Skip to main content

Lund University Publications

LUND UNIVERSITY LIBRARIES

Attack Resilient Cloud-based Industrial Control Systems

Akbarian, Fatemeh LU (2022)
Abstract
Industrial control systems (ICSs) are a significant part of industry and they play an important role in monitoring and controlling industrial processes. Traditionally, ICSs have been isolated from the Internet, and thereby secured from various Internet-based security threats. In recent years, since the cloud can provide huge advantages regarding storage and computing resources, industry has been motivated to move industrial control systems to the cloud. However, when ICSs are moved to the cloud, they are inevitably exposed to increasing security threats, which can lead to severe degradation of the system performance or system failures. Moving control systems to the cloud can enable attackers to infiltrate the system and establish an attack... (More)
Industrial control systems (ICSs) are a significant part of industry and they play an important role in monitoring and controlling industrial processes. Traditionally, ICSs have been isolated from the Internet, and thereby secured from various Internet-based security threats. In recent years, since the cloud can provide huge advantages regarding storage and computing resources, industry has been motivated to move industrial control systems to the cloud. However, when ICSs are moved to the cloud, they are inevitably exposed to increasing security threats, which can lead to severe degradation of the system performance or system failures. Moving control systems to the cloud can enable attackers to infiltrate the system and establish an attack that can lead to damages and disruptions with potentially catastrophic consequences. Therefore, some security measures are necessary to detect these attacks in a timely manner and mitigate the impact of them.
In the work presented in this thesis, we mainly explore the security challenges of cloud-based industrial control systems and we propose a security framework for these systems that can make them resilient against attacks. Our proposed framework includes attack detection methods that can detect attacks in a timely manner. Also, the framework includes mitigation methods that can mitigate the impact of the attack on the system when an attack has been detected. So, by using this framework, an industrial plant can be maintained operational with an acceptable performance during an attack.
Our solutions are validated on a real testbed, where the capabilities are evaluated by subjecting the system to a set of attacks. (Less)
Please use this url to cite or link to this publication:
author
supervisor
organization
publishing date
type
Thesis
publication status
published
subject
publisher
Lund University
ISBN
978-91-8039-220-4
978-91-8039-219-8
project
Ultra-reliable and low-latency networked systems aimed for time-critical services in an Industry 4.0 environment
language
English
LU publication?
yes
id
fa9e39d4-3dd7-4a85-a3c3-bd1eb7fb3899
date added to LUP
2022-03-23 11:04:49
date last changed
2023-10-11 13:30:31
@misc{fa9e39d4-3dd7-4a85-a3c3-bd1eb7fb3899,
  abstract     = {{Industrial control systems (ICSs) are a significant part of industry and they play an important role in monitoring and controlling industrial processes. Traditionally, ICSs have been isolated from the Internet, and thereby secured from various Internet-based security threats. In recent years, since the cloud can provide huge advantages regarding storage and computing resources, industry has been motivated to move industrial control systems to the cloud. However, when ICSs are moved to the cloud, they are inevitably exposed to increasing security threats, which can lead to severe degradation of the system performance or system failures. Moving control systems to the cloud can enable attackers to infiltrate the system and establish an attack that can lead to damages and disruptions with potentially catastrophic consequences. Therefore, some security measures are necessary to detect these attacks in a timely manner and mitigate the impact of them. <br/>In the work presented in this thesis, we mainly explore the security challenges of cloud-based industrial control systems and we propose a security framework for these systems that can make them resilient against attacks. Our proposed framework includes attack detection methods that can detect attacks in a timely manner. Also, the framework includes mitigation methods that can mitigate the impact of the attack on the system when an attack has been detected. So, by using this framework, an industrial plant can be maintained operational with an acceptable performance during an attack. <br/>Our solutions are validated on a real testbed, where the capabilities are evaluated by subjecting the system to a set of attacks.}},
  author       = {{Akbarian, Fatemeh}},
  isbn         = {{978-91-8039-220-4}},
  language     = {{eng}},
  note         = {{Licentiate Thesis}},
  publisher    = {{Lund University}},
  title        = {{Attack Resilient Cloud-based Industrial Control Systems}},
  url          = {{https://lup.lub.lu.se/search/files/115680079/Fatemeh_Akbarian_Licentiate_Thesis.pdf}},
  year         = {{2022}},
}