A Hybrid Methodology to Assess Cyber Resilience of IoT in Energy Management and Connected Sites

Amjad Mehmood; Gregory Epiphaniou; Carsten Maple; Nikolaos Ersotelos; Richard Wiseman

doi:10.3390/s23218720

A Hybrid Methodology to Assess Cyber Resilience of IoT in Energy Management and Connected Sites

Sensors (Basel). 2023 Oct 25;23(21):8720. doi: 10.3390/s23218720.

Authors

Amjad Mehmood^{1

2}, Gregory Epiphaniou¹, Carsten Maple¹, Nikolaos Ersotelos³, Richard Wiseman⁴

Affiliations

¹ Secure Cyber Systems Research Group (CSCRG), WMG, University of Warwick, Coventry CV4 7AL, UK.
² Institute of Computing, Kohat University of Science & Technology, Kohat 46000, Pakistan.
³ Department of Computer Science and Creative Technologies, University of the West of England, Bristol BS16 1QY, UK.
⁴ BT Group, 5th Floor, Orion Building, Adastral Park, Martlesham Heath, Ipswich IP5 3RE, UK.

Abstract

Cyber threats and vulnerabilities present an increasing risk to the safe and frictionless execution of business operations. Bad actors ("hackers"), including state actors, are increasingly targeting the operational technologies (OTs) and industrial control systems (ICSs) used to protect critical national infrastructure (CNI). Minimisations of cyber risk, attack surfaces, data immutability, and interoperability of IoT are some of the main challenges of today's CNI. Cyber security risk assessment is one of the basic and most important activities to identify and quantify cyber security threats and vulnerabilities. This research presents a novel i-TRACE security-by-design CNI methodology that encompasses CNI key performance indicators (KPIs) and metrics to combat the growing vicarious nature of remote, well-planned, and well-executed cyber-attacks against CNI, as recently exemplified in the current Ukraine conflict (2014-present) on both sides. The proposed methodology offers a hybrid method that specifically identifies the steps required (typically undertaken by those responsible for detecting, deterring, and disrupting cyber attacks on CNI). Furthermore, we present a novel, advanced, and resilient approach that leverages digital twins and distributed ledger technologies for our chosen i-TRACE use cases of energy management and connected sites. The key steps required to achieve the desired level of interoperability and immutability of data are identified, thereby reducing the risk of CNI-specific cyber attacks and minimising the attack vectors and surfaces. Hence, this research aims to provide an extra level of safety for CNI and OT human operatives, i.e., those tasked with and responsible for detecting, deterring, disrupting, and mitigating these cyber-attacks. Our evaluations and comparisons clearly demonstrate that i-TRACE has significant intrinsic advantages compared to existing "state-of-the-art" mechanisms.

Keywords: blockchain; critical national infrastructure (CNI); critical success factor (CSF); cyber resilient model; digital twins; key performance indicators (KPIs); key result areas (KRAs); safety.

Grants and funding

This work is co-funded by Innovate UK, Grant Agreement number 105590 (i-TRACE).