Cyber-Physical Systems Security - A Survey

IEEE Internet of Things Journal

Volumn 4, Issue 6, 2017, Pages 1802-1831

  Humayed, Abdulmalik ^a   Lin, Jingqiang ^b   Li, Fengjun ^a   Luo, Bo ^a  

^a University of Kansas   (United States)

^b University of Chinese Academy of Sciences   (China)

Author keywords

Attacks; controls; cyber physical systems (CPSs); industrial control systems (ICSs); medical devices; security; smart cars; smart grids; threats; vulnerabilities

Indexed keywords

BIOMEDICAL EQUIPMENT; CONTROL; CYBER PHYSICAL SYSTEM; ELECTRIC POWER TRANSMISSION NETWORKS; EMBEDDED SYSTEMS; SECURITY OF DATA; SMART POWER GRIDS;

ATTACKS; CYBER PHYSICAL SYSTEMS (CPSS); INDUSTRIAL CONTROL SYSTEMS; MEDICAL DEVICES; SECURITY; SMART CAR; SMART GRID; THREATS; VULNERABILITIES;

INTELLIGENT CONTROL;

EID: 85029396841     PISSN: None     EISSN: 23274662     Source Type: Journal    
DOI: 10.1109/JIOT.2017.2703172     Document Type: Article

References (183)

1. C. Alcaraz and S. Zeadally, "Critical control system protection in the 21st century: Threats and solutions," Computer, vol. 46, no. 10, pp. 74-83, Oct. 2013.
2. S. Amin, G. A. Schwartz, and A. Hussain, "In quest of benchmarking security risks to cyber-physical systems," IEEE Netw., vol. 27, no. 1, pp. 19-24, Jan./Feb. 2013.
3. S. Amin, X. Litrico, S. S. Sastry, and A. M. Bayen, "Stealthy deception attacks on water SCADA systems," in Proc. 13th ACM Int. Conf. Hybrid Syst. Comput. Control, Stockholm, Sweden, 2010, pp. 161-170.
4. R. Anderson and S. Fuloria, "Who controls the off switch?" in Proc. 1st IEEE Int. Conf. Smart Grid Commun. (SmartGridComm), Gaithersburg, MD, USA, 2010, pp. 96-101.
5. Z. E. Ankarali et al., "A comparative review on the wireless implantable medical devices privacy and security," in Proc. EAI 4th Int. Conf. Wireless Mobile Commun. Healthcare (Mobihealth), Athens, Greece, 2014, pp. 246-249.
6. Z. E. Ankarali et al., "Physical layer security for wireless implantable medical devices," in Proc. IEEE 20th Int. Workshop Comput.-Aided Model. Design Commun. Links Netw. (CAMAD), Guildford, U.K., 2015, pp. 144-147.
7. O. Arias, J. Wurm, K. Hoang, and Y. Jin, "Privacy and security in Internet of Things and wearable devices," IEEE Trans. Multi-Scale Comput. Syst., vol. 1, no. 2, pp. 99-109, Apr./Jun. 2015.
8. R. R. R. Barbosa, "Anomaly detection in SCADA systems-a network based approach," Ph.D. dissertation, Centre Telematics Inf. Technol., Univ. Twente, Enschede, The Netherlands, 2014.
9. S. M. Bellovin, "Security problems in the TCP/IP protocol suite," ACM SIGCOMM Comput. Commun. Rev., vol. 19, no. 2, pp. 32-48, 1989.
10. L. Briesemeister, S. Cheung, U. Lindqvist, and A. Valdes, "Detection, correlation, and visualization of attacks against critical infrastructure systems," in Proc. IEEE 8th Annu. Int. Conf. Privacy Security Trust (PST), Ottawa, ON, Canada, 2010, pp. 15-22.
11. R. R. Brooks, S. Sander, J. Deng, and J. Taiber, "Automotive system security: Challenges and state-of-the-art," in Proc. ACM 4th Annu. Workshop Cyber Security Inf. Intell. Res. Develop. Strategies Meet Cyber Security Inf. Intell. Challenges Ahead (CSIIRW), Oak Ridge, TN, USA, 2008, pp. 1-3.
12. E. Byres, M. Franz, and D. Miller, "The use of attack trees in assessing vulnerabilities in SCADA systems," in Proc. Int. Infrastruct. Survivability Workshop, 2004.
13. E. Byres and J. Lowe, "The myths and facts behind cyber security risks for industrial control systems," in Proc. VDE Kongress, vol. 116. 2004, pp. 213-218.
14. H. Cao, P. Zhu, X. Lu, and A. Gurtov, "A layered encryption mechanism for networked critical infrastructures," IEEE Netw., vol. 27, no. 1, pp. 12-18, Jan./Feb. 2013.
15. A. Cárdenas et al., "Challenges for securing cyber physical systems," in Proc. Workshop Future Directions Cyber Phys. Syst. Security, 2009, pp. 9-15.
16. A. A. Cárdenas et al., "Attacks against process control systems: Risk assessment, detection, and response," in Proc. 6th ACM Symp. Inf. Comput. Commun. Security, Hong Kong, 2011, pp. 355-366.
17. A. A. Cárdenas, S. Amin, and S. Sastry, "Research challenges for the security of control systems," in Proc. HotSec, San Jose, CA, USA, 2008, Art. no. 6.
