{"id":"https://openalex.org/W2956202527","doi":"https://doi.org/10.1145/3327961.3329528","title":"Deriving Impact-driven Security Requirements and Monitoring Measures for Industrial IoT","display_name":"Deriving Impact-driven Security Requirements and Monitoring Measures for Industrial IoT","publication_year":2019,"publication_date":"2019-07-02","ids":{"openalex":"https://openalex.org/W2956202527","doi":"https://doi.org/10.1145/3327961.3329528","mag":"2956202527"},"language":"en","primary_location":{"id":"doi:10.1145/3327961.3329528","is_oa":false,"landing_page_url":"https://doi.org/10.1145/3327961.3329528","pdf_url":null,"source":null,"license":null,"license_id":null,"version":"publishedVersion","is_accepted":true,"is_published":true,"raw_source_name":"Proceedings of the 5th on Cyber-Physical System Security Workshop","raw_type":"proceedings-article"},"type":"conference-paper","indexed_in":["crossref"],"open_access":{"is_oa":false,"oa_status":"closed","oa_url":null,"any_repository_has_fulltext":false},"authorships":[{"author_position":"first","author":{"id":"https://openalex.org/A5054160140","display_name":"Gerhard Hansch","orcid":"https://orcid.org/0000-0001-6906-6495"},"institutions":[{"id":"https://openalex.org/I4210136922","display_name":"Fraunhofer Institute for Applied and Integrated Security","ror":"https://ror.org/03w0bbr97","country_code":"DE","type":"facility","lineage":["https://openalex.org/I4210136922","https://openalex.org/I4923324"]}],"countries":["DE"],"is_corresponding":false,"raw_author_name":"Gerhard Hansch","raw_affiliation_strings":["Fraunhofer AISEC, Garching, Germany"],"raw_orcid":null,"affiliations":[{"raw_affiliation_string":"Fraunhofer AISEC, Garching, Germany","institution_ids":["https://openalex.org/I4210136922"]}]},{"author_position":"middle","author":{"id":"https://openalex.org/A5006132999","display_name":"Peter Schneider","orcid":"https://orcid.org/0000-0002-9973-0681"},"institutions":[{"id":"https://openalex.org/I4210136922","display_name":"Fraunhofer Institute for Applied and Integrated Security","ror":"https://ror.org/03w0bbr97","country_code":"DE","type":"facility","lineage":["https://openalex.org/I4210136922","https://openalex.org/I4923324"]}],"countries":["DE"],"is_corresponding":false,"raw_author_name":"Peter Schneider","raw_affiliation_strings":["Fraunhofer AISEC, Garching, Germany"],"raw_orcid":null,"affiliations":[{"raw_affiliation_string":"Fraunhofer AISEC, Garching, Germany","institution_ids":["https://openalex.org/I4210136922"]}]},{"author_position":"last","author":{"id":"https://openalex.org/A5071525463","display_name":"Gerd Stefan Brost","orcid":"https://orcid.org/0000-0003-3702-4236"},"institutions":[{"id":"https://openalex.org/I4210136922","display_name":"Fraunhofer Institute for Applied and Integrated Security","ror":"https://ror.org/03w0bbr97","country_code":"DE","type":"facility","lineage":["https://openalex.org/I4210136922","https://openalex.org/I4923324"]}],"countries":["DE"],"is_corresponding":false,"raw_author_name":"Gerd Stefan Brost","raw_affiliation_strings":["Fraunhofer AISEC, Garching, Germany"],"raw_orcid":null,"affiliations":[{"raw_affiliation_string":"Fraunhofer AISEC, Garching, Germany","institution_ids":["https://openalex.org/I4210136922"]}]}],"institutions":[],"countries_distinct_count":1,"institutions_distinct_count":1,"corresponding_author_ids":[],"corresponding_institution_ids":["https://openalex.org/I4210136922"],"apc_list":null,"apc_paid":null,"fwci":null,"has_fulltext":false,"cited_by_count":10,"citation_normalized_percentile":null,"cited_by_percentile_year":null,"biblio":{"volume":null,"issue":null,"first_page":"37","last_page":"45"},"is_retracted":false,"is_paratext":false,"is_xpac":false,"primary_topic":{"id":"https://openalex.org/T10734","display_name":"Information and Cyber Security","score":0.9973000288009644,"subfield":{"id":"https://openalex.org/subfields/1710","display_name":"Information Systems"},"field":{"id":"https://openalex.org/fields/17","display_name":"Computer Science"},"domain":{"id":"https://openalex.org/domains/3","display_name":"Physical Sciences"}},"topics":[{"id":"https://openalex.org/T10734","display_name":"Information and Cyber Security","score":0.9973000288009644,"subfield":{"id":"https://openalex.org/subfields/1710","display_name":"Information