Security analysis of cyber physical system using digital forensic incident response

Cyber Security and Applications Pub Date : 2024-01-01 DOI:10.1016/j.csa.2023.100034

Pranita Binnar , Sunil Bhirud , Faruk Kazi

{"title":"Security analysis of cyber physical system using digital forensic incident response","authors":"Pranita Binnar , Sunil Bhirud , Faruk Kazi","doi":"10.1016/j.csa.2023.100034","DOIUrl":null,"url":null,"abstract":"<div><p>There is a great demand for an efficient security tool which can secure IIoT systems from potential adversarial attacks. However, it is challenging to design a suitable security model for IIoT considering the closed, dynamic and distributed architecture. This motivates the researchers to focus more on investigating the role of forensic tools such as DFIR in the designing of security models. A brief analysis of the security issues, challenges and attacks on IIoT systems is presented in this paper with an emphasis of DFIR for the security of ICS, CPS, and SCADA. The security recommendations for IIoT, forensic challenges in SCADA, ICS and CPS are discussed. The study suggests that forensic tools can overcome the drawbacks of conventional security solutions in terms of maintaining the privacy of data while sharing information with other systems. The study discusses different models, overview, comparisons, and summarization of DFIR and intrusion detection systems (IDS)-based techniques for IIoT security. In addition, this review analyzes the challenges and research gaps based on the existing literary works.</p></div>","PeriodicalId":100351,"journal":{"name":"Cyber Security and Applications","volume":"2 ","pages":"Article 100034"},"PeriodicalIF":0.0000,"publicationDate":"2024-01-01","publicationTypes":"Journal Article","fieldsOfStudy":null,"isOpenAccess":false,"openAccessPdf":"https://www.sciencedirect.com/science/article/pii/S2772918423000218/pdfft?md5=5043651ac8c83a8df31150d7471fc04a&pid=1-s2.0-S2772918423000218-main.pdf","citationCount":"0","resultStr":null,"platform":"Semanticscholar","paperid":null,"PeriodicalName":"Cyber Security and Applications","FirstCategoryId":"1085","ListUrlMain":"https://www.sciencedirect.com/science/article/pii/S2772918423000218","RegionNum":0,"RegionCategory":null,"ArticlePicture":[],"TitleCN":null,"AbstractTextCN":null,"PMCID":null,"EPubDate":"","PubModel":"","JCR":"","JCRName":"","Score":null,"Total":0}

引用次数: 0

Abstract

There is a great demand for an efficient security tool which can secure IIoT systems from potential adversarial attacks. However, it is challenging to design a suitable security model for IIoT considering the closed, dynamic and distributed architecture. This motivates the researchers to focus more on investigating the role of forensic tools such as DFIR in the designing of security models. A brief analysis of the security issues, challenges and attacks on IIoT systems is presented in this paper with an emphasis of DFIR for the security of ICS, CPS, and SCADA. The security recommendations for IIoT, forensic challenges in SCADA, ICS and CPS are discussed. The study suggests that forensic tools can overcome the drawbacks of conventional security solutions in terms of maintaining the privacy of data while sharing information with other systems. The study discusses different models, overview, comparisons, and summarization of DFIR and intrusion detection systems (IDS)-based techniques for IIoT security. In addition, this review analyzes the challenges and research gaps based on the existing literary works.

查看原文

微信好友朋友圈 QQ好友复制链接

本刊更多论文

利用数字取证事件响应对网络物理系统进行安全分析

人们亟需一种高效的安全工具来确保物联网系统免受潜在的恶意攻击。然而，考虑到封闭、动态和分布式架构，为物联网设计合适的安全模型具有挑战性。这促使研究人员更加关注研究 DFIR 等取证工具在设计安全模型中的作用。本文简要分析了 IIoT 系统面临的安全问题、挑战和攻击，重点介绍了 DFIR 在保障 ICS、CPS 和 SCADA 安全方面的作用。本文讨论了针对 IIoT 的安全建议，以及 SCADA、ICS 和 CPS 面临的取证挑战。研究表明，取证工具可以克服传统安全解决方案在维护数据隐私的同时与其他系统共享信息方面的弊端。本研究讨论了基于 DFIR 和入侵检测系统 (IDS) 的 IIoT 安全技术的不同模型、概述、比较和总结。此外，本综述还根据现有的文学作品分析了所面临的挑战和研究空白。

本文章由计算机程序翻译，如有差异，请以英文原文为准。

求助全文

约1分钟内获得全文去求助

来源期刊

Cyber Security and Applications

CiteScore

5.20

自引率

0.00%

发文量