计算机科学
互连性
计算机安全
多样性(控制论)
入侵检测系统
异常检测
背景(考古学)
脆弱性(计算)
信息物理系统
脆弱性评估
服务拒绝攻击
漏洞管理
数据科学
风险分析(工程)
互联网
万维网
数据挖掘
心理弹性
古生物学
人工智能
操作系统
生物
心理治疗师
医学
心理学
作者
Hakan Kayan,Matthew Nunes,Omer Rana,Pete Burnap,Charith Perera
出处
期刊:ACM Computing Surveys
[Association for Computing Machinery]
日期:2022-01-31
卷期号:54 (11s): 1-35
被引量:78
摘要
Industrial cyber-physical systems ( ICPSs ) manage critical infrastructures by controlling the processes based on the “physics” data gathered by edge sensor networks. Recent innovations in ubiquitous computing and communication technologies have prompted the rapid integration of highly interconnected systems to ICPSs. Hence, the “security by obscurity” principle provided by air-gapping is no longer followed. As the interconnectivity in ICPSs increases, so does the attack surface. Industrial vulnerability assessment reports have shown that a variety of new vulnerabilities have occurred due to this transition. Although there are existing surveys in this context, very little is mentioned regarding the outputs of these reports. While these reports show that the most exploited vulnerabilities occur due to weak boundary protection, these vulnerabilities also occur due to limited or ill-defined security policies. However, current literature focuses on intrusion detection systems ( IDSs ), network traffic analysis ( NTA ) methods, or anomaly detection techniques. Hence, finding a solution for the problems mentioned in these reports is relatively hard. We bridge this gap by defining and reviewing ICPSs from a cybersecurity perspective. In particular, multi-dimensional adaptive attack taxonomy is presented and utilized for evaluating real-life ICPS cyber incidents. Finally, we identify the general shortcomings and highlight the points that cause a gap in existing literature while defining future research directions.
科研通智能强力驱动
Strongly Powered by AbleSci AI