{"status":"ok","message-type":"work","message-version":"1.0.0","message":{"indexed":{"date-parts":[[2026,2,1]],"date-time":"2026-02-01T02:55:17Z","timestamp":1769914517771,"version":"3.49.0"},"reference-count":66,"publisher":"Springer Science and Business Media LLC","issue":"1","license":[{"start":{"date-parts":[[2021,4,2]],"date-time":"2021-04-02T00:00:00Z","timestamp":1617321600000},"content-version":"tdm","delay-in-days":0,"URL":"https:\/\/creativecommons.org\/licenses\/by\/4.0"},{"start":{"date-parts":[[2021,4,2]],"date-time":"2021-04-02T00:00:00Z","timestamp":1617321600000},"content-version":"vor","delay-in-days":0,"URL":"https:\/\/creativecommons.org\/licenses\/by\/4.0"}],"content-domain":{"domain":["link.springer.com"],"crossmark-restriction":false},"short-container-title":["Cybersecur"],"abstract":"<jats:title>Abstract<\/jats:title><jats:p>Cyber-physical systems (CPSs) in critical infrastructure face serious threats of attack, motivating research into a wide variety of defence mechanisms such as those that monitor for violations of<jats:italic>invariants<\/jats:italic>, i.e. logical properties over sensor and actuator states that should always be true. Many approaches for identifying invariants attempt to do so automatically, typically using data logs, but these can miss valid system properties if relevant behaviours are not well-represented in the data. Furthermore, as the CPS is already built, resolving any design flaws or weak points identified through this process is costly. In this paper, we propose a systematic method for deriving invariants from an analysis of a CPS<jats:italic>design<\/jats:italic>, based on principles of the axiomatic design methodology from design science. Our method iteratively decomposes a high-level CPS design to identify sets of dependent<jats:italic>design parameters<\/jats:italic>(i.e. sensors and actuators), allowing for invariants and invariant checkers to be derived in parallel to the implementation of the system. We apply our method to the designs of two CPS testbeds, SWaT and WADI, deriving a suite of invariant checkers that are able to detect a variety of single- and multi-stage attacks without any false positives. Finally, we reflect on the strengths and weaknesses of our approach, how it can be complemented by other defence mechanisms, and how it could help engineers to identify and resolve weak points in a design before the controllers of a CPS are implemented.<\/jats:p>","DOI":"10.1186\/s42400-021-00069-7","type":"journal-article","created":{"date-parts":[[2021,4,1]],"date-time":"2021-04-01T23:06:14Z","timestamp":1617318374000},"update-policy":"https:\/\/doi.org\/10.1007\/springer_crossmark_policy","source":"Crossref","is-referenced-by-count":15,"title":["Deriving invariant checkers for critical infrastructure using axiomatic design principles"],"prefix":"10.1186","volume":"4","author":[{"given":"Cheah Huei","family":"Yoong","sequence":"first","affiliation":[],"role":[{"role":"author","vocabulary":"crossref"}]},{"given":"Venkata Reddy","family":"Palleti","sequence":"additional","affiliation":[],"role":[{"role":"author","vocabulary":"crossref"}]},{"given":"Rajib Ranjan","family":"Maiti","sequence":"additional","affiliation":[],"role":[{"role":"author","vocabulary":"crossref"}]},{"given":"Arlindo","family":"Silva","sequence":"additional","affiliation":[],"role":[{"role":"author","vocabulary":"crossref"}]},{"given":"Christopher M","family":"Poskitt","sequence":"additional","affiliation":[],"role":[{"role":"author","vocabulary":"crossref"}]}],"member":"297","published-online":{"date-parts":[[2021,4,2]]},"reference":[{"key":"69_CR1","doi-asserted-by":"publisher","unstructured":"Abera, T, Asokan N, Davi L, Ekberg J, Nyman T, Paverd A, Sadeghi A, Tsudik G (2016) C-FLAT: control-flow attestation for embedded systems software In: Proc. ACM SIGSAC Conference on Computer and Communications Security (CCS 2016), 743\u2013754.. ACM. https:\/\/doi.org\/10.1145\/2976749.2978358.","DOI":"10.1145\/2976749.2978358"},{"key":"69_CR2","doi-asserted-by":"publisher","first-page":"30","DOI":"10.1109\/ICCPS48487.2020.00011","volume-title":"Proc. ACM\/IEEE International Conference on Cyber-Physical Systems (ICCPS 2020)","author":"S Adepu","year":"2020","unstructured":"Adepu, S, Brasser F, Garcia L, Rodler M, Davi L, Sadeghi A, Zonouz S (2020) Control behavior integrity for distributed cyber-physical systems In: Proc. ACM\/IEEE International Conference on Cyber-Physical Systems (ICCPS 2020), 30\u201340.. IEEE, New York."