{"status":"ok","message-type":"work","message-version":"1.0.0","message":{"indexed":{"date-parts":[[2025,10,1]],"date-time":"2025-10-01T15:37:09Z","timestamp":1759333029095,"version":"3.44.0"},"publisher-location":"New York, NY, USA","reference-count":22,"publisher":"ACM","license":[{"start":{"date-parts":[[2023,11,20]],"date-time":"2023-11-20T00:00:00Z","timestamp":1700438400000},"content-version":"vor","delay-in-days":0,"URL":"https:\/\/creativecommons.org\/licenses\/by\/4.0\/"}],"content-domain":{"domain":["dl.acm.org"],"crossmark-restriction":true},"short-container-title":[],"published-print":{"date-parts":[[2023,11,20]]},"DOI":"10.1145\/3689930.3695203","type":"proceedings-article","created":{"date-parts":[[2024,11,20]],"date-time":"2024-11-20T18:20:06Z","timestamp":1732126806000},"page":"87-95","update-policy":"https:\/\/doi.org\/10.1145\/crossmark-policy","source":"Crossref","is-referenced-by-count":1,"title":["Risk-Based Methodology for Optimal Cryptoperiod Calculation in ICSs Under Data Siphoning Attack"],"prefix":"10.1145","author":[{"ORCID":"https:\/\/orcid.org\/0000-0001-9921-0128","authenticated-orcid":false,"given":"Natalija","family":"Vlajic","sequence":"first","affiliation":[{"name":"EECS, Lassonde School of Engineering, York University, York University, Toronto, Ontario, Canada"}],"role":[{"role":"author","vocabulary":"crossref"}]},{"ORCID":"https:\/\/orcid.org\/0009-0006-2807-7490","authenticated-orcid":false,"given":"Gabriele","family":"Cianfarani","sequence":"additional","affiliation":[{"name":"EECS, Lassonde School of Engineering, York University, York University, Toronto, Ontario, Canada"}],"role":[{"role":"author","vocabulary":"crossref"}]}],"member":"320","published-online":{"date-parts":[[2024,11,20]]},"reference":[{"key":"e_1_3_2_1_1_1","volume-title":"Threat Advice Blog","author":"Brasfield D.","year":"2024","unstructured":"D. Brasfield, APT Attacks Targeting Government Entities, Threat Advice Blog, March 2024. https:\/\/www.threatadvice.com\/blog\/apt-attacks-targeting-government-entities"},{"key":"e_1_3_2_1_2_1","volume-title":"TechRepublic","author":"Okeke F.","year":"2022","unstructured":"F. Okeke, Top 6 security risks associated with industrial IoT, TechRepublic, November 2022. https:\/\/www.techrepublic.com\/article\/ top-security-risks-industrial-iot\/"},{"volume-title":"April","year":"2023","key":"e_1_3_2_1_3_1","unstructured":"Archon Secure Blog, What are the Risks Assocated with Industrial IoT (Industrial Internet of Things), April 2023. https:\/\/www.archonsecure.com\/blog\/what-are-the-risks-associated-with-industrial-iot"},{"key":"e_1_3_2_1_4_1","volume-title":"Industrial and Critical Infrastructure Security: Technical Analysis of Real-Life Security Incidents","author":"Makrakis G. M.","year":"2021","unstructured":"G. M. Makrakis et al., Industrial and Critical Infrastructure Security: Technical Analysis of Real-Life Security Incidents, IEEE Access, Volume 4, 2021."},{"key":"e_1_3_2_1_5_1","volume-title":"Mandiant Blog","author":"Al D. K.","year":"2022","unstructured":"D. K. Zafra et Al., 1 in 7 OT Ransomware Extortion Attacks Leak Critical Operational Technology Information, Mandiant Blog, January 2022. https:\/\/www.mandiant.com\/resources\/blog\/ransomware-extortion-ot-docs"},{"volume-title":"Communications Security Establishment of Government of Canada","year":"2023","key":"e_1_3_2_1_6_1","unstructured":"Canadian Centre for Cyber Security, The Cyber Threat to Canadas Oil and Gas Sector, Communications Security Establishment of Government of Canada, 2023. https:\/\/www.cyber.gc.ca\/en\/guidance\/ cyber-threat-canadas-oil-and-gas-sector"},{"key":"e_1_3_2_1_7_1","volume-title":"Pacific Northwest National Laboratory","author":"Castleberry J.","year":"2020","unstructured":"J. Castleberry et al., Attack Scenarios Relating to Army Facility-Related Control Systems: Quantifying the Cost to Secure and Cost Savings of the Armys FRCS Program, Pacific Northwest National Laboratory, January 2020. https:\/\/www.osti.gov\/servlets\/purl\/1814569"},{"key":"e_1_3_2_1_8_1","volume-title":"Dragois Intelligence Brief","author":"Hanrahan J.","year":"2024","unstructured":"J. Hanrahan, VOLTZITE Espionage Operations Targeting US Critical Systems, Dragois Intelligence Brief, February 2024."