Systems"},"field":{"id":"https://openalex.org/fields/17","display_name":"Computer Science"},"domain":{"id":"https://openalex.org/domains/3","display_name":"Physical Sciences"}},{"id":"https://openalex.org/T10917","display_name":"Smart Grid Security and Resilience","score":0.996399998664856,"subfield":{"id":"https://openalex.org/subfields/2207","display_name":"Control and Systems Engineering"},"field":{"id":"https://openalex.org/fields/22","display_name":"Engineering"},"domain":{"id":"https://openalex.org/domains/3","display_name":"Physical Sciences"}},{"id":"https://openalex.org/T11241","display_name":"Advanced Malware Detection Techniques","score":0.9894000291824341,"subfield":{"id":"https://openalex.org/subfields/1711","display_name":"Signal Processing"},"field":{"id":"https://openalex.org/fields/17","display_name":"Computer Science"},"domain":{"id":"https://openalex.org/domains/3","display_name":"Physical Sciences"}}],"keywords":[{"id":"https://openalex.org/keywords/computer-science","display_name":"Computer science","score":0.8048774003982544},{"id":"https://openalex.org/keywords/toolbox","display_name":"Toolbox","score":0.6647964119911194},{"id":"https://openalex.org/keywords/process","display_name":"Process (computing)","score":0.4802594482898712},{"id":"https://openalex.org/keywords/security-testing","display_name":"Security testing","score":0.466748982667923},{"id":"https://openalex.org/keywords/anomaly-detection","display_name":"Anomaly detection","score":0.4438210129737854},{"id":"https://openalex.org/keywords/security-domain","display_name":"Security domain","score":0.4413146376609802},{"id":"https://openalex.org/keywords/variety","display_name":"Variety (cybernetics)","score":0.42906653881073},{"id":"https://openalex.org/keywords/computer-security","display_name":"Computer security","score":0.42277830839157104},{"id":"https://openalex.org/keywords/intrusion-detection-system","display_name":"Intrusion detection system","score":0.4123538136482239},{"id":"https://openalex.org/keywords/risk-analysis","display_name":"Risk analysis (engineering)","score":0.340842068195343},{"id":"https://openalex.org/keywords/security-information-and-event-management","display_name":"Security information and event management","score":0.2799302041530609},{"id":"https://openalex.org/keywords/cloud-computing-security","display_name":"Cloud computing security","score":0.24052593111991882},{"id":"https://openalex.org/keywords/cloud-computing","display_name":"Cloud computing","score":0.1651274561882019},{"id":"https://openalex.org/keywords/data-mining","display_name":"Data mining","score":0.15134036540985107}],"concepts":[{"id":"https://openalex.org/C41008148","wikidata":"https://www.wikidata.org/wiki/Q21198","display_name":"Computer science","level":0,"score":0.8048774003982544},{"id":"https://openalex.org/C2777655017","wikidata":"https://www.wikidata.org/wiki/Q1501161","display_name":"Toolbox","level":2,"score":0.6647964119911194},{"id":"https://openalex.org/C98045186","wikidata":"https://www.wikidata.org/wiki/Q205663","display_name":"Process (computing)","level":2,"score":0.4802594482898712},{"id":"https://openalex.org/C195518309","wikidata":"https://www.wikidata.org/wiki/Q13424265","display_name":"Security testing","level":5,"score":0.466748982667923},{"id":"https://openalex.org/C739882","wikidata":"https://www.wikidata.org/wiki/Q3560506","display_name":"Anomaly detection","level":2,"score":0.4438210129737854},{"id":"https://openalex.org/C2780264999","wikidata":"https://www.wikidata.org/wiki/Q7445032","display_name":"Security domain","level":2,"score":0.4413146376609802},{"id":"https://openalex.org/C136197465","wikidata":"https://www.wikidata.org/wiki/Q1729295","display_name":"Variety (cybernetics)","level":2,"score":0.42906653881073},{"id":"https://openalex.org/C38652104","wikidata":"https://www.wikidata.org/wiki/Q3510521","display_name":"Computer security","level":1,"score":0.42277830839157104},{"id":"https://openalex.org/C35525427","wikidata":"https://www.wikidata.org/wiki/Q745881","display_name":"Intrusion detection system","level":2,"score":0.4123538136482239},{"id":"https://openalex.org/C112930515","wikidata":"https://www.wikidata.org/wiki/Q4389547","display_name":"Risk