Artemis Stefanidou,Jorgen Cani,Thomas Papadopoulos,Panagiotis Radoglou-Grammatikis,Panagiotis Sarigiannidis,Iraklis Varlamis,Georgios Th. Papadopoulos

2024-08-30

Abstract:Over the recent years, the protection of the so-called `soft-targets', i.e. locations easily accessible by the general public with relatively low, though, security measures, has emerged as a rather challenging and increasingly important issue. The complexity and seriousness of this security threat growths nowadays exponentially, due to the emergence of new advanced technologies (e.g. Artificial Intelligence (AI), Autonomous Vehicles (AVs), 3D printing, etc.); especially when it comes to large-scale, popular and diverse public spaces. In this paper, a novel Digital Twin-as-a-Security-Service (DTaaSS) architecture is introduced for holistically and significantly enhancing the protection of public spaces (e.g. metro stations, leisure sites, urban squares, etc.). The proposed framework combines a Digital Twin (DT) conceptualization with additional cutting-edge technologies, including Internet of Things (IoT), cloud computing, Big Data analytics and AI. In particular, DTaaSS comprises a holistic, real-time, large-scale, comprehensive and data-driven security solution for the efficient/robust protection of public spaces, supporting: a) data collection and analytics, b) area monitoring/control and proactive threat detection, c) incident/attack prediction, and d) quantitative and data-driven vulnerability assessment. Overall, the designed architecture exhibits increased potential in handling complex, hybrid and combined threats over large, critical and popular soft-targets. The applicability and robustness of DTaaSS is discussed in detail against representative and diverse real-world application scenarios, including complex attacks to: a) a metro station, b) a leisure site, and c) a cathedral square.

Cryptography and Security,Artificial Intelligence

MohammadHossein Homaei,Oscar Mogollon Gutierrez,Jose Carlos Sancho Nunez,Mar Avila Vegas,Andres Caro Lindo

2023-11-02

Abstract:The potential of digital twin technology is yet to be fully realized due to its diversity and untapped potential. Digital twins enable systems' analysis, design, optimization, and evolution to be performed digitally or in conjunction with a cyber-physical approach to improve speed, accuracy, and efficiency over traditional engineering methods. Industry 4.0, factories of the future, and digital twins continue to benefit from the technology and provide enhanced efficiency within existing systems. Due to the lack of information and security standards associated with the transition to cyber digitization, cybercriminals have been able to take advantage of the situation. Access to a digital twin of a product or service is equivalent to threatening the entire collection. There is a robust interaction between digital twins and artificial intelligence tools, which leads to strong interaction between these technologies, so it can be used to improve the cybersecurity of these digital platforms based on their integration with these technologies. This study aims to investigate the role of artificial intelligence in providing cybersecurity for digital twin versions of various industries, as well as the risks associated with these versions. In addition, this research serves as a road map for researchers and others interested in cybersecurity and digital security.

Cryptography and Security,Artificial Intelligence,Machine Learning

Kassi Muhammad,Teef David,Giulia Nassisid,Tina Farus

2024-06-25

Abstract:As telecommunications networks become increasingly complex, the integration of advanced technologies such as network digital twins and generative artificial intelligence (AI) emerges as a pivotal solution to enhance network operations and resilience. This paper explores the synergy between network digital twins, which provide a dynamic virtual representation of physical networks, and generative AI, particularly focusing on Generative Adversarial Networks (GANs) and Variational Autoencoders (VAEs). We propose a novel architectural framework that incorporates these technologies to significantly improve predictive maintenance, network scenario simulation, and real-time data-driven decision-making. Through extensive simulations, we demonstrate how generative AI can enhance the accuracy and operational efficiency of network digital twins, effectively handling real-world complexities such as unpredictable traffic loads and network failures. The findings suggest that this integration not only boosts the capability of digital twins in scenario forecasting and anomaly detection but also facilitates a more adaptive and intelligent network management system.

