Leveraging Digital Twins and SIEM Integration for Incident Response in OT Environments
| dc.rights.license | Attribution-NonCommercial-NoDerivatives 4.0 International | * |
| dc.contributor.author | Zurutuza, Urko | |
| dc.contributor.other | Arias, Adei | |
| dc.contributor.other | Arellano, Cristóbal | |
| dc.contributor.other | Urbieta, Aitor | |
| dc.date.accessioned | 2024-10-09T14:35:13Z | |
| dc.date.available | 2024-10-09T14:35:13Z | |
| dc.date.issued | 2024 | |
| dc.identifier | https://hdl.handle.net/11441/160432 | en |
| dc.identifier.isbn | 978-84-09-62140-8 | en |
| dc.identifier.other | https://katalogoa.mondragon.edu/janium-bin/janium_login_opac.pl?find&ficha_no=177729 | en |
| dc.identifier.uri | https://hdl.handle.net/20.500.11984/6649 | |
| dc.description.abstract | The Industrial Internet of Things (IIoT) has digitally transformed industrial processes albeit at the expense of increasing exposure to new security threats. System Information and Event Management (SIEM) systems, typically designed for Information Technology (IT), may struggle with the high data volume, specialized security needs, and real-time response requirements of IIoT environments. Digital Twins (DT), virtual replicas of physical devices, offer a solution to these challenges. By integrating SIEM with DT, incident response can be automated in Operational Technology (OT) environments. This integration enhances real-time threat detection, response coordination and post-incident tasks to ensure the security and continuity of industrial operations. A use case and prototype validate the effectiveness of this approach and highlight its potential to strengthen OT security in the face of evolving threats. | en |
| dc.language.iso | eng | en |
| dc.publisher | Universidad de Sevilla | en |
| dc.rights | © 2024 The Authors | en |
| dc.rights.uri | http://creativecommons.org/licenses/by-nc-nd/4.0/ | * |
| dc.subject | IIoT | en |
| dc.subject | digital twins | en |
| dc.subject | threat detection | en |
| dc.subject | incident response | en |
| dc.subject | attack detection | en |
| dc.title | Leveraging Digital Twins and SIEM Integration for Incident Response in OT Environments | en |
| dcterms.accessRights | http://purl.org/coar/access_right/c_abf2 | en |
| dcterms.source | IX Jornadas Nacionales de Investigación en Ciberseguridad (JNIC) | en |
| local.contributor.group | Análisis de datos y ciberseguridad | es |
| local.description.peerreviewed | true | en |
| local.contributor.otherinstitution | https://ror.org/03hp1m080 | es |
| local.source.details | Pp. 294-301. Sevilla, 27-29 de Mayo, 2024 | |
| oaire.format.mimetype | application/pdf | en |
| oaire.file | $DSPACE\assetstore | en |
| oaire.resourceType | http://purl.org/coar/resource_type/c_c94f | en |
| oaire.version | http://purl.org/coar/version/c_970fb48d4fbd8a85 | en |
| oaire.funderName | Comisión Europea | en |
| oaire.funderName | Gobierno Vasco | en |
| oaire.funderIdentifier | https://ror.org/00k4n6c32 / http://data.crossref.org/fundingdata/funder/10.13039/501100000780 | en |
| oaire.funderIdentifier | https://ror.org/00pz2fp31 / http://data.crossref.org/fundingdata/funder/10.13039/501100003086 | en |
| oaire.fundingStream | H2020 | en |
| oaire.fundingStream | Elkartek 2023 | en |
| oaire.awardNumber | 101021911 | en |
| oaire.awardNumber | KK-2023-00085 | en |
| oaire.awardTitle | A Cognitive Detection System for Cybersecure Operational Technologies (IDUNN) | en |
| oaire.awardTitle | cyBErsecure industriAl Computing cONtinuum (BEACON) | en |
| oaire.awardURI | https://doi.org/10.3030/101021911 | en |
| oaire.awardURI | Sin información | en |
Item honetako fitxategiak
Item hau honako bilduma honetan/hauetan agertzen da
Bestelakorik adierazi ezean, itemaren baimena horrela deskribatzen da: Attribution-NonCommercial-NoDerivatives 4.0 International