analysis (engineering)","level":1,"score":0.340842068195343},{"id":"https://openalex.org/C103377522","wikidata":"https://www.wikidata.org/wiki/Q3493999","display_name":"Security information and event management","level":4,"score":0.2799302041530609},{"id":"https://openalex.org/C184842701","wikidata":"https://www.wikidata.org/wiki/Q370563","display_name":"Cloud computing security","level":3,"score":0.24052593111991882},{"id":"https://openalex.org/C79974875","wikidata":"https://www.wikidata.org/wiki/Q483639","display_name":"Cloud computing","level":2,"score":0.1651274561882019},{"id":"https://openalex.org/C124101348","wikidata":"https://www.wikidata.org/wiki/Q172491","display_name":"Data mining","level":1,"score":0.15134036540985107},{"id":"https://openalex.org/C154945302","wikidata":"https://www.wikidata.org/wiki/Q11660","display_name":"Artificial intelligence","level":1,"score":0.0},{"id":"https://openalex.org/C111919701","wikidata":"https://www.wikidata.org/wiki/Q9135","display_name":"Operating system","level":1,"score":0.0},{"id":"https://openalex.org/C71924100","wikidata":"https://www.wikidata.org/wiki/Q11190","display_name":"Medicine","level":0,"score":0.0},{"id":"https://openalex.org/C199360897","wikidata":"https://www.wikidata.org/wiki/Q9143","display_name":"Programming language","level":1,"score":0.0}],"mesh":[],"locations_count":3,"locations":[{"id":"doi:10.1145/3327961.3329528","is_oa":false,"landing_page_url":"https://doi.org/10.1145/3327961.3329528","pdf_url":null,"source":null,"license":null,"license_id":null,"version":"publishedVersion","is_accepted":true,"is_published":true,"raw_source_name":"Proceedings of the 5th on Cyber-Physical System Security Workshop","raw_type":"proceedings-article"},{"id":"pmh:oai:fraunhofer.de:N-568418","is_oa":false,"landing_page_url":"http://publica.fraunhofer.de/documents/N-568418.html","pdf_url":null,"source":{"id":"https://openalex.org/S4306400801","display_name":"Publikationsdatenbank der Fraunhofer-Gesellschaft (Fraunhofer-Gesellschaft)","issn_l":null,"issn":null,"is_oa":false,"is_in_doaj":false,"is_core":false,"host_organization":"https://openalex.org/I4923324","host_organization_name":"Fraunhofer-Gesellschaft","host_organization_lineage":["https://openalex.org/I4923324"],"host_organization_lineage_names":[],"type":"repository"},"license":null,"license_id":null,"version":"submittedVersion","is_accepted":false,"is_published":false,"raw_source_name":"Fraunhofer AISEC","raw_type":"Conference Paper"},{"id":"pmh:oai:publica.fraunhofer.de:publica/405858","is_oa":false,"landing_page_url":"https://publica.fraunhofer.de/handle/publica/405858","pdf_url":null,"source":{"id":"https://openalex.org/S4306400318","display_name":"Fraunhofer-Publica (Fraunhofer-Gesellschaft)","issn_l":null,"issn":null,"is_oa":false,"is_in_doaj":false,"is_core":false,"host_organization":"https://openalex.org/I4923324","host_organization_name":"Fraunhofer-Gesellschaft","host_organization_lineage":["https://openalex.org/I4923324"],"host_organization_lineage_names":[],"type":"repository"},"license":null,"license_id":null,"version":"submittedVersion","is_accepted":false,"is_published":false,"raw_source_name":null,"raw_type":"conference paper"}],"best_oa_location":null,"sustainable_development_goals":[{"id":"https://metadata.un.org/sdg/9","display_name":"Industry, innovation and infrastructure","score":0.41999998688697815}],"awards":[],"funders":[{"id":"https://openalex.org/F4320321114","display_name":"Bundesministerium f\u00fcr Bildung und Forschung","ror":"https://ror.org/04pz7b180"}],"has_content":{"grobid_xml":false,"pdf":false},"content_urls":null,"referenced_works_count":30,"referenced_works":["https://openalex.org/W135995917","https://openalex.org/W173526475","https://openalex.org/W220935706","https://openalex.org/W1674877186","https://openalex.org/W2003530067","https://openalex.org/W2021702566","https://openalex.org/W2073903244","https://openalex.org/W2103239853","https://openalex.org/W2110837847","https://openalex.org/W2111404412","https://openalex.org/W2111695375","https://openalex.org/W2339825507","https://openalex.org/W2398854681","https://openalex.org/W2514558657","https://openalex.org/W2526826069","https://openalex.org/W2583174433","https://openalex.org/W2