Automatic Recovery of Run-time Threats in Distributed Industrial Control Systems

Over the past few years, the transition from centralized to distributed industrial control systems (ICS) has introduced new challenges related to coordination, communication reliability, and cybersecurity. These challenges include conditions such as deadlocks and livelocks, which adversaries can exp...

Celý popis

Uložené v:
Podrobná bibliografia
Vydané v:Proceedings (IEEE International Conference on Emerging Technologies and Factory Automation) s. 1 - 8
Hlavní autori: Raptis, George E., Khan, Muhammad Taimoor, Koulamas, Christos, Serpanos, Dimitrios
Médium: Konferenčný príspevok..
Jazyk:English
Vydavateľské údaje: IEEE 09.09.2025
Predmet:
Adaptation models
Critical infrastructure
Critical Infrastructure Security
Deadlock and Livelock Detection
Distributed Systems
Formal Specification
Formal specifications
Industrial control
Industrial Control Systems (ICS)
Inline Monitoring
Java Modeling Language (JML)
Monitoring
Recovery Mechanisms
Reliability
Resilience
Run-time Security Monitoring
Scalability
Security
Security Properties
System recovery
ISSN:1946-0759
On-line prístup:Získať plný text
Tagy: Pridať tag
Žiadne tagy, Buďte prvý, kto otaguje tento záznam!
Popis
Shrnutí:Over the past few years, the transition from centralized to distributed industrial control systems (ICS) has introduced new challenges related to coordination, communication reliability, and cybersecurity. These challenges include conditions such as deadlocks and livelocks, which adversaries can exploit to compromise ICS safety and availability. To ensure secure and resilient operations in distributed ICS, run-time monitoring must go beyond detection to include responsive recovery. In this paper, we extend the ASM2S framework, a model-based inline security monitoring approach, by integrating recovery capabilities directly into the monitoring loop. Our approach uses formal specifications to allow system behavior, threat conditions, and recovery actions to be explicitly defined and evaluated at run-time. We demonstrate the approach using a water distribution system use case. Our work enhances the run-time assurance of distributed ICS by enabling automatic detection and recovery from security violations, offering a robust foundation for self-healing critical infrastructure.
ISSN:1946-0759
DOI:10.1109/ETFA65518.2025.11205628