| Autors: Radoglou-Grammatikis, P., Sarigiannidis, P., Efstathopoulos, G., Lagkas, T., Sarigiannidis, A., Mladenov, V. M., Siaxabanis, N. Title: Defending Industrial Internet of Things Against Modbus/TCP Threats: A Combined AI-Based Detection and SDN-Based Mitigation Solution Keywords: Active Learning, Intrusion Detection and Prevention, Modbus, Abstract: The rapid evolution of the Industrial Internet of Things (IIoT) introduces multiple benefits, such as self-monitoring, pervasive control and self-healing, leading IIoT environments, such as Critical Infrastructures (CIs) to a new digital era. However, this new reality creates severe cybersecurity issues due to the vulnerable nature of the IIoT protocols. In this paper, we focus on Modbus/Transmission Control Protocol (TCP), which is widely adopted by IIoT environments, such as the smart electrical grid. Modbus/TCP is characterised by severe vulnerabilities since it does not incorporate adequate authentication and authorisation services. First, we provide a Modbus/TCP threat model, which estimates the severity of the Modbus/TCP threats supported by relevant Modbus/TCP-related penetration testing tools. The proposed model combines (a) STRIDE-per-element, (b) an Attack Defence Tree (ADT) and (c) one from Common Vulnerability Scoring System (CVSS) and OWASP Risk Rating (OWASP-RR) methodol References Issue
|
Цитирания (Citation/s):
1. Tudosi, A.D., Graur, A., Balan, D.G., Potorac, A.D. and Tarabuta, R., 2023. Automated User Authentication Configuration for pfSense Firewall Using Scripting and LDAP Integration (No. 10057). EasyChair. (Google Scholar) - 2023 - от чужди автори в чужди издания, неиндексирани в Scopus или Web of Science
2. TUDOSI, A.D., GRAUR, A., BALAN, D.G. and POTORAC, A.D., Automatic Directory Service Integration in Distributed Firewall Resources: A Study of Scripting and LDAP Integration with pfSense. 11th IEEE International Conference on E-Health and Bioengineering - EHB 2023, 979-8-3503-2887-5/23/$31.00 ©2023 IEEE (Google Scholar) - 2023 - от чужди автори в чужди издания, неиндексирани в Scopus или Web of Science
3. Kumar, S. and Kumar, A., 2024. “Image-based malware detection based on convolution neural network with autoencoder in Industrial Internet of Things using Software Defined Networking Honeypot,” Engineering Applications of Artificial Intelligence, vol. 133, pp. 1-22, ISSN 09521976, DOI 10.1016/j.engappai.2024.108374 (Web of Science, Scopus, Google Scholar) IF 8.0, SJR 1.729 - 2024 - в издания, индексирани в Scopus или Web of Science
4. Lazaridis, G., Drosou, A., Chatzimisios, P. and Tzovaras, D., 2023, November. “Securing Modbus TCP Communications in I4. 0: A Penetration Testing Approach Using OpenPLC and Factory IO,” In 2023 IEEE Conference on Standards for Communications and Networking (CSCN) (pp. 265-270). IEEE. ISBN 979-835039538-9, DOI 10.1109/CSCN60443.2023.10453119 (Scopus, Google Scholar) - 2023 - в издания, индексирани в Scopus или Web of Science
5. Sugunaraj, N., Balaji, S.R.A., Chandar, B.S., Rajagopalan, P., Kose, U., Loper, D.C., Mahfuz, T., Chakraborty, P., Ahmad, S., Kim, T. and Apruzzese, G., 2025. “Distributed Energy Resource Management System (DERMS) Cybersecurity Scenarios, Trends, and Potential Technologies: A Review,” IEEE Communications Surveys & Tutorials, pp. 1-56, DOI: 10.1109/COMST.2025.3534828, E-ISSN:1553-877X (Web of Science, Scopus, Google Scholar) IF 34.4, SJR 15.966 - 2025 - в издания, индексирани в Scopus или Web of Science
Вид: статия в списание, публикация в реферирано издание, индексирана в Google Scholar
