{"id":"https://openalex.org/W2295973000","doi":"https://doi.org/10.5220/0005510001780185","title":"A Framework for Incident Response in Industrial Control Systems","display_name":"A Framework for Incident Response in Industrial Control Systems","publication_year":2015,"publication_date":"2015-01-01","ids":{"openalex":"https://openalex.org/W2295973000","doi":"https://doi.org/10.5220/0005510001780185","mag":"2295973000"},"language":"en","primary_location":{"id":"doi:10.5220/0005510001780185","is_oa":true,"landing_page_url":"https://doi.org/10.5220/0005510001780185","pdf_url":null,"source":null,"license":"cc-by-nc-nd","license_id":"https://openalex.org/licenses/cc-by-nc-nd","version":"publishedVersion","is_accepted":true,"is_published":true,"raw_source_name":"Proceedings of the 12th International Conference on Security and Cryptography","raw_type":"proceedings-article"},"type":"article","indexed_in":["crossref"],"open_access":{"is_oa":true,"oa_status":"gold","oa_url":"https://doi.org/10.5220/0005510001780185","any_repository_has_fulltext":null},"authorships":[{"author_position":"first","author":{"id":"https://openalex.org/A5088046472","display_name":"Roman Schlegel","orcid":null},"institutions":[{"id":"https://openalex.org/I885143765","display_name":"ABB (Switzerland)","ror":"https://ror.org/00ks5vt51","country_code":"CH","type":"company","lineage":["https://openalex.org/I885143765"]}],"countries":["CH"],"is_corresponding":true,"raw_author_name":"Roman Schlegel","raw_affiliation_strings":["ABB Switzerland Ltd. and Corporate Research, Switzerland"],"affiliations":[{"raw_affiliation_string":"ABB Switzerland Ltd. and Corporate Research, Switzerland","institution_ids":["https://openalex.org/I885143765"]}]},{"author_position":"middle","author":{"id":"https://openalex.org/A5014838162","display_name":"Ana Hristova","orcid":null},"institutions":[{"id":"https://openalex.org/I885143765","display_name":"ABB (Switzerland)","ror":"https://ror.org/00ks5vt51","country_code":"CH","type":"company","lineage":["https://openalex.org/I885143765"]}],"countries":["CH"],"is_corresponding":false,"raw_author_name":"Ana Hristova","raw_affiliation_strings":["ABB Switzerland Ltd. and Corporate Research, Switzerland"],"affiliations":[{"raw_affiliation_string":"ABB Switzerland Ltd. and Corporate Research, Switzerland","institution_ids":["https://openalex.org/I885143765"]}]},{"author_position":"last","author":{"id":"https://openalex.org/A5033073619","display_name":"Sebastian Obermeier","orcid":null},"institutions":[{"id":"https://openalex.org/I885143765","display_name":"ABB (Switzerland)","ror":"https://ror.org/00ks5vt51","country_code":"CH","type":"company","lineage":["https://openalex.org/I885143765"]}],"countries":["CH"],"is_corresponding":false,"raw_author_name":"Sebastian Obermeier","raw_affiliation_strings":["ABB Switzerland Ltd. and Corporate Research, Switzerland"],"affiliations":[{"raw_affiliation_string":"ABB Switzerland Ltd. and Corporate Research, Switzerland","institution_ids":["https://openalex.org/I885143765"]}]}],"institutions":[],"countries_distinct_count":1,"institutions_distinct_count":3,"corresponding_author_ids":["https://openalex.org/A5088046472"],"corresponding_institution_ids":["https://openalex.org/I885143765"],"apc_list":null,"apc_paid":null,"fwci":0.3366,"has_fulltext":false,"cited_by_count":1,"citation_normalized_percentile":{"value":0.67604279,"is_in_top_1_percent":false,"is_in_top_10_percent":false},"cited_by_percentile_year":{"min":90,"max":94},"biblio":{"volume":null,"issue":null,"first_page":"178","last_page":"185"},"is_retracted":false,"is_paratext":false,"is_xpac":false,"primary_topic":{"id":"https://openalex.org/T10917","display_name":"Smart