Machine Learning,Graphics,Networking and Internet Architecture

Fabian Böhm,Marietheres Dietz,Tobias Preindl,Günther Pernul

DOI: https://doi.org/10.3390/jcp1030026

2021-09-09

Journal of Cybersecurity and Privacy

Abstract:The rapid advancements of technology related to the Internet of Things and Cyber-Physical Systems mark an ongoing industrial revolution. Digital Twins and Augmented Reality play a significant role in this technological advancement. They are highly complementary concepts enabling the representation of physical assets in the digital space (Digital Twin) and the augmentation of physical space with digital information (Augmented Reality). Throughout the last few years, research has picked up on this and explored the possibilities of combining DT and AR. However, cybersecurity scholars have not yet paid much attention to this combined-arms approach, despite its potential. Especially, concerning contemporary security challenges, such as developing cyber situational awareness and including human factors into cybersecurity, AR and DT, offer tremendous potential for improvement. In this work, we systematize existing knowledge on AR-powered DTs and shed light on why and how cybersecurity could benefit from this combination.

Minglan Xiong,Huawei Wang

DOI: https://doi.org/10.1007/s00170-022-09717-9

IF: 3.563

2022-07-28

The International Journal of Advanced Manufacturing Technology

Abstract:As a highly secure and reliable system, aviation faces challenges including digital transformation, high production operation costs, low maintenance efficiency, and intensive technology. One of the most beneficial technologies is the digital twin (DT), which can solve the above issues. This paper investigates aviation industry DT from government authorities, industry, and academia. Firstly, it surveys the development of the definition of DT and compares its concepts with the Internet of Things, cyber-physical systems, and digital thread etc. Next, it shows the research timeline of aviation DT in the past 10 years by authorities such as Air Force Research Laboratory and National Aeronautics and Space Administration. Then, this paper reviews the state-of-the-art research status of DT in the whole lifecycle of the aviation system and concludes that aviation DT is the most widely used in manufacturing and maintenance, and should pay attention to the application of UAV DT. Finally, it summarizes that data fusion, high-fidelity modeling, integration with New IT, and human–machine interaction are the key technologies of aviation DT. The future possible research directions could be digital process twin risk control, interactive DT, and DT data learning.

engineering, manufacturing,automation & control systems

Ying Liu,Weiting Zhang,Letian Li,Juqin Wu,Yu Xia,Shuai Gao,Hongke Zhang

DOI: https://doi.org/10.1109/mnet.2024.3353180

IF: 10.294

2024-01-01

IEEE Network

Abstract:With the rapid growth of online applications and the increasing complexity of network architecture, network security faces significant challenges. As a promising approach, the network digital twin brings fresh opportunities for building more trustworthy networks. In this article, we analyze the challenges faced when designing cybersecurity twins and the methodology to address them. Then, the autonomous trusted network (ATN) framework is proposed, which leverages network digital twins, to enhance network security. The ATN framework incorporates flexible data aggregation, a security twin model, and an intelligent configuration model. It collects critical network data, trains security twin models using graph neural networks (GNNs), and generates intelligent configuration policies for proactive defense. By integrating network digital twins, advanced AI technologies, and programmable data planes, the ATN framework enables proactive threat detection, real-time response, and optimization, thereby enhancing the stability and reliability of networks in the face of evolving security challenges. The effectiveness of the ATN framework is demonstrated through a case study on Link-Flooding Attacks (LFA). The ATN framework effectively predicts and mitigates LFA by limiting attack traffic while ensuring the uninterrupted flow of legitimate traffic. The results show that the ATN framework outperforms traditional mitigation methods, such as traffic filtering and rerouting, in terms of promptness and efficiency.

computer science, information systems,telecommunications,engineering, electrical & electronic, hardware & architecture

