| dc.contributor.author | Etxezarreta, Xabier | |
| dc.contributor.author | Turrin, Federico | |
| dc.contributor.author | Garitano, Iñaki | |
| dc.contributor.author | Iturbe, Mikel | |
| dc.contributor.author | Zurutuza, Urko | |
| dc.contributor.author | Conti, Mauro | |
| dc.date.accessioned | 2026-07-14T08:54:37Z | |
| dc.date.available | 2026-07-14T08:54:37Z | |
| dc.date.issued | 2026 | |
| dc.identifier.issn | 1545-5971 | en |
| dc.identifier.other | https://katalogoa.mondragon.edu/janium-bin/janium_login_opac.pl?find&ficha_no=201104 | en |
| dc.identifier.uri | https://hdl.handle.net/20.500.11984/14628 | |
| dc.description.abstract | Recent incidents have demonstrated the increasing vulnerability of Industrial Control Systems (ICSs) to sophisticated and targeted attacks orchestrated by adversaries with high motivation, resources, and domain knowledge. Among these threats, False Data Injection (FDI) attacks have emerged as one of the main security threats to ICSs, involving the deliberate manipulation or injection of false data into the control system to deceive or disrupt operations. FDI attacks pose a significant risk due to their high capacity of concealment and ability to evade intrusion detection systems that rely on accurate ICS models. In this paper, we present defclon, a novel Software-Defined Networking (SDN)-based Moving Target Defense (MTD) approach against FDI attacks. Defclon proactively replicates network packets across multiple network paths and adaptively selects a single path using a signaling game model to reach the destination end-device. We demonstrate the effectiveness of our approach through simulations, numerical analysis, and experiments on ICS network traffic and topologies. Experimental results show that defclon is able to not only mitigate the effects of FDI attacks, but also to introduce different levels of uncertainty without degrading network performance, significantly increasing the difficulty for adversaries to gather information and launch attacks. | en |
| dc.language.iso | eng | en |
| dc.publisher | IEEE | en |
| dc.rights | © 2026 IEEE | en |
| dc.subject | Moving target defense (MTD) | en |
| dc.subject | industrial control systems | en |
| dc.subject | software-defined networking (SDN) | en |
| dc.subject | game theory | en |
| dc.subject | injection attacks | en |
| dc.title | Replica-Based Moving Target Defense Against Injection Attacks in Software-Defined Industrial Control Systems | es |
| dcterms.accessRights | http://purl.org/coar/access_right/c_f1cf | en |
| dcterms.source | IEEE Transactions on Dependable and Secure Computing | en |
| local.contributor.group | Análisis de datos y ciberseguridad | es |
| local.description.peerreviewed | true | en |
| local.description.publicationfirstpage | 5163 | en |
| local.description.publicationlastpage | 5180 | en |
| local.identifier.doi | https://doi.org/10.1109/TDSC.2026.3652652 | en |
| local.rights.publicationfee | APC | en |
| local.embargo.enddate | 1-01-21 | |
| local.contributor.otherinstitution | https://ror.org/00240q980 | es |
| local.source.details | Vol. 23 (3), May-June 2026 | en |
| oaire.format.mimetype | application/pdf | en |
| oaire.file | $DSPACE\assetstore | en |
| oaire.resourceType | http://purl.org/coar/resource_type/c_6501 | en |
| oaire.version | http://purl.org/coar/version/c_ab4af688f83e57aa | en |
| dc.unesco.tesauro | http://vocabularies.unesco.org/thesaurus/concept2214 | en |
| dc.unesco.tesauro | http://vocabularies.unesco.org/thesaurus/concept1147 | en |
| oaire.funderName | Gobierno Español | en |
| oaire.funderName | Gobierno Vasco | en |
| oaire.funderIdentifier | https://ror.org/00pz2fp31 / http://data.crossref.org/fundingdata/funder/10.13039/501100003086 | en |
| oaire.funderIdentifier | https://ror.org/038jjxj40 / http://data.crossref.org/fundingdata/funder/10.13039/501100010198 | en |
| oaire.fundingStream | Transmisiones 2024 | en |
| oaire.fundingStream | Ikertalde Convocatoria 2026-2029 | en |
| oaire.awardNumber | PLEC2024-011222 | en |
| oaire.awardNumber | IT1870-26 | en |
| oaire.awardTitle | TeCnologías disRuptivas para la protección, evaluación y operación segura de dIsposiTivos Industriales Conectados (CRITIC) | en |
| dc.unesco.clasificacion | http://skos.um.es/unesco6/120903 | en |