Publication
SMS-I: Intelligent Security for Cyber–Physical Systems
| dc.contributor.author | Maia, Eva | |
| dc.contributor.author | Sousa, Norberto | |
| dc.contributor.author | Oliveira, Nuno | |
| dc.contributor.author | Wannous, Sinan | |
| dc.contributor.author | Sousa, Orlando | |
| dc.contributor.author | Praça, Isabel | |
| dc.date.accessioned | 2023-01-25T11:11:34Z | |
| dc.date.available | 2023-01-25T11:11:34Z | |
| dc.date.issued | 2022 | |
| dc.description.abstract | Critical infrastructures are an attractive target for attackers, mainly due to the catastrophic impact of these attacks on society. In addition, the cyber–physical nature of these infrastructures makes them more vulnerable to cyber–physical threats and makes the detection, investigation, and remediation of security attacks more difficult. Therefore, improving cyber–physical correlations, forensics investigations, and Incident response tasks is of paramount importance. This work describes the SMS-I tool that allows the improvement of these security aspects in critical infrastructures. Data from heterogeneous systems, over different time frames, are received and correlated. Both physical and logical security are unified and additional security details are analysed to find attack evidence. Different Artificial Intelligence (AI) methodologies are used to process and analyse the multi-dimensional data exploring the temporal correlation between cyber and physical Alerts and going beyond traditional techniques to detect unusual Events, and then find evidence of attacks. SMS-I’s Intelligent Dashboard supports decision makers in a deep analysis of how the breaches and the assets were explored and compromised. It assists and facilitates the security analysts using graphical dashboards and Alert classification suggestions. Therefore, they can more easily identify anomalous situations that can be related to possible Incident occurrences. Users can also explore information, with different levels of detail, including logical information and technical specifications. SMS-I also integrates with a scalable and open Security Incident Response Platform (TheHive) that enables the sharing of information about security Incidents and helps different organizations better understand threats and proactively defend their systems and networks. | pt_PT |
| dc.description.sponsorship | This research was funded by the Horizon 2020 Framework Programme under grant agreement No 832969. This output reflects the views only of the author(s), and the European Union cannot be held responsible for any use which may be made of the information contained therein. For more information on the project see: http://satie-h2020.eu/. | pt_PT |
| dc.description.version | info:eu-repo/semantics/publishedVersion | pt_PT |
| dc.identifier.doi | 10.3390/info13090403 | pt_PT |
| dc.identifier.uri | http://hdl.handle.net/10400.22/21848 | |
| dc.language.iso | eng | pt_PT |
| dc.peerreviewed | yes | pt_PT |
| dc.publisher | MDPI | pt_PT |
| dc.relation | Security of Air Transport Infrastructure of Europe | |
| dc.relation.publisherversion | https://www.mdpi.com/2078-2489/13/9/403 | pt_PT |
| dc.rights.uri | http://creativecommons.org/licenses/by-nc-nd/4.0/ | pt_PT |
| dc.subject | Cyber–physical systems | pt_PT |
| dc.subject | Digital forensics | pt_PT |
| dc.subject | Cyber–physical systems forensics | pt_PT |
| dc.subject | Machine Learning | pt_PT |
| dc.subject | Rule mining | pt_PT |
| dc.subject | Security incident response | pt_PT |
| dc.title | SMS-I: Intelligent Security for Cyber–Physical Systems | pt_PT |
| dc.type | journal article | |
| dspace.entity.type | Publication | |
| oaire.awardTitle | Security of Air Transport Infrastructure of Europe | |
| oaire.awardURI | info:eu-repo/grantAgreement/EC/H2020/832969/EU | |
| oaire.citation.issue | 9 | pt_PT |
| oaire.citation.startPage | 403 | pt_PT |
| oaire.citation.title | Information | pt_PT |
| oaire.citation.volume | 13 | pt_PT |
| oaire.fundingStream | H2020 | |
| person.familyName | Maia | |
| person.familyName | Gomes Lopes de Sousa | |
| person.familyName | Oliveira | |
| person.familyName | Wannous | |
| person.familyName | Praça | |
| person.givenName | Eva | |
| person.givenName | Norberto João | |
| person.givenName | Nuno | |
| person.givenName | Sinan | |
| person.givenName | Isabel | |
| person.identifier | YuJaY1sAAAAJ | |
| person.identifier | 299522 | |
| person.identifier.ciencia-id | 4F14-EF83-C4B9 | |
| person.identifier.ciencia-id | 091D-1166-0B2E | |
| person.identifier.ciencia-id | 3E1B-B728-9524 | |
| person.identifier.ciencia-id | 6813-6CB1-E8BD | |
| person.identifier.ciencia-id | C710-4218-1BFF | |
| person.identifier.orcid | 0000-0002-8075-531X | |
| person.identifier.orcid | 0000-0003-2919-4817 | |
| person.identifier.orcid | 0000-0002-5030-7751 | |
| person.identifier.orcid | 0000-0002-9711-4850 | |
| person.identifier.orcid | 0000-0002-2519-9859 | |
| person.identifier.rid | K-8430-2014 | |
| person.identifier.scopus-author-id | 22734900800 | |
| project.funder.identifier | http://doi.org/10.13039/501100008530 | |
| project.funder.name | European Commission | |
| rcaap.rights | openAccess | pt_PT |
| rcaap.type | article | pt_PT |
| relation.isAuthorOfPublication | 47a108c4-cf8a-46f3-8954-90624174e8fc | |
| relation.isAuthorOfPublication | 0e10d289-1e87-4729-9e31-b2c274b3f6c4 | |
| relation.isAuthorOfPublication | e49f38bc-accb-44eb-8f49-7e7e555f34a5 | |
| relation.isAuthorOfPublication | 1f297ae3-efa6-4ccb-b0f0-7f4d815f1aa3 | |
| relation.isAuthorOfPublication | ee4ecacd-c6c6-41e8-bca1-21a60ff05f50 | |
| relation.isAuthorOfPublication.latestForDiscovery | 0e10d289-1e87-4729-9e31-b2c274b3f6c4 | |
| relation.isProjectOfPublication | 160929a8-283f-416b-9434-b4fde4ba0ee4 | |
| relation.isProjectOfPublication.latestForDiscovery | 160929a8-283f-416b-9434-b4fde4ba0ee4 |