612675686","https://openalex.org/W2767810287","https://openalex.org/W2783885350","https://openalex.org/W2802699227","https://openalex.org/W2804966948","https://openalex.org/W2894066856","https://openalex.org/W2897104255","https://openalex.org/W2907946735","https://openalex.org/W2911292901","https://openalex.org/W2963972431","https://openalex.org/W3015433578","https://openalex.org/W3098072737","https://openalex.org/W3104365810","https://openalex.org/W4231333915"],"related_works":["https://openalex.org/W4205140848","https://openalex.org/W2068663075","https://openalex.org/W2978678743","https://openalex.org/W1548848213","https://openalex.org/W4379113489","https://openalex.org/W1974709825","https://openalex.org/W2095439143","https://openalex.org/W2467594283","https://openalex.org/W2123251735","https://openalex.org/W4321847835"],"abstract_inverted_index":{"The":[0,37,166],"emerging":[1],"Industrial":[2],"Internet":[3],"of":[4,39,53,77,81,93,121,205,235,254],"Things":[5],"(IIoT)":[6],"is":[7,69],"characterized":[8],"by":[9,208],"heterogeneous":[10],"systems,":[11,125],"loose":[12],"topologies,":[13],"cross-company":[14],"data":[15],"flows,":[16],"changing":[17],"entities,":[18],"and":[19,56,100,103,109,118,153,203,230,238],"high":[20],"cybersecurity":[21],"requirements.":[22],"This":[23],"development":[24],"makes":[25],"a":[26,40,111,132,142,173,224,233,243],"sound":[27],"security":[28,42,54,139,174,179,253],"architecture":[29,43],"an":[30,78,85,209],"even":[31],"more":[32],"pressing":[33],"matter":[34],"than":[35],"before.":[36],"design":[38],"valid":[41],"should":[44],"always":[45],"reflect":[46],"the":[47,51,66,73,91,122,127,183,200,215,218,251],"protection":[48,152],"needs,":[49],"enable":[50],"derivation":[52],"requirements,":[55],"ways":[57],"to":[58,90,115,136,149,161,249],"validate":[59,162],"their":[60,163,255],"effectiveness.":[61],"While":[62],"access":[63],"management":[64],"at":[65],"application":[67],"layer":[68],"well":[70,158],"established,":[71],"securing":[72],"underlying":[74],"network":[75],"layers":[76],"increasing":[79],"number":[80],"communication":[82],"links":[83],"remains":[84],"open":[86],"question.":[87],"Currently,":[88],"adapting":[89],"dynamics":[92],"rapid":[94],"technology":[95],"changes":[96],"requires":[97],"reiterating":[98],"time-":[99],"resource-intensive":[101],"threat":[102],"risk":[104],"analyses.":[105],"Therefore,":[106],"we":[107,198,222,241],"introduce":[108],"apply":[110],"lightweight,":[112],"graph-based":[113],"process":[114],"create":[116],"easy-to-build":[117],"machine-readable":[119],"models":[120],"reviewed":[123],"IIoT":[124,184,256],"highlighting":[126],"assets":[128],"they":[129],"contain.":[130],"Such":[131],"model":[133],"allows":[134,188],"us":[135],"derive":[137],"abstract":[138],"requirements":[140,148,231],"in":[141,169],"semi-automatic":[143],"way.":[144],"We":[145],"use":[146],"these":[147,177],"propose":[150],"appropriate":[151],"advanced":[154],"monitoring":[155,206,236],"measures":[156,237],"as":[157,159],"methods":[160],"effective":[164],"implementation.":[165],"catalog":[167,216],"provided":[168],"this":[170],"paper":[171],"represents":[172],"toolbox":[175],"for":[176,182,189,192],"two":[178],"layers,":[180],"tailored":[181],"domain.":[185],"Finally,":[186],"it":[187],"deriving":[190],"rules":[191,207],"current":[193],"anomaly":[194],"detection":[195],"solutions.":[196],"Thus,":[197],"support":[199],"often-laborious":[201],"definition":[202],"prioritization":[204],"impact-based":[210],"automated":[211],"approach.":[212],"By":[213],"connecting":[214],"with":[217],"lightweight":[219],"impact":[220],"analysis,":[221],"provide":[223,242],"framework":[225],"that":[226,246],"dynamically":[227],"derives":[228],"recommendations":[229],"from":[232],"variety":[234],"techniques.":[239],"Thereby":[240],"general":[244],"methodology":[245],"helps":[247],"operators":[248],"strengthen":[250],"overall":[252],"systems.":[257]},"counts_by_year":[{"year":2026,"cited_by_count":1},{"year":2024,"cited_by_count":1},{"year":2023,"cited_by_count":1},{"year":2022,"cited_by_count":3},{"year":2021,"cited_by_count":2},{"year":2020,"cited_by_count":1},{"year":2019,"cited_by_count":1}],"updated_date":"2026-07-15T18:14:33.161393","created_date":"2025-10-10T00:00:00"}