Grid Security and Resilience","score":0.9991000294685364,"subfield":{"id":"https://openalex.org/subfields/2207","display_name":"Control and Systems Engineering"},"field":{"id":"https://openalex.org/fields/22","display_name":"Engineering"},"domain":{"id":"https://openalex.org/domains/3","display_name":"Physical Sciences"}},"topics":[{"id":"https://openalex.org/T10917","display_name":"Smart Grid Security and Resilience","score":0.9991000294685364,"subfield":{"id":"https://openalex.org/subfields/2207","display_name":"Control and Systems Engineering"},"field":{"id":"https://openalex.org/fields/22","display_name":"Engineering"},"domain":{"id":"https://openalex.org/domains/3","display_name":"Physical Sciences"}},{"id":"https://openalex.org/T11241","display_name":"Advanced Malware Detection Techniques","score":0.9979000091552734,"subfield":{"id":"https://openalex.org/subfields/1711","display_name":"Signal Processing"},"field":{"id":"https://openalex.org/fields/17","display_name":"Computer Science"},"domain":{"id":"https://openalex.org/domains/3","display_name":"Physical Sciences"}},{"id":"https://openalex.org/T11512","display_name":"Anomaly Detection Techniques and Applications","score":0.9894999861717224,"subfield":{"id":"https://openalex.org/subfields/1702","display_name":"Artificial Intelligence"},"field":{"id":"https://openalex.org/fields/17","display_name":"Computer Science"},"domain":{"id":"https://openalex.org/domains/3","display_name":"Physical Sciences"}}],"keywords":[{"id":"https://openalex.org/keywords/industrial-control-system","display_name":"Industrial control system","score":0.7967897653579712},{"id":"https://openalex.org/keywords/computer-science","display_name":"Computer science","score":0.6582557559013367},{"id":"https://openalex.org/keywords/installation","display_name":"Installation","score":0.6169818043708801},{"id":"https://openalex.org/keywords/focus","display_name":"Focus (optics)","score":0.5922778844833374},{"id":"https://openalex.org/keywords/computer-security","display_name":"Computer security","score":0.5854432582855225},{"id":"https://openalex.org/keywords/control","display_name":"Control (management)","score":0.5627115964889526},{"id":"https://openalex.org/keywords/software","display_name":"Software","score":0.5247174501419067},{"id":"https://openalex.org/keywords/critical-infrastructure","display_name":"Critical infrastructure","score":0.5015745162963867},{"id":"https://openalex.org/keywords/controller","display_name":"Controller (irrigation)","score":0.4676382541656494},{"id":"https://openalex.org/keywords/security-controls","display_name":"Security controls","score":0.4505314826965332},{"id":"https://openalex.org/keywords/control-system","display_name":"Control system","score":0.4454687535762787},{"id":"https://openalex.org/keywords/baseline","display_name":"Baseline (sea)","score":0.4240979850292206},{"id":"https://openalex.org/keywords/malware","display_name":"Malware","score":0.4109300971031189},{"id":"https://openalex.org/keywords/engineering","display_name":"Engineering","score":0.2474258542060852},{"id":"https://openalex.org/keywords/operating-system","display_name":"Operating system","score":0.2206655740737915}],"concepts":[{"id":"https://openalex.org/C40071531","wikidata":"https://www.wikidata.org/wiki/Q2513962","display_name":"Industrial control system","level":3,"score":0.7967897653579712},{"id":"https://openalex.org/C41008148","wikidata":"https://www.wikidata.org/wiki/Q21198","display_name":"Computer science","level":0,"score":0.6582557559013367},{"id":"https://openalex.org/C146778888","wikidata":"https://www.wikidata.org/wiki/Q836862","display_name":"Installation","level":2,"score":0.6169818043708801},{"id":"https://openalex.org/C192209626","wikidata":"https://www.wikidata.org/wiki/Q190909","display_name":"Focus (optics)","level":2,"score":0.5922778844833374},{"id":"https://openalex.org/C38652104","wikidata":"https://www.wikidata.org/wiki/Q3510521","display_name":"Computer security","level":1,"score":0.5854432582855225},{"id":"https://openalex.org/C2775924081","wikidata":"https://www.wikidata.org/wiki/Q55608371","display_name":"Control (management)","level":2,"score":0.5627115964889526},{"id":"https://openalex.org/C2777904410","wikidata":"https://www.wikidata.org/wiki/Q7397","display_name":"Software","level":2,"score":0.5247174501419067},{"id":"https://openalex.org/C29852176","wikidata":"https://www.wikidata.org/wiki/Q373338","display_name":"Critical infrastructure","level":2,"score":0.5015745162963867},{"id":"https://openalex.org/C203479927","wikidata":"https://www.wikidata.org/wiki/Q5165939","display_name":"Controller (irrigation)","level":2,"score":0.4676382541656494},{"id":"https://openalex.org/C178148461","wikidata":"https://www.wikidata.org/wiki/Q1632136","display_name":"Security controls","level":3,"score":0.4505314826965332},{"id":"https://openalex.org/C17500928","wikidata":"https://www.wikidata.org/wiki/Q959968","display_name":"Control system","level":2,"score":0.4454687535762787},{"id":"https://openalex.org/C12725497","wikidata":"https://www.wikidata.org/wiki/Q810247","display_name":"Baseline (sea)","level":2,"score":0.4240979850292206},{"id":"https://openalex.org/C541664917","wikidata":"https://www.wikidata.org/wiki/Q14001","display_name":"Malware","level":2,"score":0.4109300971031189},{"id":"https://openalex.org/C127413603","wikidata":"https://www.wikidata.org/wiki/Q11023","display_name":"Engineering","level":0,"score":0.2474258542060852},{"id":"https://openalex.org/C111919701","wikidata":"https://www.wikidata.org/wiki/Q9135","display_name":"Operating system","level":1,"score":0.2206655740737915},{"id":"https://openalex.org/C154945302","wikidata":"https://www.wikidata.org/wiki/Q11660","display_name":"Artificial intelligence","level":1,"score":0.0},{"id":"https://openalex.org/C86803240","wikidata":"https://www.wikidata.org/wiki/Q420","display_name":"Biology","level":0,"score":0.0},{"id":"https://openalex.org/C127313418","wikidata":"https://www.wikidata.org/wiki/Q1069","display_name":"Geology","level":0,"score":0.0},{"id":"https://openalex.org/C120665830","wikidata":"https://www.wikidata.org/wiki/Q14620","display_name":"Optics","level":1,"score":0.0},{"id":"https://openalex.org/C6557445","wikidata":"https://www.wikidata.org/wiki/Q173113","display_name":"Agronomy","level":1,"score":0.0},{"id":"https://openalex.org/C111368507","wikidata":"https://www.wikidata.org/wiki/Q43518","display_name":"Oceanography","level":1,"score":0.0},{"id":"https://openalex.org/C119599485","wikidata":"https://www.wikidata.org/wiki/Q43035","display_name":"Electrical engineering","level":1,"score":0.0},{"id":"https://openalex.org/C121332964","wikidata":"https://www.wikidata.org/wiki/Q413","display_name":"Physics","level":0,"score":0.0}],"mesh":[],"locations_count":1,"locations":[{"id":"doi:10.5220/0005510001780185","is_oa":true,"landing_page_url":"https://doi.org/10.5220/0005510001780185","pdf_url":null,"source":null,"license":"cc-by-nc-nd","license_id":"https://openalex.org/licenses/cc-by-nc-nd","version":"publishedVersion","is_accepted":true,"is_published":true,"raw_source_name":"Proceedings of the 12th International Conference on Security and Cryptography","raw_type":"proceedings-article"}],"best_oa_location":{"id":"doi:10.5220/0005510001780185","is_oa":true,"landing_page_url":"https://doi.org/10.5220/0005510001780185","pdf_url":null,"source":null,"license":"cc-by-nc-nd","license_id":"https://openalex.org/licenses/cc-by-nc-nd","version":"publishedVersion","is_accepted":true,"is_published":true,"raw_source_name":"Proceedings