18. A. A. Cárdenas, T. Roosta, and S. Sastry, "Rethinking security properties, threat models, and the design space in sensor networks: A case study in SCADA systems," Ad Hoc Netw., vol. 7, no. 8, pp. 1434-1447, 2009.
19. J. L. Cebula and L. R. Young, "A taxonomy of operational cyber security risks," U.S Dept. Defense, Defense Tech. Inf. Center, Fort Belvoir, VA, USA, Tech. Rep. CMU/SEI-2010-TN-028, 2010.
20. S. Checkoway et al., "Comprehensive experimental analyses of automotive attack surfaces," in Proc. USENIX Security Symp., San Francisco, CA, USA, 2011, p. 6.
21. M. Cheminod, L. Durante, and A. Valenzano, "Review of security issues in industrial networks," IEEE Trans. Ind. Informat., vol. 9, no. 1, pp. 277-293, Feb. 2013.
22. D. Chen, S. Kalra, D. Irwin, P. Shenoy, and J. Albrecht, "Preventing occupancy detection from smart meters," IEEE Trans. Smart Grid, vol. 6, no. 5, pp. 2426-2434, Sep. 2015.
23. M. Chen, S. Gonzalez, A. Vasilakos, H. Cao, and V. C. Leung, "Body area networks: A survey," Mobile Netw. Appl., vol. 16, no. 2, pp. 171-193, 2011.
24. T. M. Chen and S. Abu-Nimeh, "Lessons from Stuxnet," Computer, vol. 44, no. 4, pp. 91-93, Apr. 2011.
25. E. Chien, L. Omurchu, and N. Falliere, "W32.duqu: The precursor to the next Stuxnet," presented at the 5th USENIX Workshop Large Scale Exploits Emergent Threats, Berkeley, CA, USA, 2012, p. 5.
26. K.-T. Cho and K. G. Shin, "Error handling of in-vehicle networks makes them vulnerable," in Proc. ACM SIGSAC Conf. Comput. Commun. Security, Vienna, Austria, 2016, pp. 1044-1055.
27. K.-T. Cho and K. G. Shin, "Fingerprinting electronic control units for vehicle intrusion detection," in Proc. 25th USENIX Security Symp., Austin, TX, USA, 2016, pp. 911-927.
28. S. Cho, "Privacy and authentication in smart grid networks," Ph.D. dissertation, Dept. Comput. Sci., State Univ. New York, Incheon, South Korea, 2014.
29. D. Choi, H. Kim, D. Won, and S. Kim, "Advanced key-management architecture for secure SCADA communications," IEEE Trans. Power Del., vol. 24, no. 3, pp. 1154-1163, Jul. 2009.
30. R. Chow, E. Uzun, A. A. Cárdenas, Z. Song, and S. Lee, "Enhancing cyber-physical security through data patterns," in Proc. Workshop Found. Depend. Secure Cyber Phys. Syst. (FDSCPS), 2011, p. 25.
31. F. M. Cleveland. IEC 62351 Security Standards for the Power System Information Infrastructure. Accessed on Oct. 15, 2015. [Online]. Available: http://iectc57.ucaiug.org/wg15public/Public2012
32. CNN. (Sep. 2007). Sources: Staged Cyber Attack Reveals Vulnerability in Power Grid. [Online]. Available: http://www.cnn.com/2007/US/09/26/power.at.risk/
33. A. D'Amico, C. Verderosa, C. Horn, and T. Imhof, "Integrating physical and cyber security resources to detect wireless threats to critical infrastructure," in Proc. IEEE Int. Conf. Technol. Homeland Security (HST), Nov. 2011, pp. 494-500.
34. A. Dardanelli et al., "A security layer for smartphone-to-vehicle communication over bluetooth," IEEE Embedded Syst. Lett., vol. 5, no. 3, pp. 34-37, Sep. 2013.
35. S. K. Das, K. Kant, and N. Zhang, Handbook on Securing Cyber-Physical Critical Infrastructure. Waltham, MA, USA: Elsevier, 2012.
36. T. Denning, K. Fu, and T. Kohno, "Absence makes the heart grow fonder: New directions for implantable medical device security," in Proc. HotSec, San Jose, CA, USA, 2008, pp. 5:1-5:7.
37. T. Denning et al., "CPS: Beyond usability: Applying value sensitive design based methods to investigate domain characteristics for security for implantable cardiac devices," in Proc. 30th Annu. Comput. Security Appl. Conf., New Orleans, LA, USA, 2014, pp. 426-435.
38. S. East, J. Butts, M. Papa, and S. Shenoi, "A taxonomy of attacks on the dnp3 protocol," in Critical Infrastructure Protection III (IFIP Advances in Information and Communication Technology), vol. 311, C. Palmer and S. Shenoi, Eds. Berlin, Germany: Springer, 2009, pp. 67-81.
39. Powering Business Worldwide Eaton. (2014). Power Outage Annual Report: Blackout Tracker. [Online]. Available: http://www.eaton.com/ blackouttracker
40. G. N. Ericsson, "Cyber security and power system communication - Essential parts of a smart grid infrastructure," IEEE Trans. Power Del., vol. 25, no. 3, pp. 1501-1507, Jul. 2010.
41. R. Escherich et al., "She: Secure hardware extension-Functional specification, version 1.1," Hersteller Initiative Softw. (HIS) AK Security, Apr. 2009.
