TY - GEN
T1 - SoK
T2 - 2021 IEEE International Conference on Cyber Security and Resilience, CSR 2021
AU - Tomur, Emrah
AU - Gulen, Utku
AU - Soykan, Elif U.
AU - Akif Ersoy, Mehmet
AU - Karakoc, Ferhat
AU - Karacay, Leyli
AU - Comak, Pinar
N1 - Funding Information:
This work was funded by The Scientific and Technological Research Council of Turkey, under 1515 Frontier R&D Laboratories Support Program with project no: 5169902.
Publisher Copyright:
© 2021 IEEE.
PY - 2021/7/26
Y1 - 2021/7/26
N2 - There has been an increasing popularity of industrial usage of Internet of Things (IoT) technologies in parallel to advancements in connectivity and automation. Security vulnerabilities in industrial systems, which are considered less likely to be exploited in conventional closed settings, have now started to be a major concern with Industrial IoT. One of the critical components of any industrial control system turning into a target for attackers is functional safety. This vital function is not originally designed to provide protection against malicious intentional parties but only accidents and errors. In this paper, we explore a generic IoT-based smart manufacturing use-case from a combined perspective of security and functional safety, which are indeed tightly correlated. Our main contribution is the presentation of a taxonomy of threats targeting directly the critical safety function in industrial IoT applications. Besides, based on this taxonomy, we identified particular attack scenarios that might have severe impact on physical assets like manufacturing equipment, even human life and cyber-assets like availability of Industrial IoT application. Finally, we recommend some solutions to mitigate such attacks based mainly on industry standards and advanced security features of mobile communication technologies.
AB - There has been an increasing popularity of industrial usage of Internet of Things (IoT) technologies in parallel to advancements in connectivity and automation. Security vulnerabilities in industrial systems, which are considered less likely to be exploited in conventional closed settings, have now started to be a major concern with Industrial IoT. One of the critical components of any industrial control system turning into a target for attackers is functional safety. This vital function is not originally designed to provide protection against malicious intentional parties but only accidents and errors. In this paper, we explore a generic IoT-based smart manufacturing use-case from a combined perspective of security and functional safety, which are indeed tightly correlated. Our main contribution is the presentation of a taxonomy of threats targeting directly the critical safety function in industrial IoT applications. Besides, based on this taxonomy, we identified particular attack scenarios that might have severe impact on physical assets like manufacturing equipment, even human life and cyber-assets like availability of Industrial IoT application. Finally, we recommend some solutions to mitigate such attacks based mainly on industry standards and advanced security features of mobile communication technologies.
UR - http://www.scopus.com/inward/record.url?scp=85115713737&partnerID=8YFLogxK
U2 - 10.1109/CSR51186.2021.9527921
DO - 10.1109/CSR51186.2021.9527921
M3 - Conference contribution
AN - SCOPUS:85115713737
T3 - Proceedings of the 2021 IEEE International Conference on Cyber Security and Resilience, CSR 2021
SP - 226
EP - 233
BT - Proceedings of the 2021 IEEE International Conference on Cyber Security and Resilience, CSR 2021
PB - The Institute of Electrical and Electronics Engineers (IEEE)
Y2 - 26 July 2021 through 28 July 2021
ER -