Efficiency and Security of Process Transparency in Production Networks - A View of Expectations, Obstacles and Potentials

Procedia CIRP

Volumn 52, Issue , 2016, Pages 84-89

  Ilie Zudor, Elisabeth ^a   Kemény, Zsolt ^a   Preuveneers, Davy ^b  

^a INSTITUTE OF EXPERIMENTAL MEDICINE   (Hungary)

^b UNIVERSITY OF LEUVEN   (Belgium)

Author keywords

performance; process transparency; Production networks; security

Indexed keywords

AGILE MANUFACTURING SYSTEMS; RECONFIGURABLE HARDWARE; SECURITY SYSTEMS; THROUGHPUT; TRANSPARENCY;

DEGREE OF OBSERVABILITY; END-TO-END CONNECTIONS; INFORMATION STREAMS; PERFORMANCE; PRODUCTION NETWORK; PRODUCTION SYSTEM; SECURITY; VERTICAL INTEGRATION;

NETWORK SECURITY;

EID: 84992641053     PISSN: 22128271     EISSN: None     Source Type: Conference Proceeding    
DOI: 10.1016/j.procir.2016.07.018     Document Type: Conference Paper

References (59)

1. Lee, J., Bagheri, B., Kao, H.A. A cyber-physical systems architecture for industry 4.0-based manufacturing systems. Manufacturing Letters 2015;3:18-23.
2. Monostori, L. Cyber-physical production systems: Roots, expectations and R&D challenges. Procedia CIRP 2014;17:9-13. Variety Management in ManufacturingProceedings of the 47th CIRP Conf. on Manufacturing Systems.
3. Bauernhansl, T. Industrie 4.0 in Produktion, Automatisierung und Logistik: Anwendung, Technologien, Migration; chap. Die Vierte Industrielle Revolution - Der Weg in ein wertschaffendes Produktionsparadigma. Wiesbaden: Springer Fachmedien, Wiesbaden, ISBN., 978-3-658-04682-8, 2014, p. 5-35.
4. Bildstein, A., Seidelmann, J. Industrie 4.0 in Produktion, Automatisierung und Logistik: Anwendung, Technologien, Migration; chap. Industrie 4.0-Readiness: Migration zur Industrie 4.0-Fertigung. Wiesbaden: Springer Fachmedien Wiesbaden. ISBN 978-3-658-04682-8; 2014, p. 581-597.
5. Langner, R. Stuxnet: Dissecting a cyberwarfare weapon. IEEE Security and Privacy 2011;9(3):49-51. doi:10.1109/MSP. 2011.67.
6. Bencsáth, B., Pék, G., Buttyán, L., Félegyházi, M. The cousins of Stuxnet: Duqu, Flame, and Gauss. Future Internet 2012;4(4):971. doi:10.3390/fi4040971.
7. Bhargava, B., Ranchal, R., Ben Othmane, L. Secure information sharing in digital supply chains. In: Advance Computing Conference (IACC), 2013 IEEE 3rd International. IEEE; 2013, p. 1636-1640.
8. Clarke, J. SQL Injection Attacks and Defense. 1st ed.; Syngress Publishing; 2009. ISBN 1597494240, 9781597494243.
9. Nikiforakis, N., Younan, Y., Joosen, W. Hproxy: Client-side detection of SSL stripping attacks. In: Kreibich, C., Jahnke, M., editors. Detection of Intrusions and Malware, and Vulnerability Assessment, 7th International Conference, DIMVA 2010, Bonn, Germany, July 8-9, 2010. Proceedings; vol. 6201 of Lecture Notes in Computer Science. Springer. ISBN 978-3-642-14214-7; 2010, p. 200-218. doi:10.1007/978-3-642-14215-4 12.
10. Klick, J., Lau, S., Marzin, D., Malchow, J.O., Roth, V. Internet-facing PLCs as a network backdoor. In: Communications and Network Security (CNS), 2015 IEEE Conference on. IEEE; 2015, p. 524-532.
11. Wang, S., Wan, J., Li, D., Zhang, C. Implementing smart factory of Industrie 4.0: an outlook. International Journal of Distributed Sensor Networks 2016;2016.
12. Krotofil, M., Cardenas, A., Larsen, J., Gollmann, D. Vulnerabilities of cyber-physical systems to stale data - determining the optimal time to launch attacks. International Journal of Critical Infrastructure Protection 2014;7(4):213-232.
