{"id":"https://openalex.org/W7125906196","doi":"https://doi.org/10.1109/smc58881.2025.11342867","title":"Security-by-Design with Cost-constrained Opacity Enforcement for Modbus TCP based Industrial Control Systems","display_name":"Security-by-Design with Cost-constrained Opacity Enforcement for Modbus TCP based Industrial Control Systems","publication_year":2025,"publication_date":"2025-10-05","ids":{"openalex":"https://openalex.org/W7125906196","doi":"https://doi.org/10.1109/smc58881.2025.11342867"},"language":"en","primary_location":{"id":"doi:10.1109/smc58881.2025.11342867","is_oa":false,"landing_page_url":"https://doi.org/10.1109/smc58881.2025.11342867","pdf_url":null,"source":null,"license":null,"license_id":null,"version":"publishedVersion","is_accepted":true,"is_published":true,"raw_source_name":"2025 IEEE International Conference on Systems, Man, and Cybernetics (SMC)","raw_type":"proceedings-article"},"type":"article","indexed_in":["crossref"],"open_access":{"is_oa":false,"oa_status":"closed","oa_url":null,"any_repository_has_fulltext":false},"authorships":[{"author_position":"first","author":{"id":"https://openalex.org/A5045294574","display_name":"Valeria Bonagura","orcid":"https://orcid.org/0009-0009-4346-2233"},"institutions":[{"id":"https://openalex.org/I119003972","display_name":"Roma Tre University","ror":"https://ror.org/05vf0dg29","country_code":"IT","type":"education","lineage":["https://openalex.org/I119003972"]}],"countries":["IT"],"is_corresponding":true,"raw_author_name":"Valeria Bonagura","raw_affiliation_strings":["University Roma Tre,Computer Science and Aeronautical Technologies Engineering,Department of Civil,Rome,Italy,00146"],"raw_orcid":null,"affiliations":[{"raw_affiliation_string":"University Roma Tre,Computer Science and Aeronautical Technologies Engineering,Department of Civil,Rome,Italy,00146","institution_ids":["https://openalex.org/I119003972"]}]},{"author_position":"middle","author":{"id":"https://openalex.org/A5001463495","display_name":"Graziana Cavone","orcid":"https://orcid.org/0000-0001-7102-4542"},"institutions":[{"id":"https://openalex.org/I119003972","display_name":"Roma Tre University","ror":"https://ror.org/05vf0dg29","country_code":"IT","type":"education","lineage":["https://openalex.org/I119003972"]}],"countries":["IT"],"is_corresponding":false,"raw_author_name":"Graziana Cavone","raw_affiliation_strings":["University Roma Tre,Computer Science and Aeronautical Technologies Engineering,Department of Civil,Rome,Italy,00146"],"raw_orcid":null,"affiliations":[{"raw_affiliation_string":"University Roma Tre,Computer Science and Aeronautical Technologies Engineering,Department of Civil,Rome,Italy,00146","institution_ids":["https://openalex.org/I119003972"]}]},{"author_position":"last","author":{"id":"https://openalex.org/A5122892564","display_name":"Federica Pascucci","orcid":null},"institutions":[{"id":"https://openalex.org/I119003972","display_name":"Roma Tre University","ror":"https://ror.org/05vf0dg29","country_code":"IT","type":"education","lineage":["https://openalex.org/I119003972"]}],"countries":["IT"],"is_corresponding":false,"raw_author_name":"Federica Pascucci","raw_affiliation_strings":["University Roma Tre,Computer Science and Aeronautical Technologies Engineering,Department of Civil,Rome,Italy,00146"],"raw_orcid":null,"affiliations":[{"raw_affiliation_string":"University Roma Tre,Computer Science and Aeronautical Technologies Engineering,Department of Civil,Rome,Italy,00146","institution_ids":["https://openalex.org/I119003972"]}]}],"institutions":[],"countries_distinct_count":1,"institutions_distinct_count":3,"corresponding_author_ids":["https://openalex.org/A5045294574"],"corresponding_institution_ids":["https://openalex.org/I119003972"],"apc_list":null,"apc_paid":null,"fwci":0.0,"has_fulltext":false,"cited_by_count":0,"citation_normalized_percentile":{"value":0.64017842,"is_in_top_1_percent":false,"is_in_top_10_percent":false},"cited_by_percentile_year":null,"biblio":{"volume":null,"issue":null,"first_page":"1340","last_page":"1345"},"is_retracted":false,"is_paratext":false,"is_xpac":false,"primary_topic":{"id":"https://openalex.org/T10917","display_name":"Smart