Security Orchestration with Explainability for Digital Twins-based Smart Systems
dc.contributor | Aalto-yliopisto | fi |
dc.contributor | Aalto University | en |
dc.contributor.author | Nguyen, Tri | en_US |
dc.contributor.author | Ngoc Lam, An | en_US |
dc.contributor.author | Nguyen, Phu | en_US |
dc.contributor.author | Truong, Linh | en_US |
dc.contributor.department | Department of Computer Science | en |
dc.contributor.editor | Shahriar, Hossain | en_US |
dc.contributor.editor | Ohsaki, Hiroyuki | en_US |
dc.contributor.editor | Sharmin, Moushumi | en_US |
dc.contributor.editor | Towey, Dave | en_US |
dc.contributor.editor | Majumder, AKM Jahangir Alam | en_US |
dc.contributor.editor | Hori, Yoshiaki | en_US |
dc.contributor.editor | Yang, Ji-Jiang | en_US |
dc.contributor.editor | Takemoto, Michiharu | en_US |
dc.contributor.editor | Sakib, Nazmus | en_US |
dc.contributor.editor | Banno, Ryohei | en_US |
dc.contributor.editor | Ahamed, Sheikh Iqbal | en_US |
dc.contributor.groupauthor | Professorship Truong L. | en |
dc.contributor.groupauthor | Computer Science Professors | en |
dc.contributor.groupauthor | Computer Science - Computing Systems (ComputingSystems) | en |
dc.contributor.organization | SINTEF | en_US |
dc.date.accessioned | 2024-10-02T06:46:03Z | |
dc.date.available | 2024-10-02T06:46:03Z | |
dc.date.issued | 2024-08-26 | en_US |
dc.description.abstract | The Digital Twin (DT) paradigm has been largely adopted for many smart systems in various domains. Due to the heterogeneous and distributed nature of the physical twins, these systems increasingly incorporate disparate security tools, especially those based on service-based AI/ML capabilities. That presents numerous challenges in achieving a comprehensive understanding of security analytics and explainability in security operations carried out by ML-based security services, which require continuous monitoring and optimization to remain effective. This paper aims to support security service integration and automated analyses with enhanced explainability in DTs. We introduce a novel framework that unifies runtime contexts to facilitate security services unification and operation interpretation in security orchestration. We define a workflow and provide necessary services for generating security reports across physical and logical layers. Leveraging a centralized knowledge service, we let security analysts incorporate domain knowledge in automating incident reasoning and security enforcement at the logical layer. We demonstrate our explainability framework on a DT of an Industry 4.0 toy factory with two ML-based security services detecting network anomalies. Our experiments show a significant reduction in manual effort for orchestrating security incident analysis and mitigation. | en |
dc.description.version | Peer reviewed | en |
dc.format.extent | 10 | |
dc.format.mimetype | application/pdf | en_US |
dc.identifier.citation | Nguyen, T, Ngoc Lam, A, Nguyen, P & Truong, L 2024, Security Orchestration with Explainability for Digital Twins-based Smart Systems . in H Shahriar, H Ohsaki, M Sharmin, D Towey, AKM J A Majumder, Y Hori, J-J Yang, M Takemoto, N Sakib, R Banno & S I Ahamed (eds), Proceedings - 2024 IEEE 48th Annual Computers, Software, and Applications Conference, COMPSAC 2024 . IEEE, pp. 1194-1203, IEEE Annual Computer Software and Applications Conference, Osaka, Japan, 02/07/2024 . https://doi.org/10.1109/COMPSAC61105.2024.00159 | en |
dc.identifier.doi | 10.1109/COMPSAC61105.2024.00159 | en_US |
dc.identifier.isbn | 979-8-3503-7696-8 | |
dc.identifier.other | PURE UUID: 7d851ef9-4240-4d4c-a09d-8496c933ebba | en_US |
dc.identifier.other | PURE ITEMURL: https://research.aalto.fi/en/publications/7d851ef9-4240-4d4c-a09d-8496c933ebba | en_US |
dc.identifier.other | PURE LINK: http://www.scopus.com/inward/record.url?scp=85204030078&partnerID=8YFLogxK | en_US |
dc.identifier.other | PURE FILEURL: https://research.aalto.fi/files/159919166/submit_compsac2024149909.pdf | en_US |
dc.identifier.uri | https://aaltodoc.aalto.fi/handle/123456789/131065 | |
dc.identifier.urn | URN:NBN:fi:aalto-202410026605 | |
dc.language.iso | en | en |
dc.relation.ispartof | Proceedings - 2024 IEEE 48th Annual Computers, Software, and Applications Conference, COMPSAC 2024 | |
dc.relation.ispartof | pp. 1194-1203 | |
dc.relation.ispartof | IEEE Annual Computer Software and Applications Conference | en |
dc.rights | openAccess | en |
dc.subject.keyword | Digital Twin | en_US |
dc.subject.keyword | Explainability | en_US |
dc.subject.keyword | Machine Learning | en_US |
dc.subject.keyword | Security Orchestration | en_US |
dc.subject.keyword | Smart IoT Systems | en_US |
dc.title | Security Orchestration with Explainability for Digital Twins-based Smart Systems | en |
dc.type | A4 Artikkeli konferenssijulkaisussa | fi |
dc.type.version | acceptedVersion |