13. Ji, X., Wang, B., Liu, D., Dong, Z., Chen, G., Zhu, Z., et al. Will electrical cyber-physical interdependent networks undergo first-order transition under random attacks? Physica A: Statistical Mechanics and its Applications 2016;doi:http://dx.doi.org/10.1016/j.physa.2016.05.017.
14. Backhaus, S., Bent, R., Bono, J., Lee, R., Tracey, B., Wolpert, D., et al. Cyber-physical security: A game theory model of humans interacting over control systems. Smart Grid, IEEE Transactions on 2013;4(4):2320-2327.
15. Möller, D.P. Digital manufacturing/industry 4.0. In: Guide to Computing Fundamentals in Cyber-Physical Systems. Springer; 2016, p. 307-375.
16. Heatherly, R., Kantarcioglu, M., Thuraisingham, B.M. Preventing private information inference attacks on social networks. IEEE Trans on Knowl and Data Eng 2013;25(8):1849-1862. doi:10.1109/TKDE. 2012.120.
17. Preuveneers, D., Joosen, W., Ilie-Zudor, E. Data Protection Compliance Regulations and Implications for Smart Factories of the Future. In: 2016 International Conference on Intelligent Environments, IE 2016, London, United Kingdom, September 14-16. 2016 (to appear),.
18. Sasse, M.A., Brostoff, S., Weirich, D. Transforming the "Weakest Link' - a Human/Computer Interaction Approach to Usable and Effective Security. BT Technology Journal 2001;19(3):122-131. doi:10.1023/A: 1011902718709.
19. TrendLabs APT Research Team, Spear-Phishing Email: Most Favored APT Attack Bait Tech. Rep.; 2012 URL: http://www.trendmicro.com/cloud-content/us/pdfs/security-intelligence/white-papers/wp-spear-phishing.-email-most-favored-apt-attack-bait.pdf.
20. Krombholz, K., Hobel, H., Huber, M., Weippl, E. Advanced social engineering attacks. J Inf Secur Appl 2015; 22(C):113-122. doi:10.1016/j.jisa.2014.09.005.
21. Aviram, A., Tor, A. Overcoming impediments to information sharing. Ala L Rev 2003;55:231.
22. Chengalur-Smith, I., Duchessi, P. An empirical investigation of extensible information sharing in supply chains: Going beyond dyadic. Information Resources Management Journal (IRMJ) 2014;27(4):1-22.
23. Kimmerle, J., Cress, U. The impact of cognitive anchors on information- sharing behavior. Cyberpsychology, Behavior, and Social Networking 2013;16(1):45-49.
24. Wang, Z., Ye, F., Tan, K.H. Effects of managerial ties and trust on supply chain information sharing and supplier opportunism. International Journal of Production Research 2014;52(23):7046-7061.
25. Nayak, A.K., Reimers, A., Feamster, N., Clark, R. Resonance: dynamic access control for enterprise networks. In: Proceedings of the 1st ACM workshop on Research on enterprise networking. ACM; 2009, p. 11-18.
26. McKeown, N., Anderson, T., Balakrishnan, H., Parulkar, G., Peterson, L., Rexford, J., et al. OpenFlow: enabling innovation in campus networks. ACM SIGCOMM Computer Communication Review 2008;38(2):69-74.
27. Cole, E. Advanced Persistent Threat: Understanding the Danger and How to Protect Your Organization. 1st ed.; Syngress Publishing; 2013. ISBN 9781597499491, 9781597499552.
28. Hacigümüş, H., Iyer, B., Li, C., Mehrotra, S. Executing sql over encrypted data in the database-service-provider model. In: Proceedings of the 2002 ACM SIGMOD International Conference on Management of Data. SIGMOD "02; New York, NY, USA: ACM. ISBN 1-58113-497-5; 2002, p. 216-227. doi:10.1145/564691.564717.
