A Methodological Approach to Securing Cyber-Physical Systems for Critical Infrastructures

Calabrò, Antonello; Cambiaso, Enrico; Cheminod, Manuel; Bertolotti, Ivan Cibrario; Durante, Luca; Forestiero, Agostino; Lombardi, Flavio; Manco, Giuseppe; Marchetti, Eda; Orlando, Albina; Papuzzo, Giuseppe

A Methodological Approach to Securing Cyber-Physical Systems for Critical Infrastructures

Antonello Calabrò, Enrico Cambiaso, Manuel Cheminod, Ivan Cibrario Bertolotti, Luca Durante, Agostino Forestiero, Flavio Lombardi (), Giuseppe Manco, Eda Marchetti, Albina Orlando and Giuseppe Papuzzo
Additional contact information
Antonello Calabrò: Istituto di Scienza e Tecnologie dell’Informazione (ISTI), Consiglio Nazionale Delle Ricerche (CNR), 56124 Pisa, Italy
Enrico Cambiaso: Istituto di Elettronica e di Ingegneria dell Informazione e delle Telecomunicazioni (IEIIT), Consiglio Nazionale Delle Ricerche (CNR), 10129 Torino, Italy
Manuel Cheminod: Istituto di Elettronica e di Ingegneria dell Informazione e delle Telecomunicazioni (IEIIT), Consiglio Nazionale Delle Ricerche (CNR), 10129 Torino, Italy
Ivan Cibrario Bertolotti: Istituto di Elettronica e di Ingegneria dell Informazione e delle Telecomunicazioni (IEIIT), Consiglio Nazionale Delle Ricerche (CNR), 10129 Torino, Italy
Luca Durante: Istituto di Elettronica e di Ingegneria dell Informazione e delle Telecomunicazioni (IEIIT), Consiglio Nazionale Delle Ricerche (CNR), 10129 Torino, Italy
Agostino Forestiero: Istituto di Calcolo e Reti ad Alte Prestazioni (ICAR), Consiglio Nazionale Delle Ricerche (CNR), 87036 Rende, Italy
Flavio Lombardi: Istituto per le Applicazioni del Calcolo (IAC), Consiglio Nazionale Delle Ricerche (CNR), 00185 Roma, Italy
Giuseppe Manco: Istituto di Calcolo e Reti ad Alte Prestazioni (ICAR), Consiglio Nazionale Delle Ricerche (CNR), 87036 Rende, Italy
Eda Marchetti: Istituto di Scienza e Tecnologie dell’Informazione (ISTI), Consiglio Nazionale Delle Ricerche (CNR), 56124 Pisa, Italy
Albina Orlando: Istituto per le Applicazioni del Calcolo (IAC), Consiglio Nazionale Delle Ricerche (CNR), 00185 Roma, Italy
Giuseppe Papuzzo: Istituto di Calcolo e Reti ad Alte Prestazioni (ICAR), Consiglio Nazionale Delle Ricerche (CNR), 87036 Rende, Italy

Future Internet, 2024, vol. 16, issue 11, 1-19

Abstract: Modern ICT infrastructures, i.e., cyber-physical systems and critical infrastructures relying on interconnected IT (Information Technology)- and OT (Operational Technology)-based components and (sub-)systems, raise complex challenges in tackling security and safety issues. Nowadays, many security controls and mechanisms have been made available and exploitable to solve specific security needs, but, when dealing with very complex and multifaceted heterogeneous systems, a methodology is needed on top of the selection of each security control that will allow the designer/maintainer to drive her/his choices to build and keep the system secure as a whole, leaving the choice of the security controls to the last step of the system design/development. This paper aims at providing a comprehensive methodological approach to design and preliminarily implement an Open Platform Architecture (OPA) to secure the cyber-physical systems of critical infrastructures. Here, the Open Platform Architecture (OPA) depicts how an already existing or under-design target system (TS) can be equipped with technologies that are modern or currently under development, to monitor and timely detect possibly dangerous situations and to react in an automatic way by putting in place suitable countermeasures. A multifaceted use case (UC) that is able to show the OPA, starting from the security and safety requirements to the fully designed system, will be developed step by step to show the feasibility and the effectiveness of the proposed methodology.

Keywords: cybersecurity; monitoring; firewalling; rule distribution; slow DoS attack; denial of service; industrial security; critical infrastructure protection; security investments (search for similar items in EconPapers)
JEL-codes: O3 (search for similar items in EconPapers)
Date: 2024
References: View references in EconPapers View complete reference list from CitEc
Citations:

Downloads: (external link)
https://www.mdpi.com/1999-5903/16/11/418/pdf (application/pdf)
https://www.mdpi.com/1999-5903/16/11/418/ (text/html)

Related works:
This item may be available elsewhere in EconPapers: Search for items with the same title.

Export reference: BibTeX RIS (EndNote, ProCite, RefMan) HTML/Text

Persistent link: https://EconPapers.repec.org/RePEc:gam:jftint:v:16:y:2024:i:11:p:418-:d:1519174

Access Statistics for this article

Future Internet is currently edited by Ms. Grace You

More articles in Future Internet from MDPI
Bibliographic data for series maintained by MDPI Indexing Manager ().