2026-04-21T16:09:59Zhttps://ebiltegia.mondragon.edu/oai/request

oai:ebiltegia.mondragon.edu:20.500.11984/66492024-10-10T06:15:30Zcom_20.500.11984_1143col_20.500.11984_1148

00925njm 22002777a 4500 dc Zurutuza, Urko author 2024 The Industrial Internet of Things (IIoT) has digitally transformed industrial processes albeit at the expense of increasing exposure to new security threats. System Information and Event Management (SIEM) systems, typically designed for Information Technology (IT), may struggle with the high data volume, specialized security needs, and real-time response requirements of IIoT environments. Digital Twins (DT), virtual replicas of physical devices, offer a solution to these challenges. By integrating SIEM with DT, incident response can be automated in Operational Technology (OT) environments. This integration enhances real-time threat detection, response coordination and post-incident tasks to ensure the security and continuity of industrial operations. A use case and prototype validate the effectiveness of this approach and highlight its potential to strengthen OT security in the face of evolving threats. 978-84-09-62140-8 https://katalogoa.mondragon.edu/janium-bin/janium_login_opac.pl?find&ficha_no=177729 https://hdl.handle.net/20.500.11984/6649 IIoT digital twins threat detection incident response attack detection Leveraging Digital Twins and SIEM Integration for Incident Response in OT Environments