29. Naveed, M., Kamara, S., Wright, C.V. Inference attacks on property- preserving encrypted databases. In: Proceedings of the 22Nd ACM SIGSAC Conference on Computer and Communications Security. CCS "15; New York, NY, USA: ACM. ISBN 978-1-4503-3832-5; 2015, p. 644-655 doi:10.1145/2810103.2813651.
30. Dyer, K.P., Coull, S.E., Ristenpart, T., Shrimpton, T. Peek-a-boo, i still see you: Why efficient traffic analysis countermeasures fail. In: Proceedings of the 2012 IEEE Symposium on Security and Privacy. SP "12; Washington, DC, USA: IEEE Computer Society. ISBN 978-0-7695-4681-0; 2012, p. 332-346. doi:10.1109/SP. 2012.28.
31. Yue, X., Cai, H., Yan, H., Zou, C., Zhou, K. Cloud-assisted industrial cyber-physical systems: An insight. Microprocessors and Microsystems 2015;39(8):1262-1270.
32. Eisenbarth, T., Kumar, S., Paar, C., Poschmann, A., Uhsadel, L. A survey of lightweight-cryptography implementations. IEEE Des Test 2007;24(6):522-533. doi:10.1109/MDT. 2007.178.
33. Nohl, K., Evans, D., Starbug, S., Plötz, H. Reverse-engineering a Cryptographic RFID Tag. In: Proceedings of the 17th Conference on Security Symposium. SS'08; Berkeley, CA, USA: USENIX Association; 2008, p. 185-193.
34. Arbit, A., Livne, Y., Oren, Y., Wool, A. Implementing public-key cryptography on passive rfid tags is practical. International Journal of Information Security 2015;14(1):85-99. doi:10.1007/s10207-014-0236-y.
35. Barañano, I., Romero-Àvila, D. Long-term growth and persistence with. obsolescence. Economic Modelling 2015; 51(C):328-339.
36. Coates, G.M., Hopkinson, K.M., Graham, S.R., Kurkowski, S.H. A trust system architecture for SCADA network security. Power Delivery, IEEE Transactions on 2010;25(1):158-169.
37. Wang, K., Qi, Y., Yang, B., Xue, Y., Li, J. LiveSec: Towards effective security management in large-scale production networks. In: Distributed Computing Systems Workshops (ICDCSW), 2012 32nd International Conference on. IEEE; 2012, p. 451-460.
38. Chen, X., Mu, B., Chen, Z. Netsecu: A collaborative network security platform for in-network security. In: Communications and Mobile Computing (CMC), 2011 Third International Conference on. IEEE; 2011, p. 59-64.
39. Dacier, M., Kargl, F., König, H., Valdes, A. Network attack detection and defense: Securing industrial control systems for critical infrastructures (dagstuhl seminar 14292). Dagstuhl Reports 2014; 4(7).
40. Hernan, S., Lambert, S., Ostwald, T., Shostack, A. Uncover security design flaws using the STRIDE approach. MSDN Magazine 2006;URL: http://msdn.microsoft.com/en-us/magazine/cc163519.aspx.
41. Wuyts, K., Scandariato, R., Joosen, W. Empirical evaluation of a privacy- focused threat modeling methodology. Journal of Systems and Software 2014;96:122-138. doi:http://dx.doi.org/10.1016/j.jss.2014.05.075.
42. Khader, O., Willig, A., Wolisz, A. An autonomous framework for supporting energy efficiency and communication reliability in wsns. In: Wireless and Mobile Networking Conference (WMNC), 2013 6th Joint IFIP. IEEE; 2013, p. 1-8.
43. Sallai, J., Horváth, P., Koutsoukos, X. Self-organizing wsn protocol for real-time communication requirements. In: Distributed Computing in Sensor Systems (DCOSS), 2013 IEEE International Conference on. IEEE; 2013, p. 409-414.
44. Fremantle, P., Scott, P. A security survey of middleware for the Internet of Things. PeerJ PrePrints 2015;3:e1521.
45. Wang, J., Xu, J., Liu, Y., Deng, W. AST: Activity-security-trust. driven modeling of time varying networks. Scientific reports 2016;6. doi:doi:10.1038/srep21352.