S. Krishnaveni,Thomas M. Chen,Mithileysh Sathiyanarayanan,B. Amutha

DOI: https://doi.org/10.1007/s10586-024-04320-x

2024-03-21

Cluster Computing

Abstract:The rise of digital twin-based operational improvements poses a challenge to protecting industrial cyber-physical systems. It is crucial to safeguard digital twins while disclosing internals, which can create an increased attack surface. However, leveraging digital twins to simulate attacks on physical infrastructure becomes essential for enhancing ICPS cybersecurity resilience. This paper introduces an integrated intelligent defense framework called CyberDefender to study various attacks on digital twin-based ICPS from a four-layer perspective (i.e., digital twin-based industrial cyber-physical systems infrastructure layer, honeynet and software-defined industrial network layer, intelligent security platform layer, and smart industrial application layer). To demonstrate its feasibility, we implemented a proof-of-concept (PoC) solution using open-source tools, including AWS for cloud infrastructure, T-Pot for Honeynet, Mininet for SDN support, ELK tools for data management, and Docker for containerization. This framework utilizes an integrated intelligent approach to enhance intrusion detection and classification capabilities for digital twin-based industrial cyber-physical systems (DT-ICPS). The proposed intrusion detection system (IDS) combines two strategies to improve security. First, we present an innovative approach to identifying essential features using explainable AI and ensemble-based filter feature selection (XAI-EFFS). By using Shapley Additive Explanations (SHAP), we analyze the impact of different variables on predictive outcomes. Secondly, we propose a hybrid GRU-LSTM deep-learning model for detecting and classifying intrusions. We optimize the hyperparameters of the GRU-LSTM model by using a Bayesian optimization algorithm. The proposed method demonstrates excellent performance, outperforming conventional state-of-the-art techniques with an accuracy rate of 98.96%, which is a remarkable improvement. Additionally, it effectively detects zero-day attacks, contributing to digital twin-based ICPS cybersecurity resilience.

computer science, information systems, theory & methods

Masi, Massimiliano,Sellitto, Giovanni Paolo,Aranha, Helder

DOI: https://doi.org/10.1007/s10270-022-01075-0

2023-01-03

Abstract:With the diffusion of integrated design environments and tools for visual threat modeling for critical infrastructures, the concept of Digital Twin (DT) is gaining momentum in the field of cybersecurity. Its main use is for enabling attack simulations and evaluation of countermeasures, without causing outage of the physical system. However, the use of a DT is considered foremost as a facilitator of system operation rather than an integral part of its architecture design. In this work, we introduce a specific architecture view in the system representation, called Cybersecurity View. From it, we derive a cybersecurity Digital Twin as part of the security-by-design practice for Industrial Automation and Control Systems used in Critical Infrastructures. Not only this digital twin serves the purpose of simulating cyber-attacks and devising countermeasures, but its design and function are also directly tied to the architecture model of the system for which the cybersecurity requirements are posed. Moreover, this holds regardless of whether the model is generated as part of the development cycle or through an empirical observation of the system as-is. With this, we enable the identification of adequate cybersecurity measures for the system, while improving the overall system design. To demonstrate the practical usefulness of the proposed methodology, its application is illustrated through two real-world use cases: the Cooperative Intelligent Transport System (C-ITS) and the Road tunnel scenario.

computer science, software engineering

Anurag Srivastava,Chen-Ching Liu,Alexandru Stefanov,Sagnik Basumallik,Mohammed M. Hussain,Baza Somda,Vetrivel S. Rajkumar

DOI: https://doi.org/10.1109/mpe.2023.3325196

2024-02-02

IEEE Power and Energy Magazine

Abstract:Today's critical infrastructure systems are more interconnected and dependent on the electric power grid. This interdependence means that disruptions in one system can have far-reaching consequences across many others. This is particularly evident when a cyberattack in the power grid leads to widespread outages and disrupts essential societal services. To prevent such disasters, it is crucial that proactive actions are taken to secure our power grid control centers and digital substations. This is where digital twins (DTs) play an important role: By creating virtual replicas of cyberphysical assets and processes, DTs allow system operators to anticipate and address potential vulnerabilities in our cybersecurity defenses before they can be exploited. As such, a DT can be considered as a key contributor to safeguard the power system against cyberattacks. This article examines the potential future benefits of DTs in enabling a cybersecure and resilient power grid, explores multiple use cases, and proposes a path forward.