Grid Security and Resilience","score":0.972599983215332,"subfield":{"id":"https://openalex.org/subfields/2207","display_name":"Control and Systems Engineering"},"field":{"id":"https://openalex.org/fields/22","display_name":"Engineering"},"domain":{"id":"https://openalex.org/domains/3","display_name":"Physical Sciences"}},"topics":[{"id":"https://openalex.org/T10917","display_name":"Smart Grid Security and Resilience","score":0.972599983215332,"subfield":{"id":"https://openalex.org/subfields/2207","display_name":"Control and Systems Engineering"},"field":{"id":"https://openalex.org/fields/22","display_name":"Engineering"},"domain":{"id":"https://openalex.org/domains/3","display_name":"Physical Sciences"}},{"id":"https://openalex.org/T11424","display_name":"Security and Verification in Computing","score":0.007199999876320362,"subfield":{"id":"https://openalex.org/subfields/1702","display_name":"Artificial Intelligence"},"field":{"id":"https://openalex.org/fields/17","display_name":"Computer Science"},"domain":{"id":"https://openalex.org/domains/3","display_name":"Physical Sciences"}},{"id":"https://openalex.org/T11125","display_name":"Petri Nets in System Modeling","score":0.0035000001080334187,"subfield":{"id":"https://openalex.org/subfields/1703","display_name":"Computational Theory and Mathematics"},"field":{"id":"https://openalex.org/fields/17","display_name":"Computer Science"},"domain":{"id":"https://openalex.org/domains/3","display_name":"Physical Sciences"}}],"keywords":[{"id":"https://openalex.org/keywords/modbus","display_name":"Modbus","score":0.8597999811172485},{"id":"https://openalex.org/keywords/encryption","display_name":"Encryption","score":0.6844000220298767},{"id":"https://openalex.org/keywords/probabilistic-logic","display_name":"Probabilistic logic","score":0.5218999981880188},{"id":"https://openalex.org/keywords/confidentiality","display_name":"Confidentiality","score":0.4422999918460846},{"id":"https://openalex.org/keywords/information-leakage","display_name":"Information leakage","score":0.4077000021934509},{"id":"https://openalex.org/keywords/industrial-control-system","display_name":"Industrial control system","score":0.3856000006198883},{"id":"https://openalex.org/keywords/control-system","display_name":"Control system","score":0.3330000042915344},{"id":"https://openalex.org/keywords/information-security","display_name":"Information security","score":0.32760000228881836},{"id":"https://openalex.org/keywords/enforcement","display_name":"Enforcement","score":0.32659998536109924}],"concepts":[{"id":"https://openalex.org/C2776666747","wikidata":"https://www.wikidata.org/wiki/Q1135322","display_name":"Modbus","level":3,"score":0.8597999811172485},{"id":"https://openalex.org/C148730421","wikidata":"https://www.wikidata.org/wiki/Q141090","display_name":"Encryption","level":2,"score":0.6844000220298767},{"id":"https://openalex.org/C41008148","wikidata":"https://www.wikidata.org/wiki/Q21198","display_name":"Computer science","level":0,"score":0.6243000030517578},{"id":"https://openalex.org/C49937458","wikidata":"https://www.wikidata.org/wiki/Q2599292","display_name":"Probabilistic logic","level":2,"score":0.5218999981880188},{"id":"https://openalex.org/C120314980","wikidata":"https://www.wikidata.org/wiki/Q180634","display_name":"Distributed computing","level":1,"score":0.4602999985218048},{"id":"https://openalex.org/C71745522","wikidata":"https://www.wikidata.org/wiki/Q2476929","display_name":"Confidentiality","level":2,"score":0.4422999918460846},{"id":"https://openalex.org/C2779201187","wikidata":"https://www.wikidata.org/wiki/Q2775060","display_name":"Information leakage","level":2,"score":0.4077000021934509},{"id":"https://openalex.org/C38652104","wikidata":"https://www.wikidata.org/wiki/Q3510521","display_name":"Computer security","level":1,"score":0.3935000002384186},{"id":"https://openalex.org/C40071531","wikidata":"https://www.wikidata.org/wiki/Q2513962","display_name":"Industrial control system","level":3,"score":0.3856000006198883},{"id":"https://openalex.org/C17500928","wikidata":"https://www.wikidata.org/wiki/Q959968","display_name":"Control