Registro sencillo

dc.contributor.authorEtxezarreta, Xabier
dc.contributor.authorTurrin, Federico
dc.contributor.authorGaritano, Iñaki
dc.contributor.authorIturbe, Mikel
dc.contributor.authorZurutuza, Urko
dc.contributor.authorConti, Mauro
dc.date.accessioned2026-07-14T08:54:37Z
dc.date.available2026-07-14T08:54:37Z
dc.date.issued2026
dc.identifier.issn1545-5971en
dc.identifier.otherhttps://katalogoa.mondragon.edu/janium-bin/janium_login_opac.pl?find&ficha_no=201104en
dc.identifier.urihttps://hdl.handle.net/20.500.11984/14628
dc.description.abstractRecent incidents have demonstrated the increasing vulnerability of Industrial Control Systems (ICSs) to sophisticated and targeted attacks orchestrated by adversaries with high motivation, resources, and domain knowledge. Among these threats, False Data Injection (FDI) attacks have emerged as one of the main security threats to ICSs, involving the deliberate manipulation or injection of false data into the control system to deceive or disrupt operations. FDI attacks pose a significant risk due to their high capacity of concealment and ability to evade intrusion detection systems that rely on accurate ICS models. In this paper, we present defclon, a novel Software-Defined Networking (SDN)-based Moving Target Defense (MTD) approach against FDI attacks. Defclon proactively replicates network packets across multiple network paths and adaptively selects a single path using a signaling game model to reach the destination end-device. We demonstrate the effectiveness of our approach through simulations, numerical analysis, and experiments on ICS network traffic and topologies. Experimental results show that defclon is able to not only mitigate the effects of FDI attacks, but also to introduce different levels of uncertainty without degrading network performance, significantly increasing the difficulty for adversaries to gather information and launch attacks.en
dc.language.isoengen
dc.publisherIEEEen
dc.rights© 2026 IEEEen
dc.subjectMoving target defense (MTD)en
dc.subjectindustrial control systemsen
dc.subjectsoftware-defined networking (SDN)en
dc.subjectgame theoryen
dc.subjectinjection attacksen
dc.titleReplica-Based Moving Target Defense Against Injection Attacks in Software-Defined Industrial Control Systemses
dcterms.accessRightshttp://purl.org/coar/access_right/c_f1cfen
dcterms.sourceIEEE Transactions on Dependable and Secure Computingen
local.contributor.groupAnálisis de datos y ciberseguridades
local.description.peerreviewedtrueen
local.description.publicationfirstpage5163en
local.description.publicationlastpage5180en
local.identifier.doihttps://doi.org/10.1109/TDSC.2026.3652652en
local.rights.publicationfeeAPCen
local.embargo.enddate1-01-21
local.contributor.otherinstitutionhttps://ror.org/00240q980es
local.source.detailsVol. 23 (3), May-June 2026en
oaire.format.mimetypeapplication/pdfen
oaire.file$DSPACE\assetstoreen
oaire.resourceTypehttp://purl.org/coar/resource_type/c_6501en
oaire.versionhttp://purl.org/coar/version/c_ab4af688f83e57aaen
dc.unesco.tesaurohttp://vocabularies.unesco.org/thesaurus/concept2214en
dc.unesco.tesaurohttp://vocabularies.unesco.org/thesaurus/concept1147en
oaire.funderNameGobierno Españolen
oaire.funderNameGobierno Vascoen
oaire.funderIdentifierhttps://ror.org/00pz2fp31 / http://data.crossref.org/fundingdata/funder/10.13039/501100003086en
oaire.funderIdentifierhttps://ror.org/038jjxj40 / http://data.crossref.org/fundingdata/funder/10.13039/501100010198en
oaire.fundingStreamTransmisiones 2024en
oaire.fundingStreamIkertalde Convocatoria 2026-2029en
oaire.awardNumberPLEC2024-011222en
oaire.awardNumberIT1870-26en
oaire.awardTitleTeCnologías disRuptivas para la protección, evaluación y operación segura de dIsposiTivos Industriales Conectados (CRITIC)en
dc.unesco.clasificacionhttp://skos.um.es/unesco6/120903en


Ficheros en el ítem

Thumbnail

Este ítem aparece en la(s) siguiente(s) colección(es)

Registro sencillo