engineering, electrical & electronic

Subash Neupane,Ivan A. Fernandez,Sudip Mittal,Shahram Rahimi

2023-06-23

Abstract:Generative Artificial Intelligence (GenAI) has emerged as a powerful technology capable of autonomously producing highly realistic content in various domains, such as text, images, audio, and videos. With its potential for positive applications in creative arts, content generation, virtual assistants, and data synthesis, GenAI has garnered significant attention and adoption. However, the increasing adoption of GenAI raises concerns about its potential misuse for crafting convincing phishing emails, generating disinformation through deepfake videos, and spreading misinformation via authentic-looking social media posts, posing a new set of challenges and risks in the realm of cybersecurity. To combat the threats posed by GenAI, we propose leveraging the Cyber Kill Chain (CKC) to understand the lifecycle of cyberattacks, as a foundational model for cyber defense. This paper aims to provide a comprehensive analysis of the risk areas introduced by the offensive use of GenAI techniques in each phase of the CKC framework. We also analyze the strategies employed by threat actors and examine their utilization throughout different phases of the CKC, highlighting the implications for cyber defense. Additionally, we propose GenAI-enabled defense strategies that are both attack-aware and adaptive. These strategies encompass various techniques such as detection, deception, and adversarial training, among others, aiming to effectively mitigate the risks posed by GenAI-induced cyber threats.

Cryptography and Security,Artificial Intelligence

Benjamin Fraser,Saba Al-Rubaye,Sohaib Aslam,Antonios Tsourdos

DOI: https://doi.org/10.1109/dasc52595.2021.9594321

2021-10-03

Abstract:In this paper the general susceptibilities of Unmanned Aerial Vehicles (UAVs) against modern-cyber threats are explored and potential solutions proposed. This is achieved by applying digital-twin architectures and data-driven methods to UAVs to facilitate identification of real-time intrusions and anomalies. These concepts are validated by performing novelty detection on open access UAV flight data with GPS spoofing attacks, which represents a typical system use-case. Multiple machine learning models are trained to demonstrate the feasibility of detecting modern cyber-intrusions and anomalies using the digital-twin architecture. This includes both classical and deep learning techniques to help identify the most suitable model types for the proposed design. The overall results are positive and help highlight the potential of digital-twin architectures for the UAV contexts.

Md Mashrur Arifin,Md Shoaib Ahmed,Tanmai Kumar Ghosh,Ikteder Akhand Udoy,Jun Zhuang,Jyh-haw Yeh

2024-09-20

Abstract:With the proliferation of Artificial Intelligence, there has been a massive increase in the amount of data required to be accumulated and disseminated digitally. As the data are available online in digital landscapes with complex and sophisticated infrastructures, it is crucial to implement various defense mechanisms based on cybersecurity. Generative Adversarial Networks (GANs), which are deep learning models, have emerged as powerful solutions for addressing the constantly changing security issues. This survey studies the significance of the deep learning model, precisely on GANs, in strengthening cybersecurity defenses. Our survey aims to explore the various works completed in GANs, such as Intrusion Detection Systems (IDS), Mobile and Network Trespass, BotNet Detection, and Malware Detection. The focus is to examine how GANs can be influential tools to strengthen cybersecurity defenses in these domains. Further, the paper discusses the challenges and constraints of using GANs in these areas and suggests future research directions. Overall, the paper highlights the potential of GANs in enhancing cybersecurity measures and addresses the need for further exploration in this field.

Cryptography and Security,Artificial Intelligence,Computer Vision and Pattern Recognition,Machine Learning

Shivani Metta,Isaac Chang,Jack Parker,Michael P. Roman,Arturo F. Ehuan

2024-05-03

Abstract:The dawn of Generative Artificial Intelligence (GAI), characterized by advanced models such as Generative Pre-trained Transformers (GPT) and other Large Language Models (LLMs), has been pivotal in reshaping the field of data analysis, pattern recognition, and decision-making processes. This surge in GAI technology has ushered in not only innovative opportunities for data processing and automation but has also introduced significant cybersecurity challenges.