system","level":2,"score":0.3330000042915344},{"id":"https://openalex.org/C527648132","wikidata":"https://www.wikidata.org/wiki/Q189900","display_name":"Information security","level":2,"score":0.32760000228881836},{"id":"https://openalex.org/C2779777834","wikidata":"https://www.wikidata.org/wiki/Q4202277","display_name":"Enforcement","level":2,"score":0.32659998536109924},{"id":"https://openalex.org/C31258907","wikidata":"https://www.wikidata.org/wiki/Q1301371","display_name":"Computer network","level":1,"score":0.32030001282691956},{"id":"https://openalex.org/C19768560","wikidata":"https://www.wikidata.org/wiki/Q320727","display_name":"Dependency (UML)","level":2,"score":0.31869998574256897},{"id":"https://openalex.org/C51823790","wikidata":"https://www.wikidata.org/wiki/Q504353","display_name":"Greedy algorithm","level":2,"score":0.3093000054359436},{"id":"https://openalex.org/C33884865","wikidata":"https://www.wikidata.org/wiki/Q1254335","display_name":"Cryptographic protocol","level":3,"score":0.3034999966621399},{"id":"https://openalex.org/C137822555","wikidata":"https://www.wikidata.org/wiki/Q2587068","display_name":"Information sensitivity","level":2,"score":0.29589998722076416},{"id":"https://openalex.org/C206345919","wikidata":"https://www.wikidata.org/wiki/Q20380951","display_name":"Resource (disambiguation)","level":2,"score":0.2953999936580658},{"id":"https://openalex.org/C527821871","wikidata":"https://www.wikidata.org/wiki/Q228502","display_name":"Access control","level":2,"score":0.29280000925064087},{"id":"https://openalex.org/C2775924081","wikidata":"https://www.wikidata.org/wiki/Q55608371","display_name":"Control (management)","level":2,"score":0.29249998927116394},{"id":"https://openalex.org/C2777042071","wikidata":"https://www.wikidata.org/wiki/Q6509304","display_name":"Leakage (economics)","level":2,"score":0.2816999852657318},{"id":"https://openalex.org/C105446022","wikidata":"https://www.wikidata.org/wiki/Q445962","display_name":"Legacy system","level":3,"score":0.275299996137619},{"id":"https://openalex.org/C77618280","wikidata":"https://www.wikidata.org/wiki/Q1155772","display_name":"Scheme (mathematics)","level":2,"score":0.2750999927520752},{"id":"https://openalex.org/C79403827","wikidata":"https://www.wikidata.org/wiki/Q3988","display_name":"Real-time computing","level":1,"score":0.2702000141143799},{"id":"https://openalex.org/C149635348","wikidata":"https://www.wikidata.org/wiki/Q193040","display_name":"Embedded system","level":1,"score":0.266400009393692},{"id":"https://openalex.org/C151201525","wikidata":"https://www.wikidata.org/wiki/Q177239","display_name":"Limit (mathematics)","level":2,"score":0.266400009393692},{"id":"https://openalex.org/C178489894","wikidata":"https://www.wikidata.org/wiki/Q8789","display_name":"Cryptography","level":2,"score":0.265500009059906},{"id":"https://openalex.org/C127413603","wikidata":"https://www.wikidata.org/wiki/Q11023","display_name":"Engineering","level":0,"score":0.2623000144958496},{"id":"https://openalex.org/C107645828","wikidata":"https://www.wikidata.org/wiki/Q12070446","display_name":"System model","level":2,"score":0.2596000134944916},{"id":"https://openalex.org/C2779662365","wikidata":"https://www.wikidata.org/wiki/Q5416694","display_name":"Event (particle physics)","level":2,"score":0.25839999318122864},{"id":"https://openalex.org/C180198813","wikidata":"https://www.wikidata.org/wiki/Q121182","display_name":"Information system","level":2,"score":0.2547999918460846},{"id":"https://openalex.org/C38369872","wikidata":"https://www.wikidata.org/wiki/Q7445009","display_name":"Security analysis","level":2,"score":0.2506999969482422},{"id":"https://openalex.org/C29202148","wikidata":"https://www.wikidata.org/wiki/Q287260","display_name":"Resource allocation","level":2,"score":0.25029999017715454}],"mesh":[],"locations_count":2,"locations":[{"id":"doi:10.1109/smc58881.2025.11342867","is_oa":false,"landing_page_url":"https://doi.org/10.1109/smc58881.2025.11342867","pdf_url":null,"source":null,"license":null,"license_id":null,"version":"publishedVersion","is_accepted":true,"is_published":true,"raw_source_name":"2025 