42. X. Fang, S. Misra, G. Xue, and D. Yang, "Smart grid - The new and improved power grid: A survey," IEEE Commun. Surveys Tuts., vol. 14, no. 4, pp. 944-980, 4th Quart., 2012.
43. J. D. Fernandez and A. E. Fernandez, "SCADA systems: Vulnerabilities and remediation," J. Comput. Sci. Colleges, vol. 20, no. 4, pp. 160-168, 2005.
44. T. Fleury, H. Khurana, and V. Welch, "Towards a taxonomy of attacks against energy control systems," Critical Infrastructure Protection II (The International Federation for Information Processing), vol. 290, M. Papa and S. Shenoi, Eds. Boston, MA, USA: Springer, 2008, pp. 71-85.
45. Food and Drug Administration. (2005). Cybersecurity for Networked Medical Devices Containing off-the-Shelf (OTS) Software. [Online]. Available: http://www.fda.gov/downloads/MedicalDevices/ DeviceRegulationandGuidance/GuidanceDocuments/ucm077823.pdf
46. Food and Drug Administration. (2014). Cybersecurity for Networked Medical Devices Containing off-the-Shelf (OTS) Software. [Online]. Available: http://www.fda.gov/downloads/MedicalDevices/ DeviceRegulationandGuidance/GuidanceDocuments/UCM356190.pdf
47. I. N. Fovino, A. Carcano, M. Masera, and A. Trombetta, "Design and implementation of a secure modbus protocol," in Critical Infrastructure Protection III. Berlin, Germany: Springer, 2009, pp. 83-96.
48. FOX News Network. (2014). Threat to The Grid? Details Emerge of Sniper Attack on Power Station. [Online]. Available: http://www.foxnews.com/politics/2014/02/06/2013-sniper-attack-onpower-grid-still-concern-in-washington-and-for-utilities/
49. G. Francia, III, D. Thornton, and T. Brookshire, "Cyberattacks on SCADA systems," in Proc. 16th Colloquium Inf. Syst. Security Educ. Lake Buena Vista, FL, USA, Jun. 2012, pp. 9-14.
50. G. Francia, III, D. Thornton, and T. Brookshire, "Wireless vulnerability of SCADA systems," in Proc. ACM Southeast Regional Conf., Tuscaloosa, AL, USA, 2012, pp. 331-332.
51. G. A. Francia, III, D. Thornton, and J. Dawson, "Security best practices and risk assessment of SCADA and industrial control systems," in Proc. Int. Conf. Security Manag. (SAM) Steering Committee World Congr. Comput. Sci. Comput. Eng. Appl. Comput. (WorldComp), 2012, p. 1.
52. A. Francillon, B. Danev, and S. Capkun, "Relay attacks on passive keyless entry and start systems in modern cars," in Proc. NDSS, 2011, p. 15.
53. K. Fu and J. Blum, "Controlling for cybersecurity risks of medical device software," Commun. ACM, vol. 56, no. 10, pp. 35-37, Oct. 2013.
54. F. D. Garcia, D. Oswald, T. Kasper, and P. Pavlidès, "Lock it and still lose it-on the (in) security of automotive remote keyless entry systems," in Proc. 25th USENIX Security Symp. (USENIX Security), Austin, TX, USA, 2016, pp. 929-944.
55. S. Gollakota, H. Hassanieh, B. Ransford, D. Katabi, and K. Fu, "They can hear your heartbeats: Non-invasive security for implantable medical devices," SIGCOMM Comput. Commun. Rev., vol. 41, no. 4, pp. 2-13, Aug. 2011.
56. D. Gollmann, "Security for cyber-physical systems," in Mathematical and Engineering Methods in Computer Science. Berlin, Germany: Springer, 2013, pp. 12-14.
57. A. Groll et al., "Oversee a secure and open communication and runtime platform for innovative automotive applications," in Proc. 7th Embedded Security Cars Conf. (ESCAR), 2009.
58. IEEE Standard for Local and Metropolitan Area Networks Part 16: Air Interface for Fixed Broadband Wireless Access Systems. IEEE Standard 802:16-2004, 2004.
59. L. Guan et al., "From physical to cyber: Escalating protection for personalized auto insurance," in Proc. 14th ACM Conf. Embedded Netw. Sensor Syst. CD-ROM (SenSys), Stanford, CA, USA, 2016, pp. 42-55.
60. D. Halperin et al., "Pacemakers and implantable cardiac defibrillators: Software radio attacks and zero-power defenses," in Proc. IEEE Symp. Security Privacy (SP), May 2008, pp. 129-142.
61. D. Halperin, T. S. Heydt-Benjamin, K. Fu, T. Kohno, and W. H. Maisel, "Security and privacy for implantable medical devices," IEEE Pervasive Comput., vol. 7, no. 1, pp. 30-39, Jan./Mar. 2008.
62. S. Hanna et al., "Take two software updates and see me in the morning: The case for software security evaluations of medical devices," in Proc. 2nd USENIX Conf. Health Security Privacy (HealthSec), San Francisco, CA, USA, 2011, p. 6.
63. B. Harris and R. Hunt, "TCP/IP security threats and attack methods," Comput. Commun., vol. 22, no. 10, pp. 885-897, 1999.