Cryptography and Security

Smita Vempati

DOI: https://doi.org/10.52783/jes.3052

2024-05-01

Abstract:The burgeoning evolution of smart cities, characterized by the integration of the Internet of Things (IoT), Artificial Intelligence (AI), and Machine Learning (ML), heralds a transformative era in urban management and citizen engagement. These technological advancements promise enhanced efficiency in city operations, improved public services, and a sustainable urban environment. However, the complexity and interconnectedness inherent in these systems introduce significant cybersecurity challenges, necessitating innovative approaches to safeguard the digital infrastructure of smart cities. This paper aims to explore the cybersecurity landscape of smart cities from the perspective of integrating IoT, AI, and ML for the creation of digital twins, offering a comprehensive analysis of the opportunities and threats within this domain. Smart cities leverage IoT to connect various components of the urban infrastructure, including transportation systems, utilities, and public services, creating an integrated network of devices that communicate and share data. The incorporation of AI and ML into this framework facilitates intelligent decision-making, enabling the automation of services and the optimization of resources. This synergy enhances the quality of life for residents, promotes economic development, and supports sustainable environmental practices. However, the dependence on digital technologies also exposes smart cities to a range of cybersecurity risks, from data breaches and privacy violations to the disruption of critical infrastructure. The integration of IoT, AI, and ML in smart cities, while offering unprecedented opportunities for urban innovation, also amplifies the complexity of the cybersecurity landscape. IoT devices, often designed with minimal security features, become potential entry points for cyber attacks. The vast amount of data generated and processed by these devices, if compromised, could lead to significant privacy and security breaches. AI and ML models, for their part, are susceptible to manipulation and bias, which can undermine the integrity of decision-making processes. The interconnectivity of systems means that a breach in one sector could have cascading effects throughout the city's infrastructure. Against this backdrop, the paper investigates the role of digital twins in mitigating cybersecurity risks in smart cities. Digital twins, digital replicas of physical entities or systems, offer a powerful tool for simulating and analyzing smart city operations, including cybersecurity scenarios. By mirroring the city's infrastructure in a virtual environment, digital twins allow for the identification of vulnerabilities, the simulation of cyber attacks, and the evaluation of potential impacts. This proactive approach to cybersecurity enables city administrators to anticipate threats and implement protective measures before real-world systems are compromised. The research questions guiding this inquiry include: How can the integration of IoT, AI, and ML enhance the resilience of smart cities against cyber threats? What are the specific cybersecurity challenges presented by these technologies, and how can they be addressed? And, most crucially, what role can digital twins play in fortifying the cybersecurity defenses of smart cities? To address these questions, the paper begins with a review of the current state of smart city technology, focusing on the integration of IoT, AI, and ML. It then delves into the cybersecurity challenges unique to this technological landscape, drawing on recent examples of cyber incidents in smart cities. The analysis highlights the vulnerabilities introduced by the widespread use of IoT devices and the complexities of securing AI and ML systems. Following this, the discussion turns to the potential of digital twins as a cybersecurity tool, examining how they can be employed to detect vulnerabilities, simulate attacks, and plan responses. The paper argues that while the integration of IoT, AI, and ML in smart cities presents significant cybersecurity challenges, it also offers opportunities for innovative solutions. Digital twins emerge as a promising approach to enhancing the cybersecurity posture of smart cities, enabling a dynamic and proactive defense mechanism. By facilitating the simulation of cyber threats in a controlled environment, digital twins allow city administrators to identify weaknesses, test the efficacy of protective measures, and develop more resilient urban infrastructures. In conclusion, the integration of IoT, AI, and ML in smart cities represents a double-edged sword, offering both remarkable opportunities for urban innovation and formidable cybersecurity challenges. This paper underscores the critical importance of adopting a cybersecurity perspective in the development and management of smart cities, highlighting the potential of digital twins as a strategic tool in mitigating these risks. As smart cities continue to evolve, embracing these technologies in a secure and responsible manner will be paramount in realizing their full potential while safeguarding the digital and physical well-being of urban populations.

