening can lead to reduced security risk at the same cost.
UR - http://www.scopus.com/inward/record.url?scp=85059852759&partnerID=8YFLogxK
UR - http://www.scopus.com/inward/citedby.url?scp=85059852759&partnerID=8YFLogxK
U2 - 10.1109/ICII.2018.00025
DO - 10.1109/ICII.2018.00025
M3 - Conference contribution
AN - SCOPUS:85059852759
T3 - Proceedings - 2018 IEEE International Conference on Industrial Internet, ICII 2018
SP - 153
EP - 158
BT - Proceedings - 2018 IEEE International Conference on Industrial Internet, ICII 2018
PB - Institute of Electrical and Electronics Engineers Inc.
Y2 - 21 October 2018 through 23 October 2018
ER -