Abstract
Cyber-physical systems (CPS) integrate computa-tion and communication capabilities to monitor and control physical systems. Even though this integration improves the performance of the overall system and facilitates the application of CPS in several domains, it also introduces security challenges. Over the years, intrusion detection systems (IDS) have been de-ployed as one of the security controls for addressing these security challenges. Traditionally, there are three main approaches to IDS, namely: anomaly detection, misuse detection and specification-based detection. However, due to the unique attributes of CPS, the traditional IDS need to be modified or completely replaced before it can be deployed for CPS. In this paper, we present a survey of specification-based intrusion detection techniques for CPS. We classify the existing specification-based intrusion detection techniques in the literature according to the following attributes: specification source, specification extraction, specifi-cation modelling, detection mechanism, detector placement and validation strategy. We also discuss the details of each attribute and describe our observations, concerns and future research directions. We argue that reducing the efforts and time needed to extract the system specification of specification-based intrusion detection techniques for CPS and verifying the correctness of the extracted system specification are open issues that must be addressed in the future.
Highlights
The recent years have witnessed an increasing growth in the development and deployment of different types of cyberphysical systems (CPS)
We observe that a common feature of the specification-based intrusion detection techniques for CPS is as follows: a set of properties, which indicates the correct system behaviour is sourced, extracted and modelled; and a detection mechanism is used to monitor for any deviation from the defined system specification
We presented a survey of specification-based intrusion detection techniques for CPS
Summary
The recent years have witnessed an increasing growth in the development and deployment of different types of cyberphysical systems (CPS). According to Gartner analysts [1], CPS security incidents are expected to rise in the coming years due to a lack of security focus and spending that are aligned to CPS They observe that the liability for CPS security incidents will affect the corporate entity but will lead to a personal liability for 75% of CEOs by 2024. Our interest in this paper is to survey the use of specification-based intrusion detection techniques for CPS. Zarpelao et al [4] conducted a survey of IDS in Internet of Things (IoT) They classify the IDS proposed in the literature according to the following attributes: detection method, IDS placement strategy, security threat and validation strategy. We present a survey of specification-based intrusion detection techniques for CPS.
Sign-in/Register to view highlights & summary Talk to us
Join us for a 30 min session where you can share your feedback and ask us any queries you have
Schedule a callMore From: International Journal of Advanced Computer Science and Applications
Disclaimer: All third-party content on this website/platform is and will remain the property of their respective owners and is provided on "as is" basis without any warranties, express or implied. Use of third-party content does not indicate any affiliation, sponsorship with or endorsement by them. Any references to third-party content is to identify the corresponding services and shall be considered fair use under The CopyrightLaw.
