Dispatching advanced and adaptive intrusion responses for IIoT-based system
| dc.centro | E.T.S.I. Informática | |
| dc.contributor.author | Elicha, Jacobo | |
| dc.contributor.author | López-Muñoz, Francisco Javier | |
| dc.date.accessioned | 2026-02-11T09:29:48Z | |
| dc.date.issued | 2025 | |
| dc.departamento | Lenguajes y Ciencias de la Computación | |
| dc.description.abstract | The ever-increasing number of cyber-attacks poses a serious challenge to incident response teams. Recent cyber-attacks, such as the attack against energy distribution companies in Ukraine, highlight the disruption which can be caused and its consequences. More than 53 % of recorded incidents targeted essential entities, which heavily rely in Industrial Internet of Things (IIoT) devices, according to ENISA. Despite the amount of work in Cyber Threat Intelligence (CTI) and Intrusion Detection Systems (IDSs), automated response systems have been avoided in connected industrial environments mainly due to the criticality of the underlying assets, where a misstep has the potential to result in the disruption of critical processes. This paper therefore presents an Early and Adaptive Automated Intrusion Response Service for industrial environments, named EAIRS, which combines several techniques, including expert systems and reinforcement learning, to classify and mitigate anomalies detected by IDSs. The incidents EAIRS is designed to face range from network to host-based attacks. This paper provides the architecture for the described approach and the evaluation of a proof-of-concept implementation on an experimental testbed. | |
| dc.description.sponsorship | Funding for open access charge: Universidad de Málaga / CBUA | |
| dc.identifier.citation | Jacobo Elicha, Javier Lopez, Dispatching advanced and adaptive intrusion responses for IIoT-based systems, Future Generation Computer Systems, Volume 179, 2026, 108314, ISSN 0167-739X, https://doi.org/10.1016/j.future.2025.108314. | |
| dc.identifier.doi | https://doi.org/10.1016/j.future.2025.108314 | |
| dc.identifier.uri | https://hdl.handle.net/10630/45359 | |
| dc.language.iso | eng | |
| dc.publisher | Elsevier | |
| dc.rights | Attribution-NonCommercial 4.0 International | en |
| dc.rights.accessRights | open access | |
| dc.rights.uri | http://creativecommons.org/licenses/by-nc/4.0/ | |
| dc.subject | Seguridad informática | |
| dc.subject | Internet de los objetos | |
| dc.subject | Energía eléctrica - Distribución | |
| dc.subject | Ciberterrorismo | |
| dc.subject.other | Advanced recovery | |
| dc.subject.other | Industrial cyber-security | |
| dc.subject.other | Intrusion response | |
| dc.subject.other | Attack mitigation | |
| dc.subject.other | IIoT | |
| dc.subject.other | Situational awareness | |
| dc.title | Dispatching advanced and adaptive intrusion responses for IIoT-based system | |
| dc.type | journal article | |
| dc.type.hasVersion | AM | |
| dspace.entity.type | Publication | |
| relation.isAuthorOfPublication | c1875514-a0c5-4d77-a6f1-f7dfc736eeb2 | |
| relation.isAuthorOfPublication.latestForDiscovery | c1875514-a0c5-4d77-a6f1-f7dfc736eeb2 |
Files
Original bundle
1 - 1 of 1
Loading...
- Name:
- 1-s2.0-S0167739X25006089-main.pdf
- Size:
- 10.18 MB
- Format:
- Adobe Portable Document Format