Change search
CiteExportLink to record
Permanent link

Direct link
Cite
Citation style
  • apa
  • ieee
  • modern-language-association-8th-edition
  • vancouver
  • Other style
More styles
Language
  • de-DE
  • en-GB
  • en-US
  • fi-FI
  • nn-NO
  • nn-NB
  • sv-SE
  • Other locale
More languages
Output format
  • html
  • text
  • asciidoc
  • rtf
Enabling data-driven anomaly detection by design in cyber-physical production systems
Department of Informatics Engineering, Faculty of Engineering, University of Porto, Porto, Portugal.
Department of Informatics Engineering, Faculty of Engineering, University of Porto, Porto, Portugal.
Luleå University of Technology, Department of Computer Science, Electrical and Space Engineering, Embedded Internet Systems Lab.ORCID iD: 0000-0002-4133-3317
Research Centre in Real-Time and Embedded Computing Systems, Polytechnic of Porto - School of Engineering, Porto, Portugal.
2022 (English)In: Cybersecurity, E-ISSN 2523-3246, Vol. 5, article id 9Article in journal (Refereed) Published
Abstract [en]

Designing and developing distributed cyber-physical production systems (CPPS) is a time-consuming, complex, and error-prone process. These systems are typically heterogeneous, i.e., they consist of multiple components implemented with different languages and development tools. One of the main problems nowadays in CPPS implementation is enabling security mechanisms by design while reducing the complexity and increasing the system’s maintainability. Adopting the IEC 61499 standard is an excellent approach to tackle these challenges by enabling the design, deployment, and management of CPPS in a model-based engineering methodology. We propose a method for CPPS design based on the IEC 61499 standard. The method allows designers to embed a bio-inspired anomaly-based host intrusion detection system (A-HIDS) in Edge devices. This A-HIDS is based on the incremental Dendritic Cell Algorithm (iDCA) and can analyze OPC UA network data exchanged between the Edge devices and detect attacks that target the CPPS’ Edge layer. This study’s findings have practical implications on the industrial security community by making novel contributions to the intrusion detection problem in CPPS considering immune-inspired solutions, and cost-effective security by design system implementation. According to the experimental data, the proposed solution can dramatically reduce design and code complexity while improving application maintainability and successfully detecting network attacks without negatively impacting the performance of the CPPS Edge devices.

Place, publisher, year, edition, pages
Springer Nature, 2022. Vol. 5, article id 9
Keywords [en]
Artificial immune systems, Cyber-physical production systems, IEC 61499, Function blocks, Industrial Internet of Things, Anomaly-based host intrusion detection system, Model-based engineering
National Category
Telecommunications Software Engineering
Research subject
Cyber-Physical Systems
Identifiers
URN: urn:nbn:se:ltu:diva-90709DOI: 10.1186/s42400-022-00114-zISI: 000790876400001Scopus ID: 2-s2.0-85129153861OAI: oai:DiVA.org:ltu-90709DiVA, id: diva2:1663243
Note

Validerad;2022;Nivå 2;2022-06-02 (hanlid)

Available from: 2022-06-02 Created: 2022-06-02 Last updated: 2022-06-02Bibliographically approved

Open Access in DiVA

No full text in DiVA

Other links

Publisher's full textScopus

Authority records

Delsing, Jerker

Search in DiVA

By author/editor
Delsing, Jerker
By organisation
Embedded Internet Systems Lab
In the same journal
Cybersecurity
TelecommunicationsSoftware Engineering

Search outside of DiVA

GoogleGoogle Scholar

doi
urn-nbn

Altmetric score

doi
urn-nbn
Total: 48 hits
CiteExportLink to record
Permanent link

Direct link
Cite
Citation style
  • apa
  • ieee
  • modern-language-association-8th-edition
  • vancouver
  • Other style
More styles
Language
  • de-DE
  • en-GB
  • en-US
  • fi-FI
  • nn-NO
  • nn-NB
  • sv-SE
  • Other locale
More languages
Output format
  • html
  • text
  • asciidoc
  • rtf