of the 12th International Conference on Security and Cryptography","raw_type":"proceedings-article"},"sustainable_development_goals":[{"score":0.6299999952316284,"display_name":"Industry, innovation and infrastructure","id":"https://metadata.un.org/sdg/9"}],"awards":[],"funders":[],"has_content":{"grobid_xml":false,"pdf":false},"content_urls":null,"referenced_works_count":15,"referenced_works":["https://openalex.org/W1539275237","https://openalex.org/W1990754091","https://openalex.org/W2008105825","https://openalex.org/W2031397481","https://openalex.org/W2039427951","https://openalex.org/W2041078517","https://openalex.org/W2044723126","https://openalex.org/W2071030167","https://openalex.org/W2110817709","https://openalex.org/W2116256634","https://openalex.org/W2140515096","https://openalex.org/W2143046270","https://openalex.org/W2168154523","https://openalex.org/W2220095332","https://openalex.org/W4285719527"],"related_works":["https://openalex.org/W2614996178","https://openalex.org/W2783141896","https://openalex.org/W3019650871","https://openalex.org/W2355027202","https://openalex.org/W3141555268","https://openalex.org/W4401208620","https://openalex.org/W4205231409","https://openalex.org/W3000695982","https://openalex.org/W2911913141","https://openalex.org/W4225818200"],"abstract_inverted_index":{"Industrial":[0],"control":[1,6,107,184],"systems":[2],"are":[3,14,34],"used":[4],"to":[5,29,41,73,82,116,121,143,157],"and":[7,10,21,87,100,147,180],"supervise":[8],"plants":[9],"critical":[11],"infrastructures.":[12],"They":[13],"crucial":[15],"for":[16,102,175,181],"operation":[17],"of":[18,37,44,126,172],"many":[19],"industries":[20],"even":[22,56],"society":[23],"at":[24],"large.":[25],"However,":[26],"despite":[27],"efforts":[28],"secure":[30],"such":[31,60],"systems,":[32],"there":[33],"frequent":[35],"reports":[36],"incidents":[38,61,85,104,139],"that":[39,152],"lead":[40],"problems":[42],"because":[43],"human":[45],"error":[46],"(e.g.,":[47],"installing":[48],"unauthorized":[49],"software":[50],"on":[51,128,149],"a":[52,97,114,129,163],"mission-critical":[53],"machine)":[54],"or":[55,162],"cyber":[57],"attacks.":[58],"While":[59],"should":[62,79],"be":[63,80],"prevented":[64],"in":[65,105],"the":[66,124,150,158,170,173],"first":[67],"place,":[68],"it":[69],"is":[70,111],"not":[71],"feasible":[72],"achieve":[74],"100%":[75],"security;":[76],"therefore,":[77],"operators":[78],"prepared":[81],"deal":[83],"with":[84],"promptly":[86],"efficiently":[88,122],"if":[89],"they":[90],"occur.":[91],"In":[92],"this":[93],"paper,":[94],"we":[95],"present":[96],"general":[98],"methodology":[99,110,174],"framework":[101],"investigating":[103],"industrial":[106,178,183],"systems.":[108],"The":[109],"supported":[112],"by":[113,140],"tool":[115],"automate":[117],"an":[118,132,176,182],"investigation,":[119],"especially":[120],"determine":[123],"state":[125],"files":[127,146,151],"device":[130],"after":[131],"incident.":[133],"This":[134],"enables":[135],"faster":[136],"recovery":[137],"from":[138],"being":[141],"able":[142],"identify":[144],"suspicious":[145],"focus":[148],"have":[153],"been":[154],"modified":[155],"compared":[156],"initially":[159],"installed":[160],"files,":[161],"previously":[164],"taken":[165],"baseline.":[166],"An":[167],"evaluation":[168],"confirms":[169],"applicability":[171],"embedded":[177],"controller":[179],"system.":[185]},"counts_by_year":[{"year":2018,"cited_by_count":1}],"updated_date":"2025-11-06T03:46:38.306776","created_date":"2025-10-10T00:00:00"}