Abstract
Component-level heterogeneous redundancy is gaining popularity as an approach for preventing single-point security breaches in Industrial Control Systems (ICSs), especially with regard to core components such as Programmable Logic Controllers (PLCs). To take control of a system with component-level heterogeneous redundancy, an adversary must uncover and concurrently exploit vulnerabilities across multiple versions of hardened components. As such, attackers incur increased costs and delays when seeking to launch a successful attack. Existing approaches advocate attack resilience via pairwise comparison among outputs from multiple PLCs. These approaches incur increased resource costs due to them having a high degree of redundancy and do not address concurrent attacks. In this paper we address both issues, demonstrating a data-driven component selection approach that achieves a trade-off between resources cost and security. In particular, we propose (i) a novel dual-PLC ICS architecture with native pairwise comparison which can offer limited yet comparable defence against single-point breaches, (ii) a machine-learning based selection mechanisms which can deliver resilience against non-concurrent attacks under resource constraints, (iii) a scaled up variant of the proposed architecture to counteract concurrent attacks with modest resource implications.
Original language | English |
---|---|
Title of host publication | 2022 IEEE 27th Pacific Rim International Symposium on Dependable Computing (PRDC) |
Publisher | IEEE |
Pages | 89-97 |
ISBN (Electronic) | 9781665485555 |
ISBN (Print) | 9781665485562 |
DOIs | |
Publication status | Published - 28 Nov 2022 |
Event | 27th IEEE Pacific Rim International Symposium on Dependable Computing - Beijing, China Duration: 28 Nov 2022 → 1 Dec 2022 https://prdc.dependability.org/PRDC2022/ |
Publication series
Name | Pacific Rim International Symposium on Dependable Computing |
---|---|
Publisher | IEEE |
ISSN (Print) | 1555-094X |
ISSN (Electronic) | 2473-3105 |
Conference
Conference | 27th IEEE Pacific Rim International Symposium on Dependable Computing |
---|---|
Abbreviated title | PRDC 2022 |
Country/Territory | China |
City | Beijing |
Period | 28/11/22 → 1/12/22 |
Internet address |