IEEE International Conference on Systems, Man, and Cybernetics (SMC)","raw_type":"proceedings-article"},{"id":"pmh:oai:iris.uniroma3.it:11590/543044","is_oa":false,"landing_page_url":"https://hdl.handle.net/11590/543044","pdf_url":null,"source":{"id":"https://openalex.org/S4377196120","display_name":"Iris (Roma Tre University)","issn_l":null,"issn":null,"is_oa":false,"is_in_doaj":false,"is_core":false,"host_organization":"https://openalex.org/I119003972","host_organization_name":"Roma Tre University","host_organization_lineage":["https://openalex.org/I119003972"],"host_organization_lineage_names":[],"type":"repository"},"license":null,"license_id":null,"version":"submittedVersion","is_accepted":false,"is_published":false,"raw_source_name":null,"raw_type":"info:eu-repo/semantics/conferenceObject"}],"best_oa_location":null,"sustainable_development_goals":[],"awards":[],"funders":[],"has_content":{"pdf":false,"grobid_xml":false},"content_urls":null,"referenced_works_count":22,"referenced_works":["https://openalex.org/W1733713784","https://openalex.org/W2052255193","https://openalex.org/W2089944128","https://openalex.org/W2101008541","https://openalex.org/W2142367687","https://openalex.org/W2167392073","https://openalex.org/W2416559203","https://openalex.org/W2619874920","https://openalex.org/W2670040239","https://openalex.org/W2945445283","https://openalex.org/W2951987931","https://openalex.org/W3046984311","https://openalex.org/W3100324001","https://openalex.org/W3118356618","https://openalex.org/W4288429596","https://openalex.org/W4309941903","https://openalex.org/W4313894229","https://openalex.org/W4382315267","https://openalex.org/W4387870109","https://openalex.org/W4393965201","https://openalex.org/W4400233536","https://openalex.org/W4406257493"],"related_works":[],"abstract_inverted_index":{"In":[0],"the":[1,33,37,73,83,113,139,167],"era":[2],"of":[3,35,39,75,85,89],"Industry":[4],"5.0,":[5],"securing":[6],"Industrial":[7],"Control":[8],"Systems":[9,60],"(ICS)":[10],"is":[11,82,115,146],"increasingly":[12],"vital,":[13],"especially":[14],"when":[15],"relying":[16],"on":[17],"legacy":[18],"communication":[19,65],"protocols":[20],"like":[21],"Modbus":[22],"TCP":[23],"that":[24,56,99,131],"may":[25],"lack":[26],"built-in":[27],"protection":[28],"mechanisms.":[29],"This":[30,104],"paper":[31],"addresses":[32],"challenge":[34],"preserving":[36],"confidentiality":[38],"internal":[40],"system":[41],"states":[42],"from":[43],"potential":[44],"cyber":[45],"adversaries":[46],"through":[47],"a":[48,53,108,128,149],"security-by-design":[49],"framework.":[50],"We":[51],"propose":[52],"novel":[54],"approach":[55],"leverages":[57],"Discrete":[58],"Event":[59],"(DES)":[61],"theory":[62],"to":[63,71,79,107,116,138,160],"model":[64],"flows":[66],"and":[67],"applies":[68],"probabilistic":[69],"opacity":[70,118],"quantify":[72],"risk":[74],"state":[76],"disclosure.":[77],"Central":[78],"our":[80],"method":[81,145],"concept":[84],"selective":[86],"encryption:":[87],"instead":[88],"encrypting":[90],"all":[91],"messages,":[92],"we":[93,126],"strategically":[94],"encrypt":[95],"only":[96],"those":[97],"events":[98],"could":[100],"reveal":[101],"sensitive":[102],"information.":[103],"gives":[105],"rise":[106],"budget-constrained":[109],"optimization":[110],"problem,":[111],"where":[112],"goal":[114],"enforce":[117],"under":[119],"resource":[120],"limitations.":[121],"To":[122],"solve":[123],"this":[124],"efficiently,":[125],"develop":[127],"greedy":[129],"algorithm":[130],"maximizes":[132],"security":[133],"by":[134],"allocating":[135],"encryption":[136],"effort":[137],"most":[140],"critical":[141],"events.":[142],"The":[143],"proposed":[144],"validated":[147],"using":[148],"representative":[150],"example":[151],"featuring":[152],"two":[153],"distinct":[154],"query":[155],"types,":[156],"demonstrating":[157],"its":[158],"capability":[159],"limit":[161],"information":[162],"leakage":[163],"while":[164],"keeping":[165],"low":[166],"computational":[168],"overhead.":[169]},"counts_by_year":[],"updated_date":"2026-05-09T13:55:54.758798","created_date":"2026-01-29T00:00:00"}