64. S. Harris,"China's cyber militia," Nat. J. Mag., no. 31, 2008.
65. T. Hayajneh, B. J. Mohd, M. Imran, G. Almashaqbeh, and A. V. Vasilakos, "Secure authentication for remote patient monitoring with wireless medical sensor networks," Sensors, vol. 16, no. 4, p. 424, 2016.
66. J. L. Hieb, "Security hardened remote terminal units for SCADA networks," Ph.D. dissertation, J. B. Speed School Eng., Univ. at Louisville, Louisville, KY, USA, 2014.
67. G. Hoglund and G. McGraw, Exploiting Software: How to Break Code. Noida, India: Pearson Educ., 2004.
68. T. Hoppe, S. Kiltz, and J. Dittmann, "Security threats to automotive CAN networks - Practical examples and selected short-term countermeasures," in Proc. 27th Int. Conf. Comput. Safety Rel. Security (SAFECOMP), Newcastle upon Tyne, U.K., 2008, pp. 235-248.
69. P. Huitsing, R. Chandia, M. Papa, and S. Shenoi, "Attack taxonomies for the modbus protocols," Int. J. Crit. Infrastruct. Protect., vol. 1, pp. 37-44, Dec. 2008.
70. ICS-CERT. (2010). Common Cybersecurity Vulnerabilities in Industrial Control Systems. [Online]. Available: http://ics-cert.us-cert.gov/sites/ default/files/recommended-practices/DHS-Common-Cybersecurity- Vulnerabilities-ICS-2010.pdf
71. InvestmentWatch. (2014). First Time in History, A Terrorist Attack on the Electric Power Grid has Blacked-out an Entire Nation Ü in This Case Yemen. [Online]. Available: http://investmentwatchblog.com/ first-time-in-history-a-terrorist-attack-on-the-electric-power-grid-hasblacked-out-an-entire-nation-in-this-case-yemen
72. X. Jin, J. Bigham, J. Rodaway, D. Gamez, and C. Phillips, "Anomaly detection in electricity cyber infrastructures," in Proc. Int. Workshop Complex Netw. Infrastruct. Protect. (CNIP), 2006.
73. H. J. Jo, W. Choi, S. Y. Na, S. Woo, and D. H. Lee, "Vulnerabilities of android OS-based telematics system," Wireless Pers. Commun., vol. 92, no. 4, pp. 1511-1530, 2017.
74. R. E. Johnson, "Survey of SCADA security challenges and potential attack vectors," in Proc. IEEE Int. Conf. Internet Technol. Secured Trans. (ICITST), London, U.K., 2010, pp. 1-5.
75. D.-J. Kang, J.-J. Lee, S.-J. Kim, and J.-H. Park, "Analysis on cyber threats to SCADA systems," in Proc. Transm. Distrib. Conf. Expo. Asia-Pac., 2009, pp. 1-4.
76. T. Karygiannis and L. Owens, "Wireless network security," U.S. Dept. Commerce, NIST, Gaithersburg, MD, USA, Tech. Rep. 800:48, 2002.
77. H. Khurana, M. Hadley, N. Lu, and D. A. Frincke, "Smart-grid security issues," IEEE Security Privacy, vol. 8, no. 1, pp. 81-85, Jan./Feb. 2010.
78. D. Kleidermacher and M. Kleidermacher, Embedded Systems Security: Practical Methods for Safe and Secure Software and Systems Development. San Diego, CA, USA: Elsevier, 2012.
79. E. D. Knapp and R. Samani, Applied Cyber Security and the Smart Grid: Implementing Security Controls Into the Modern Power Infrastructure. Waltham, MA, USA: Syngress, 2013.
80. N. Komninos, E. Philippou, and A. Pitsillides, "Survey in smart grid and smart home security: Issues, challenges and countermeasures," IEEE Commun. Surveys Tuts., vol. 16, no. 4, pp. 1933-1954, 4th Quart., 2014.
81. K. Koscher et al., "Experimental security analysis of a modern automobile," in Proc. IEEE Symp. Security Privacy (SP), Oakland, CA, USA, May 2010, pp. 447-462.
82. M. Krotofil, J. Larsen, and D. Gollmann, "The process matters: Ensuring data veracity in cyber-physical systems," in Proc. 10th ACM Symp. Inf. Comput. Commun. Security (ASIA CCS), Singapore, 2015, pp. 133-144.
83. M. Krotofil and D. Gollmann, "Industrial control systems security: What is happening?" in Proc. 11th IEEE Int. Conf. Ind. Informat. (INDIN), Bochum, Germany, 2013, pp. 670-675.
84. R. Langner, "Stuxnet: Dissecting a cyberwarfare weapon," IEEE Security Privacy, vol. 9, no. 3, pp. 49-51, May/Jun. 2011.
85. U. E. Larson and D. K. Nilsson, "Securing vehicles against cyber attacks," in Proc. 4th Annu. Workshop Cyber Security Inf. Intell. Res. Develop. Strategies Meet Cyber Security Inf. Intell. Challenges Ahead (CSIIRW), Oak Ridge, TN, USA, 2008, pp. 1-30.
86. U. E. Larson, D. K. Nilsson, and E. Jonsson, "An approach to specification-based attack detection for in-vehicle networks," in Proc. IEEE Intell. Veh. Symp., Xi'an, China, 2008, pp. 220-225.
