Security Orchestration with Explainability for Digital Twins-based Smart Systems

Tri Nguyen, An Ngoc Lam, Phu Nguyen, Linh Truong

Research output: Chapter in Book/Report/Conference proceedingConference article in proceedingsScientificpeer-review

112 Downloads (Pure)

Abstract

The Digital Twin (DT) paradigm has been largely adopted for many smart systems in various domains. Due to the heterogeneous and distributed nature of the physical twins, these systems increasingly incorporate disparate security tools, especially those based on service-based AI/ML capabilities. That presents numerous challenges in achieving a comprehensive understanding of security analytics and explainability in security operations carried out by ML-based security services, which require continuous monitoring and optimization to remain effective. This paper aims to support security service integration and automated analyses with enhanced explainability in DTs. We introduce a novel framework that unifies runtime contexts to facilitate security services unification and operation interpretation in security orchestration. We define a workflow and provide necessary services for generating security reports across physical and logical layers. Leveraging a centralized knowledge service, we let security analysts incorporate domain knowledge in automating incident reasoning and security enforcement at the logical layer. We demonstrate our explainability framework on a DT of an Industry 4.0 toy factory with two ML-based security services detecting network anomalies. Our experiments show a significant reduction in manual effort for orchestrating security incident analysis and mitigation.
Original languageEnglish
Title of host publicationProceedings - 2024 IEEE 48th Annual Computers, Software, and Applications Conference, COMPSAC 2024
EditorsHossain Shahriar, Hiroyuki Ohsaki, Moushumi Sharmin, Dave Towey, AKM Jahangir Alam Majumder, Yoshiaki Hori, Ji-Jiang Yang, Michiharu Takemoto, Nazmus Sakib, Ryohei Banno, Sheikh Iqbal Ahamed
PublisherIEEE
Pages1194-1203
Number of pages10
ISBN (Electronic)979-8-3503-7696-8
DOIs
Publication statusPublished - 26 Aug 2024
MoE publication typeA4 Conference publication
EventIEEE Annual Computer Software and Applications Conference - University of Osaka, Osaka, Japan
Duration: 2 Jul 20244 Jul 2024
https://ieeecompsac.computer.org/2024/

Conference

ConferenceIEEE Annual Computer Software and Applications Conference
Abbreviated titleCOMPSAC
Country/TerritoryJapan
CityOsaka
Period02/07/202404/07/2024
Internet address

Keywords

  • Digital Twin
  • Explainability
  • Machine Learning
  • Security Orchestration
  • Smart IoT Systems

Fingerprint

Dive into the research topics of 'Security Orchestration with Explainability for Digital Twins-based Smart Systems'. Together they form a unique fingerprint.

Cite this