Digital-Twin-Based Security Analytics for the Internet of Things-Reference-Cited by-同舟云学术

Digital-Twin-Based Security Analytics for the Internet of Things

Published:2023-02-04 Issue:2 Volume:14 Page:95
ISSN:2078-2489
Container-title:Information
language:en
Short-container-title:Information

Author:

Empl Philip¹^ORCID,Pernul Günther¹^ORCID

Affiliation:

1. Chair of Information Systems, University of Regenburg, 93053 Regensburg, Germany

Abstract

Although there are numerous advantages of the IoT in industrial use, there are also some security problems, such as insecure supply chains or vulnerabilities. These lead to a threatening security posture in organizations. Security analytics is a collection of capabilities and technologies systematically processing and analyzing data to detect or predict threats and imminent incidents. As digital twins improve knowledge generation and sharing, they are an ideal foundation for security analytics in the IoT. Digital twins map physical assets to their respective virtual counterparts along the lifecycle. They leverage the connection between the physical and virtual environments and manage semantics, i.e., ontologies, functional relationships, and behavioral models. This paper presents the DT2SA model that aligns security analytics with digital twins to generate shareable cybersecurity knowledge. The model relies on a formal model resulting from previously defined requirements. We validated the DT2SA model with a microservice architecture called Twinsight, which is publicly available, open-source, and based on a real industry project. The results highlight challenges and strategies for leveraging cybersecurity knowledge in IoT using digital twins.

Funder

German Federal Ministry for Economic Affairs and Climate Action

Bavarian Ministry of Economic Affairs, Regional Development and Energy

Publisher

MDPI AG

Subject

Information Systems

Link

https://www.mdpi.com/2078-2489/14/2/95/pdf

Reference43 articles.

1. ENISA (2021). Threat Landscape for Supply Chain Attacks, ENISA. Technical report.

2. Ardagna, C., Corbiaux, S., Sfakianakis, A., and Douligeris, C. (2021). ENISA Threat Landscape, ENISA. Technical report.

3. Mahmood, T., and Afzal, U. (2013, January 11–12). Security Analytics: Big Data Analytics for Cybersecurity: A Review of Trends, Techniques and Tools. Proceedings of the 2nd National Conference on Information Assurance (NCIA 2013), Rawalpindi, Pakistan.

4. Mori, P., Lenzini, G., and Furnell, S. (2021, January 11–13). Bridging Knowledge Gaps in Security Analytics. Proceedings of the Proceedings of the 7th International Conference on Information Systems Security and Privacy, ICISSP 2021, Online Streaming.

5. Skouloudi, C., Malatras, A., Naydenov, R., and Dede, G. (2020). Guidelines for Securing the Internet of Things, European Union Agency for Cybersecurity. Technical report.

Cited by 2 articles. 订阅此论文施引文献订阅此论文施引文献，注册后可以免费订阅5篇论文的施引文献，订阅后可以查看论文全部施引文献

1. ML-Based Security Analytics in South African SMEs: A Review and Classification;2023 International Conference on Electrical, Computer and Energy Technologies (ICECET);2023-11-16

2. Navigating the Complex Landscape of IoT Forensics: Challenges and Emerging Solutions;The International Arab Journal of Information Technology;2023