87. E. A. Lee and S. A. Seshia, Introduction to Embedded Systems: A Cyber-Physical Systems Approach. Berkeley, CA, USA: Lee & Seshia, 2011.
88. H. Lee, K. Choi, K. Chung, J. Kim, and K. Yim, "Fuzzing can packets into automobiles," in Proc. IEEE 29th Int. Conf. Adv. Inf. Netw. Appl., Gwangju, South Korea, 2015, pp. 817-821.
89. I. Lee et al., "Challenges and research directions in medical cyber-physical systems," Proc. IEEE, vol. 100, no. 1, pp. 75-90, Jan. 2012.
90. É. Leverett and R. Wightman. (2013). Vulnerability Inheritance in Programmable Logic Controllers. [Online]. Available: https://ics-cert.us-cert.gov/content/cyber-threat-source-descriptions
91. E. P. Leverett, "Quantitatively assessing and visualising industrial system attack surfaces," Darwin College, Univ. Cambridge, Cambridge, U.K., 2011.
92. C. Li, A. Raghunathan, and N. K. Jha, "Hijacking an insulin pump: Security attacks and defenses for a diabetes therapy system," in Proc. 13th IEEE Int. Conf. e-Health Netw. Appl. Services (Healthcom), Columbia, MO, USA, Jun. 2011, pp. 150-156.
93. F. Li, B. Luo, and P. Liu, "Secure information aggregation for smart grids using homomorphic encryption," in Proc. 1st IEEE Int. Conf. Smart Grid Commun. (SmartGridComm), Gaithersburg, MD, USA, 2010, pp. 327-332.
94. J. Lin, W. Yu, and X. Yang, "On false data injection attack against multistep electricity price in electricity market in smart grid," in Proc. IEEE Glob. Commun. Conf. (GLOBECOM), Atlanta, GA, USA, 2013, pp. 760-765.
95. J. Lin et al., "A survey on Internet of Things: Architecture, enabling technologies, security and privacy, and applications," IEEE Internet Things J., to be published.
96. T. Liu et al., "Abnormal traffic-indexed state estimation: A cyber-physical fusion approach for smart grid attack detection," Future Gener. Comput. Syst., vol. 49, pp. 94-103, Aug. 2015.
97. Y. Liu, P. Ning, and M. K. Reiter, "False data injection attacks against state estimation in electric power grids," ACM Trans. Inf. Syst. Security (TISSEC), vol. 14, no. 1, 2011, Art. no. 13.
98. Z. Lu, X. Lu, W. Wang, and C. Wang, "Review and evaluation of security threats on the communication networks in the smart grid," in Proc. Mil. Commun. Conf. MILCOM, San Jose, CA, USA, 2010, pp. 1830-1835.
99. Z. Lu, W. Wang, and C. Wang, "From jammer to gambler: Modeling and detection of jamming attacks against time-critical traffic," in Proc. IEEE INFOCOM, Shanghai, China, 2011, pp. 1871-1879.
100. M. E. Luallen, "Critical control system vulnerabilities demonstrated - And what to do about them," A SANS Whitepaper, Nov. 2011.
101. D. MacDonald et al., "Cyber/physical security vulnerability assessment integration," in Proc. IEEE PES Innov. Smart Grid Technol. (ISGT), Washington, DC, USA, 2013, pp. 1-6.
102. M. Majdalawieh, F. Parisi-Presicce, and D. Wijesekera, "Dnpsec: Distributed network protocol version 3 (DNP3) security framework," in Proc. Adv. Comput. Inf. Syst. Sci. Eng., 2006, pp. 227-234.
103. E. Markey. (2015). Tracking and Hacking: Security and Privacy Gaps put American Drivers at Risk. [Online]. Available: http://www.markey.senate.gov/imo/media/doc/2015-02-06- MarkeyReport-Tracking-Hacking-CarSecurity%202.pdf
104. D. Mashima and A. A. Cárdenas, "Evaluating electricity theft detectors in smart grid networks," in Proc. 15th Int. Conf. Res. Attacks Intrusions Defenses (RAID), 2012, pp. 210-229.
105. P. McDaniel and S. McLaughlin, "Security and privacy challenges in the smart grid," IEEE Security Privacy, vol. 7, no. 3, pp. 75-77, May/Jun. 2009.
106. A. R. Metke and R. L. Ekl, "Security technology for smart grid networks," IEEE Trans. Smart Grid, vol. 1, no. 1, pp. 99-107, Jun. 2010.
107. Microsoft Security TechCenter. (2008). Microsoft Security Bulletin ms08-067 - Critical. [Online]. Available: https://technet.microsoft.com/library/security/ms08-067
108. Microsoft Security TechCenter. (2010). Microsoft Security Bulletin Summary for September 2010. [Online]. Available: https://technet.microsoft.com/library/security/ms10-sep
109. B. Miller and D. Rowe, "A survey SCADA of and critical infrastructure incidents," in Proc. 1st Annu. Conf. Res. Inf. Technol., Calgary, AB, Canada, 2012, pp. 51-56.