},{"key":"e_1_3_2_1_9_1","first-page":"2024","author":"Report ECOM","year":"2024","unstructured":"USTELECOM Report, Botnet and IoT Security Trends 2024, 2024. https:\/\/www.ustelecom.org\/research\/botnets2024\/","journal-title":"Botnet and IoT Security Trends"},{"key":"e_1_3_2_1_10_1","unstructured":"MITRE ATT&CK https:\/\/attack.mitre.org\/"},{"volume-title":"A Systematic Survey of Industrial Internet of Things Security: Requirements and Fog Computing Opportunities","author":"Tange K.","key":"e_1_3_2_1_11_1","unstructured":"K. Tange et al., A Systematic Survey of Industrial Internet of Things Security: Requirements and Fog Computing Opportunities, IEEE Communicaitons Surveys & Tutorials, Vol. 22, No. 4, 4th Quarter, 2020."},{"key":"e_1_3_2_1_12_1","volume-title":"September","author":"NIST","year":"2023","unstructured":"NIST SP 800--82r3, Guide to Operational Technology (OT) Security, September 2023."},{"key":"e_1_3_2_1_13_1","unstructured":"ISA\/IEC 62443 Industrial communication networks -- Network and system security February 2018"},{"key":"e_1_3_2_1_14_1","volume-title":"May","author":"NIST","year":"2020","unstructured":"NIST SP 800--57r5, Recommendation for Key Management, May 2020."},{"key":"e_1_3_2_1_15_1","unstructured":"OPC 10000--14 UA Part 14: PubSub https:\/\/reference.opcfoundation.org\/ Core\/Part14\/v105\/docs\/"},{"key":"e_1_3_2_1_16_1","doi-asserted-by":"publisher","DOI":"10.1016\/j.procs.2022.01.226"},{"volume-title":"February","year":"2024","key":"e_1_3_2_1_17_1","unstructured":"Mechatronics Canada, The Power of OPC-UA in Industrial Automation, February 2024. https:\/\/www.mechatronicscanada.ca\/latest-articles\/the-power-of-opc-ua-indu\/"},{"key":"e_1_3_2_1_18_1","volume-title":"6th International Conference on Systems and Informatics (ICSAI 2019","author":"Liu Z.","year":"2019","unstructured":"Z. Liu et al., OPC UA PubSub Implementation and Configuration, 6th International Conference on Systems and Informatics (ICSAI 2019), Shanghai, China, November 2019."},{"key":"e_1_3_2_1_19_1","doi-asserted-by":"publisher","DOI":"10.1016\/j.sysarc.2022.102797"},{"key":"e_1_3_2_1_20_1","unstructured":"National Vulnerability Database (NVD). https:\/\/nvd.nist.gov\/"},{"key":"e_1_3_2_1_21_1","doi-asserted-by":"publisher","DOI":"10.1145\/2899015.2899018"},{"key":"e_1_3_2_1_22_1","doi-asserted-by":"publisher","DOI":"10.1145\/357"}],"event":{"name":"CCS '24: ACM SIGSAC Conference on Computer and Communications Security","sponsor":["SIGSAC ACM Special Interest Group on Security, Audit, and Control"],"location":"Salt Lake City UT USA","acronym":"CCS '24"},"container-title":["Proceedings of the 2024 Workshop on Re-design Industrial Control Systems with Security"],"original-title":[],"link":[{"URL":"https:\/\/dl.acm.org\/doi\/10.1145\/3689930.3695203","content-type":"unspecified","content-version":"vor","intended-application":"text-mining"},{"URL":"https:\/\/dl.acm.org\/doi\/pdf\/10.1145\/3689930.3695203","content-type":"unspecified","content-version":"vor","intended-application":"similarity-checking"}],"deposited":{"date-parts":[[2025,8,23]],"date-time":"2025-08-23T18:21:17Z","timestamp":1755973277000},"score":1,"resource":{"primary":{"URL":"https:\/\/dl.acm.org\/doi\/10.1145\/3689930.3695203"}},"subtitle":[],"short-title":[],"issued":{"date-parts":[[2023,11,20]]},"references-count":22,"alternative-id":["10.1145\/3689930.3695203","10.1145\/3689930"],"URL":"https:\/\/doi.org\/10.1145\/3689930.3695203","relation":{},"subject":[],"published":{"date-parts":[[2023,11,20]]},"assertion":[{"value":"2024-11-20","order":3,"name":"published","label":"Published","group":{"name":"publication_history","label":"Publication History"}}]}}