Iqbal H. Sarker,Helge Janicke,Ahmad Mohsin,Asif Gill,Leandros Maglaras

DOI: https://doi.org/10.1016/j.icte.2024.05.007

IF: 4.754

2024-05-24

ICT Express

Abstract:Digital twins (DTs) are an emerging digitalization technology with a huge impact on today's innovations in both industry and research. DTs can significantly enhance our society and quality of life through the virtualization of a real-world physical system, providing greater insights about their operations and assets, as well as enhancing their resilience through real-time monitoring and proactive maintenance. DTs also pose significant security risks, as intellectual property is encoded and more accessible, as well as their continued synchronization to their physical counterparts. The rapid proliferation and dynamism of cyber threats in today's digital environments motivate the development of automated and intelligent cyber solutions. Today's industrial transformation relies heavily on artificial intelligence (AI), including machine learning (ML) and data-driven technologies that allow machines to perform tasks such as self-monitoring, investigation, diagnosis, future prediction, and decision-making intelligently. However, to effectively employ AI-based models in the context of cybersecurity, human-understandable explanations, and their trustworthiness, are significant factors when making decisions in real-world scenarios. This article provides an extensive study of explainable AI (XAI) based cybersecurity modeling through a taxonomy of AI and XAI methods that can assist security analysts and professionals in comprehending system functions, identifying potential threats and anomalies, and ultimately addressing them in DT environments in an intelligent manner. We discuss how these methods can play a key role in solving contemporary cybersecurity issues in various real-world applications. We conclude this paper by identifying crucial challenges and avenues for further research, as well as directions on how professionals and researchers might approach and model future-generation cybersecurity in this emerging field.

computer science, information systems,telecommunications

Yagmur Yigit,Ioannis Panitsas,Leandros Maglaras,Leandros Tassiulas,Berk Canberk

2024-03-15

Abstract:The rapid evolution of Vehicular Ad-hoc NETworks (VANETs) has ushered in a transformative era for intelligent transportation systems (ITS), significantly enhancing road safety and vehicular communication. However, the intricate and dynamic nature of VANETs presents formidable challenges, particularly in vehicle-to-infrastructure (V2I) communications. Roadside Units (RSUs), integral components of VANETs, are increasingly susceptible to cyberattacks, such as jamming and distributed denial of service (DDoS) attacks. These vulnerabilities pose grave risks to road safety, potentially leading to traffic congestion and vehicle malfunctions. Existing methods face difficulties in detecting dynamic attacks and integrating digital twin technology and artificial intelligence (AI) models to enhance VANET cybersecurity. Our study proposes a novel framework that combines digital twin technology with AI to enhance the security of RSUs in VANETs and address this gap. This framework enables real-time monitoring and efficient threat detection while also improving computational efficiency and reducing data transmission delay for increased energy efficiency and hardware durability. Our framework outperforms existing solutions in resource management and attack detection. It reduces RSU load and data transmission delay while achieving an optimal balance between resource consumption and high attack detection effectiveness. This highlights our commitment to secure and sustainable vehicular communication systems for smart cities.

Cryptography and Security

Yagmur Yigit,William J Buchanan,Madjid G Tehrani,Leandros Maglaras

DOI: https://doi.org/10.48550/arXiv.2403.08701

2024-03-19

Abstract:Over the last decade, Artificial Intelligence (AI) has become increasingly popular, especially with the use of chatbots such as ChatGPT, Gemini, and DALL-E. With this rise, large language models (LLMs) and Generative AI (GenAI) have also become more prevalent in everyday use. These advancements strengthen cybersecurity's defensive posture and open up new attack avenues for adversaries as well. This paper provides a comprehensive overview of the current state-of-the-art deployments of GenAI, covering assaults, jailbreaking, and applications of prompt injection and reverse psychology. This paper also provides the various applications of GenAI in cybercrimes, such as automated hacking, phishing emails, social engineering, reverse cryptography, creating attack payloads, and creating malware. GenAI can significantly improve the automation of defensive cyber security processes through strategies such as dataset construction, safe code development, threat intelligence, defensive measures, reporting, and cyberattack detection. In this study, we suggest that future research should focus on developing robust ethical norms and innovative defense mechanisms to address the current issues that GenAI creates and to also further encourage an impartial approach to its future application in cybersecurity. Moreover, we underscore the importance of interdisciplinary approaches further to bridge the gap between scientific developments and ethical considerations.