110. C. Miller and C. Valasek, "Adventures in automotive networks and control units," A SANS Whitepaper, Aug. 2013.
111. C. Miller and C. Valasek, "A survey of remote automotive attack surfaces," Black Hat USA, 2014.
112. C. Miller and C. Valasek, "Remote exploitation of an unaltered passenger vehicle," Black Hat USA, 2015.
113. R. Mitchell and I.-R. Chen, "Survivability analysis of mobile cyber physical systems with voting-based intrusion detection," in Proc. Wireless Commun. Mobile Comput. Conf. (IWCMC), Istanbul, Turkey, 2011, pp. 2256-2261.
114. R. Mitchell and I.-R. Chen, "Behavior rule based intrusion detection for supporting secure medical cyber physical systems," in Proc. Comput. Commun. Netw. (ICCCN), Munich, Germany, 2012, pp. 1-7.
115. R. Mitchell and I.-R. Chen, "Effect of intrusion detection and response on reliability of cyber physical systems," IEEE Trans. Rel., vol. 62, no. 1, pp. 199-210, Mar. 2013.
116. R. Mitchell and I.-R. Chen, "A survey of intrusion detection techniques for cyber-physical systems," ACM Comput. Surveys, vol. 46, no. 4, 2014, Art. no. 55.
117. R. Mitchell and I.-R. Chen, "Behavior-rule based intrusion detection systems for safety critical smart grid applications," IEEE Trans. Smart Grid, vol. 4, no. 3, pp. 1254-1263, Sep. 2013.
118. Y. Mo et al., "Cyber-physical security of a smart grid infrastructure," Proc. IEEE, vol. 100, no. 1, pp. 195-209, Jan. 2012.
119. A. Molina-Markham, P. Shenoy, K. Fu, E. Cecchet, and D. Irwin, "Private memoirs of a smart meter," in Proc. 2nd ACM Workshop Embedded Sens. Syst. Energy-Efficiency Build., Zürich, Switzerland, 2010, pp. 61-66.
120. K. Munro, "Deconstructing flame: The limitations of traditional defences," Comput. Fraud Security, vol. 2012, no. 10, pp. 8-11, 2012.
121. I. N. Fovino, A. Carcano, M. Masera, and A. Trombetta, "An experimental investigation of malware attacks on SCADA systems," Int. J. Critical Infrastruct. Protect., vol. 2, no. 4, pp. 139-145, 2009.
122. E. Nakashima and S. Mufson, "Hackers have attacked foreign utilities, CIA analyst says," Washington Post, 2008.
123. C. Neuman, "Challenges in security for cyber-physical systems," in Proc. DHS Workshop Future Directions Cyber-Phys. Syst. Security, Newark, NJ, USA, 2009, pp. 22-24.
124. A. Nicholson, S. Webber, S. Dyer, T. Patel, and H. Janicke, "SCADA security in the light of cyber-warfare," Comput. Security, vol. 31, no. 4, pp. 418-436, 2012.
125. L. O. Murchu and N. Falliere. (2011). W32.Stuxnet Dossier. [Online]. Available: http://www.symantec.com/content/en/us/enterprise/media/ security%5C-response/whitepapers/w32%5C-stuxnet%5C-dossier.pdf
126. D. K. Nilsson, P. H. Phung, and U. E. Larson, "Vehicle ECU classification based on safety-security characteristics," in Proc. IET Road Transp. Inf. Control RTIC, Manchester, U.K., 2008, pp. 1-7.
127. "Guidelines for smart grid cyber security," NIST Nistir, Gaithersburg, MD, USA, Tech. Rep. 7628, 2010.
128. D. Oberoi et al., "Wearable security: Key derivation for body area sensor networks based on host movement," in Proc. IEEE Ind. Electron. (ISIE), 2016, pp. 1116-1121.
129. T. Paukatong, "SCADA security: A new concerning issue of an inhouse EGAT-SCADA," in Proc. IEEE/PES Transm. Distrib. Conf. Exhibit. Asia-Pac., Dalian, China, 2005, pp. 1-5.
130. J. Petit and S. E. Shladover, "Potential cyberattacks on automated vehicles," IEEE Trans. Intell. Transp. Syst., vol. 16, no. 2, pp. 546-556, Apr. 2015.
131. C. P. Pfleeger and S. L. Pfleeger, Security in Computing, 4th ed. Upper Saddle River, NJ, USA: Prentice-Hall, 2006.
132. L. Piètre-Cambacédès, M. Tritschler, and G. N. Ericsson, "Cybersecurity myths on power control systems: 21 misconceptions and false beliefs," IEEE Trans. Power Del., vol. 26, no. 1, pp. 161-172, Jan. 2011.
133. E. L. Quinn, "Privacy and the new energy infrastructure," in Social Science Research Network (SSRN), 2009.
134. A. H. Mohsenian-Rad and A. Leon-Garcia, "Distributed Internet-based load altering attacks against smart power grids," IEEE Trans. Smart Grid, vol. 2, no. 4, pp. 667-674, Dec. 2011.
135. J. Radcliffe, "Hacking medical devices for fun and insulin: Breaking the human SCADA system," in Proc. Black Hat Conf. Presentation Slides, 2011.
136. M. A. Rahman, P. Bera, and E. Al-Shaer, "Smartanalyzer: A noninvasive security threat analyzer for ami smart grid," in Proc. IEEE INFOCOM, Orlando, FL, USA, Mar. 2012, pp. 2255-2263.
137. R. S. Ross, "Guide for conducting risk assessments NIST special publication 800-30 revision 1," U.S. Dept. Commerce, NIST, Gaithersburg, MD, USA, Tech. Rep., 2012.