46. Conzon, D., Bolognesi, T., Brizzi, P., Lotito, A., Tomasi, R., Spirito, M.A. The VIRTUS middleware: An XMPP based architecture for secure IoT communications. In: 2012 21st International Conference on Computer Communications and Networks (ICCCN). 2012, p. 1-6. doi:10.1109/ICCCN. 2012.6289309.
47. Fielder, A., Panaousis, E., Malacaria, P., Hankin, C., Smeraldi, F. Game theory meets information security management. In: ICT Systems Security and Privacy Protection. Springer; 2014, p. 15-29.
48. Spyridopoulos, T., Karanikas, G., Tryfonas, T., Oikonomou, G. A game theoretic defence framework against dos/ddos cyber attacks. Computers & Security 2013;38:39-50.
49. Furuncu, E., Sogukpinar, I. Scalable risk assessment method for cloud computing using game theory (ccram). Computer Standards & Interfaces 2015;38:44-50.
50. Eisenga, A., Rodriguez, W., Jones, T. Methods on determining the investment in IT security. In: Nemati, H.R., editor. Advances in Information Security, Privacy, and Ethics: Analyzing Security, Trust, and Crime in the Digital World. IGI Global. ISBN 9781466648579; 2013, p. 22-34. doi:10.4018/978-1-4666-4856-2.ch002.
51. Bartol, N. Cyber supply chain security practices DNA - filling in the puzzle using a diverse set of disciplines. Technovation 2014;34(7):354-361. doi:http://dx.doi.org/10.1016/j.technovation.2014.01.005; special Issue on Security in the Cyber Supply Chain.
52. Shafiei, H., Khonsari, A., Derakhshi, H., Mousavi, P. Detection and mitigation of sinkhole attacks in wireless sensor networks. Journal of Computer and System Sciences 2014;80(3):644-653. doi:http://dx.doi.org/10.1016/j.jcss.2013.06.016; special Issue on Wireless Network Intrusion.
53. Sahu, S.S., Pandey, M. Intelligent Computing, Communication and Devices: Proceedings of ICCD 2014, Volume 2; chap. A Probabilistic Packet Filtering-Based Approach for Distributed Denial of Service Attack in Wireless Sensor Network. New Delhi: Springer India. ISBN 978-81-322-2009-1; 2015, p. 65-70.
54. Patel, M.M., Aggarwal, A. Security attacks in wireless sensor networks: A survey. In: Intelligent Systems and Signal Processing (ISSP), 2013 International Conference on. IEEE; 2013, p. 329-333.
55. Park, H., Seo, D., Lee, H., Perrig, A. Smatt: Smart meter attestation using multiple target selection and copy-proof memory. In: Computer Science and its Applications. Springer; 2012, p. 875-887.
56. Wu, L., Chuang, C.H., Hsu, C.H. Information sharing and collaborative behaviors in enabling supply chain performance: A social exchange perspective. International Journal of Production Economics 2014;148:122-132.
57. Prajogo, D., Olhager, J. Supply chain integration and performance: The effects of long-term relationships, information technology and sharing, and logistics integration. International Journal of Production Economics 2012;135(1):514-522.
58. Tosh, D.K., Molloy, M., Sengupta, S., Kamhoua, C.A., Kwiat, K.A. Cyber-investment and cyber-information exchange decision modeling. In: High Performance Computing and Communications (HPCC), 2015 IEEE 7th International Symposium on Cyberspace Safety and Security (CSS), 2015 IEEE 12th International Conferen on Embedded Software and Systems (ICESS), 2015 IEEE 17th International Conference on. IEEE; 2015, p. 1219-1224.
59. Tosh, D., Sengupta, S., Kamhoua, C., Kwiat, K., Martin, A. An evolutionary game-theoretic framework for cyber-threat information sharing. In: Communications (ICC), 2015 IEEE International Conference on. IEEE; 2015, p. 7341-7346.