Cryptography and Security

Sarah Al-Shareeda,Khayal Huseynov,Lal Verda Cakir,Craig Thomson,Mehmet Ozdem,Berk Canberk

2024-11-01

Abstract:In today's networked world, Digital Twin Networks (DTNs) are revolutionizing how we understand and optimize physical networks. These networks, also known as 'Digital Twin Networks (DTNs)' or 'Networks Digital Twins (NDTs),' encompass many physical networks, from cellular and wireless to optical and satellite. They leverage computational power and AI capabilities to provide virtual representations, leading to highly refined recommendations for real-world network challenges. Within DTNs, tasks include network performance enhancement, latency optimization, energy efficiency, and more. To achieve these goals, DTNs utilize AI tools such as Machine Learning (ML), Deep Learning (DL), Reinforcement Learning (RL), Federated Learning (FL), and graph-based approaches. However, data quality, scalability, interpretability, and security challenges necessitate strategies prioritizing transparency, fairness, privacy, and accountability. This chapter delves into the world of AI-driven traffic analysis within DTNs. It explores DTNs' development efforts, tasks, AI models, and challenges while offering insights into how AI can enhance these dynamic networks. Through this journey, readers will gain a deeper understanding of the pivotal role AI plays in the ever-evolving landscape of networked systems.

Networking and Internet Architecture,Artificial Intelligence,Emerging Technologies

Chongxing Ji,Yi Niu

DOI: https://doi.org/10.1016/j.seta.2024.103650

IF: 7.632

2024-02-21

Sustainable Energy Technologies and Assessments

Abstract:The amalgamation of Internet of Things (IoT) and communication systems within Smart Grid Control Systems (SGCS) has amplified their susceptibility to cyber-attacks, posing a significant threat. Traditional intrusion detection systems (IDSs), originally designed for securing IT systems, exhibit limitations in SGCS due to reliance on predefined structures and training on specific cyber-attack patterns. This study addresses the challenge by proposing a deep learning (DL) framework to establish balanced representations for the inherently asymmetric SGCS datasets. These representations are seamlessly integrated into a dedicated DL-based model for attack detection within the SGCS environment. Utilizing Support Vector Machines (SVM) and K-Nearest Neighbors (K-NN), the model identifies novel cyber-attack representations. Performance evaluation through 10-fold cross-validation on two real SGCS datasets reveals the proposed approach's superiority over traditional methods like Random Forest (RF) and Deep Neural Networks (DNN). Additionally, the generalized method can be effortlessly implemented in existing SGCS infrastructures with minimal complexity. This study introduces a novel cybersecurity enhancement method for Smart Grid Control Systems by integrating a Cyber-Physical Digital Twin with a deep learning-based IDS. This approach intricately models both physical and cyber components, facilitating real-time training and fine-tuning of the intrusion detection model using synthetic cyber threats. The digital twin undergoes rigorous testing to assess the model's effectiveness, employing scenario analyses to identify vulnerabilities and formulate response strategies. The adaptive digital twin fosters a proactive cybersecurity stance by implementing security measures such as access controls and cyber range simulation. Real-time monitoring, analytics, and stakeholder collaboration enhance incident response readiness. The lifecycle simulation, spanning from model development to deployment, ensures alignment with regulations. This integrated approach not only detects but proactively responds to cyber threats, fortifying Smart Grid Control Systems against evolving risks.

energy & fuels,green & sustainable science & technology

Jithin Jagannath,Keyvan Ramezanpour,Anu Jagannath

DOI: https://doi.org/10.48550/arXiv.2204.01950

2022-04-05

Networking and Internet Architecture

Abstract:Digital twin (DT) technologies have emerged as a solution for real-time data-driven modeling of cyber physical systems (CPS) using the vast amount of data available by Internet of Things (IoT) networks. In this position paper, we elucidate unique characteristics and capabilities of a DT framework that enables realization of such promises as online learning of a physical environment, real-time monitoring of assets, Monte Carlo heuristic search for predictive prevention, on-policy, and off-policy reinforcement learning in real-time. We establish a conceptual layered architecture for a DT framework with decentralized implementation on cloud computing and enabled by artificial intelligence (AI) services for modeling, event detection, and decision-making processes. The DT framework separates the control functions, deployed as a system of logically centralized process, from the physical devices under control, much like software-defined networking (SDN) in fifth generation (5G) wireless networks. We discuss the moment of the DT framework in facilitating implementation of network-based control processes and its implications for critical infrastructure. To clarify the significance of DT in lowering the risk of development and deployment of innovative technologies on existing system, we discuss the application of implementing zero trust architecture (ZTA) as a necessary security framework in future data-driven communication networks.