138. M. Rostami, W. Burleson, F. Koushanfar, and A. Juels, "Balancing security and utility in medical devices?" in Proc. 50th Annu. Design Autom. Conf., Austin, TX, USA, 2013, Art. no. 13.
139. I. Rouf et al., "Security and privacy vulnerabilities of in-car wireless networks: A tire pressure monitoring system case study," in Proc. 19th USENIX Security Symp., Washington, DC, USA, 2010, pp. 11-13.
140. M. Rushanan, A. D. Rubin, D. F. Kune, and C. M. Swanson, "Sok: Security and privacy in implantable medical devices and body area networks," in Proc. IEEE Symp. Security Privacy (SP), Berkeley, CA, USA, 2014, pp. 524-539.
141. D. H. Ryu, H. Kim, and K. Um, "Reducing security vulnerabilities for critical infrastructure," J. Loss Prevent. Process Ind., vol. 22, no. 6, pp. 1020-1024, 2009.
142. F. Sagstetter et al., "Security challenges in automotive hardware/ software architecture design," in Proc. Conf. Design Autom. Test Europe, Grenoble, France, 2013, pp. 458-463.
143. R. Santamarta. (2012). Here Be Backdoors: A Journey into the Secrets of Industrial Firmware. [Online]. Available: https://media.blackhat.com/bh-us-12/Briefings/Santamarta/BH-US-12- Santamarta-Backdoors-WP.pdf
144. R. M. Seepers, J. H.Weber, Z. Erkin, I. Sourdis, and C. Strydis, "Secure key-exchange protocol for implants using heartbeats," in Proc. ACM Int. Conf. Comput. Front., Como, Italy, 2016, pp. 119-126.
145. S. Seifert and R. Obermaisser, "Secure automotive gateway - Secure communication for future cars," in Proc. IEEE Int. Conf. Ind. Inf., Porto Alegre, Brazil, 2014, pp. 213-220.
146. R. Setola. (2011). Cyber Threats to SCADA Systems. [Online]. Available: http://panzieri.dia.uniroma3.it/MICIE/docs/Setola%20WS% 20Micie%202011.pdf
147. Y. Shoukry, P. Martin, P. Tabuada, and M. Srivastava, "Non-invasive spoofing attacks for anti-lock braking systems," in Cryptographic Hardware and Embedded Systems. Berlin, Germany: Springer, 2013.
148. Y. Shoukry, P. Martin, Y. Yona, S. Diggavi, and M. Srivastava, "PyCRa: Physical challenge-response authentication for active sensors under spoofing attacks," in Proc. 22nd ACM Conf. Comput. Commun. Security, Denver, CO, USA, 2015, pp. 1004-1015.
149. J. Slay and M. Miller, "Lessons learned from the Maroochy water breach," in Critical Infrastructure Protection. Boston, MA, USA: Springer, 2007, pp. 73-82.
150. T. Sommestad, G. N. Ericsson, and J. Nordlander, "SCADA system cyber security - A comparison of standards," in Proc. IEEE Power Energy Soc. Gener. Meeting, Providence, RI, USA, 2010, pp. 1-8.
151. S. Sridhar, A. Hahn, and M. Govindarasu, "Cyber-physical system security for the electric power grid," Proc. IEEE, vol. 100, no. 1, pp. 210-224, Jan. 2012.
152. G. Stoneburner, A. Y. Goguen, and A. Feringa, "Risk management guide for information technology systems," NIST, Gaithersburg, MD, USA, Tech. Rep. Sp 800-30, 2002.
153. K. A. Stouffer, J. A. Falco, and K. A. Scarfone, "Guide to industrial control systems (ICS) security: Supervisory control and data acquisition (SCADA) systems, distributed control systems (DCS), and other control system configurations such as programmable logic controllers (PLC)," NIST, Gaithersburg, MD, USA, Tech. Rep. Sp 800-82, 2011.
154. I. Studnia et al., "Security of embedded automotive networks: State of the art and a research proposal," in Proc. 2nd Workshop Crit. Autom. Appl. Robustness Safety, Toulouse, France, 2013.
155. I. Studnia et al., "Survey on security threats and protection mechanisms in embedded automotive networks," in Proc. Depend. Syst. Netw. Workshop, Budapest, Hungary, 2013, pp. 1-12.
156. Symantec Security Response. (2014). Dragonfly: Western Energy Companies Under Sabotage Threat. [Online]. Available: http://www.symantec.com/connect/blogs/dragonfly-western-energycompanies-under-sabotage-threat
157. A. Taylor, N. Japkowicz, and S. Leblanc, "Frequency-based anomaly detection for the automotive can bus," in Proc. World Congr. Ind. Control Syst. Security, London, U.K., 2015, pp. 45-49.
158. R. Tsang. (2010). Cyberthreats, Vulnerabilities and Attacks on SCADA Networks. [Online]. Available: http://gspp.berkeley.edu/ iths/Tsang-SCADA%20Attacks.pdf
159. R. J. Turk, Cyber Incidents Involving Control Systems, Idaho Nat. Eng. Environ. Lab., 2005.
160. V. Urias, B. Van Leeuwen, and B. Richardson, "Supervisory command and data acquisition (SCADA) system cyber security analysis using a live, virtual, and constructive (LVC) testbed," in Proc. Mil. Commun. Conf. MILCOM, Orlando, FL, USA, 2012, pp. 1-8.
161. US-CERT. (2009). Cyber Threat Source Descriptions. [Online]. Available: https://ics-cert.us-cert.gov/content/cyber-threat-sourcedescriptions
162. L. Vaas. Doctors Disabled Wireless in Dick Cheney's Pacemaker to Thwart Hacking. Accessed on Sep. 12, 2014. [Online]. Available: http://nakedsecurity.sophos.com/2013/10/22/doctorsdisabled-wireless-in-dick-cheneys-pacemaker-to-thwart-hacking/
163. B. Vaidya, D. Makrakis, and H. T. Mouftah, "Authentication and authorization mechanisms for substation automation in smart grid network," IEEE Netw., vol. 27, no. 1, pp. 5-11, Jan./Feb. 2013.
164. W. Wang and Z. Lu, "Cyber security in the smart grid: Survey and challenges," Comput. Netw., vol. 57, no. 5, pp. 1344-1371, 2013.
165. D. Welch and S. Lathrop, "Wireless security threat taxonomy," in Proc. IEEE Syst. Man Cybern. Soc. Inf. Assurance Workshop,West Point, NY, USA, 2003, pp. 76-83.
166. J. Wetzels, "Broken keys to the kingdom: Security and privacy aspects of RFID-based car keys," arXiv preprint arXiv:1405.7424, 2014.
167. M. Wolf and T. Gendrullis, "Design, implementation, and evaluation of a vehicular hardware security module," in Information Security and Cryptology-ICISC 2011. Berlin, Germany: Springer, 2012, pp. 302-318.
168. M. Wolf, A. Weimerskirch, and C. Paar, Security in Automotive Bus Systems, 2004.
169. S. Woo, H. J. Jo, and D. H. Lee, "A practical wireless attack on the connected car and security protocol for in-vehicle can," IEEE Trans. Intell. Transp. Syst., vol. 16, no. 2, pp. 993-1006, Apr. 2015.
170. J. Wurm et al., "Introduction to cyber-physical system security: A cross-layer perspective," IEEE Trans. Multi-Scale Comput. Syst., to be published.
171. L. Xie, Y. Mo, and B. Sinopoli, "False data injection attacks in electricity markets," in Proc. 1st IEEE Int. Conf. Smart Grid Commun. (SmartGridComm), Gaithersburg, MD, USA, 2010, pp. 226-231.
172. F. Xu, Z. Qin, C. C. Tan, B. Wang, and Q. Li, "Imdguard: Securing implantable medical devices with the external wearable guardian," in Proc. IEEE INFOCOM, Shanghai, China, Apr. 2011, pp. 1862-1870.
173. G. Xu, P. Moulema, L. Ge, H. Song, and W. Yu, "A unified framework for secured energy resource management in smart grid," in Smart Grid: Networking, Data Management, and Business Models. Boca Raton, FL, USA: CRC Press, 2016, pp. 73-96.
174. M. Yampolskiy, P. Horvath, X. D. Koutsoukos, Y. Xue, and J. Sztipanovits, "Taxonomy for description of cross-domain attacks on CPS," in Proc. 2nd ACM Int. Conf. High Confidence Netw. Syst., Philadelphia, PA, USA, 2013, pp. 135-142.
175. Y. Yan, Y. Qian, H. Sharif, and D. Tipper, "A survey on cyber security for smart grid communications," IEEE Commun. Surveys Tuts., vol. 14, no. 4, pp. 998-1010, 4th Quart., 2012.
176. Q. Yang, L. Chang, and W. Yu, "On false data injection attacks against Kalman filtering in power system dynamic state estimation," Security Commun. Netw., vol. 9, no. 9, pp. 833-849, 2016.
177. Q. Yang et al., "On false data-injection attacks against power system state estimation: Modeling and countermeasures," IEEE Trans. Parallel Distrib. Syst., vol. 25, no. 3, pp. 717-729, Mar. 2014.
178. X. Yang et al., "A novel en-route filtering scheme against false data injection attacks in cyber-physical networked systems," IEEE Trans. Comput., vol. 64, no. 1, pp. 4-18, Jan. 2015.
179. W. Yu, D. Griffith, L. Ge, S. Bhattarai, and N. Golmie, "An integrated detection system against false data injection attacks in the smart grid," Security Commun. Netw., vol. 8, no. 2, pp. 91-109, 2015.
180. M. Zeller, "Myth or reality - Does the aurora vulnerability pose a risk to my generator?" in Proc. 64th Annu. Conf. Protect. Relay Eng., College Station, TX, USA, 2011, pp. 130-136.
181. G. Zheng, G. Fang, R. Shankaran, and M. A. Orgun, "Encryption for implantable medical devices using modified one-time pads," IEEE Access, vol. 3, pp. 825-836, Jun. 2015.
182. B. Zhu, A. Joseph, and S. Sastry, "A taxonomy of cyber attacks on SCADA systems," in Proc. Int. Conf. Internet Things 4th Int. Conf. Cyber Phys. Soc. Comput., Dalian, China, 2011, pp. 380-388.
183. B. Zhu and S. Sastry, "Scada-specific intrusion detection/prevention systems: A survey and taxonomy," in Proc. 1st Workshop Secure Control Syst. (SCS), Stockholm, Sweden, 2010.