},{"key":"69_CR3","doi-asserted-by":"publisher","first-page":"91","DOI":"10.1007\/978-3-319-33630-5_7","volume-title":"Proc. International Conference on ICT Systems Security and Privacy Protection (SEC 2016), IFIP AICT, vol. 471","author":"S Adepu","year":"2016","unstructured":"Adepu, S, Mathur A (2016) Using process invariants to detect cyber attacks on a water treatment system In: Proc. International Conference on ICT Systems Security and Privacy Protection (SEC 2016), IFIP AICT, vol. 471, 91\u2013104.. Springer, Cham."},{"key":"69_CR4","doi-asserted-by":"publisher","first-page":"449","DOI":"10.1145\/2897845.2897855","volume-title":"Proc. ACM Asia Conference on Computer and Communications Security (AsiaCCS 2016)","author":"S Adepu","year":"2016","unstructured":"Adepu, S, Mathur A (2016) Distributed detection of single-stage multipoint cyber attacks in a water treatment plant In: Proc. ACM Asia Conference on Computer and Communications Security (AsiaCCS 2016), 449\u2013460.. ACM, New York."},{"issue":"1","key":"69_CR5","doi-asserted-by":"publisher","first-page":"86","DOI":"10.1109\/TDSC.2018.2875008","volume":"18","author":"S Adepu","year":"2021","unstructured":"Adepu, S, Mathur A (2021) Distributed attack detection in a water treatment plant: Method and case study. IEEE Trans Dependable Secure Comput 18(1):86\u201399.","journal-title":"IEEE Trans Dependable Secure Comput"},{"key":"69_CR6","doi-asserted-by":"crossref","unstructured":"Adepu, S, Mathur A (2016) Generalized attacker and attack models for cyber physical systems In: Proc. IEEE Annual Computer Software and Applications Conference (COMPSAC 2016), 283\u2013292.. IEEE Computer Society.","DOI":"10.1109\/COMPSAC.2016.122"},{"key":"69_CR7","doi-asserted-by":"publisher","first-page":"24","DOI":"10.1145\/3264888.3264893","volume-title":"Proc. Workshop on Cyber-Physical Systems Security and PrivaCy (CPS-SPC 2018)","author":"E Aggarwal","year":"2018","unstructured":"Aggarwal, E, Karimibiuki M, Pattabiraman K, Ivanov A (2018) CORGIDS: A correlation-based generic intrusion detection system In: Proc. Workshop on Cyber-Physical Systems Security and PrivaCy (CPS-SPC 2018), 24\u201335.. ACM, New York."},{"key":"69_CR8","doi-asserted-by":"publisher","first-page":"483","DOI":"10.1145\/3196494.3196532","volume-title":"Proc. Asia Conference on Computer and Communications Security (AsiaCCS 2018)","author":"C Ahmed","year":"2018","unstructured":"Ahmed, C, Ochoa M, Zhou J, Mathur A, Qadeer R, Murguia C, Ruths J (2018) NoisePrint: Attack detection using sensor and process noise fingerprint in cyber physical systems In: Proc. Asia Conference on Computer and Communications Security (AsiaCCS 2018), 483\u2013497.. ACM, New York."},{"key":"69_CR9","doi-asserted-by":"publisher","first-page":"25","DOI":"10.1145\/3055366.3055375","volume-title":"Proc. International Workshop on Cyber-Physical Systems for Smart Water Networks (CySWATER@CPSWeek 2017)","author":"C Ahmed","year":"2017","unstructured":"Ahmed, C, Palleti V, Mathur A (2017) WADI: a water distribution testbed for research in the design of secure cyber physical systems In: Proc. International Workshop on Cyber-Physical Systems for Smart Water Networks (CySWATER@CPSWeek 2017), 25\u201328.. ACM, New York."},{"key":"69_CR10","doi-asserted-by":"publisher","first-page":"23","DOI":"10.1145\/3384941.3409588","volume-title":"Proc. ACM Workshop on Cyber-Physical System Security (CPSS 2020)","author":"C Ahmed","year":"2020","unstructured":"Ahmed, C, R G, Mathur A (2020) Challenges in machine learning based approaches for real-time anomaly detection in industrial control systems In: Proc. ACM Workshop on Cyber-Physical System Security (CPSS 2020), 23\u201329.. ACM, New York."},{"key":"69_CR11","doi-asserted-by":"crossref","first-page":"566","DOI":"10.1145\/3274694.3274748","volume-title":"Proc. Annual Computer Security Applications Conference (ACSAC 2018)","author":"C Ahmed","year":"2018","unstructured":"Ahmed, C, Zhou J, Mathur A (2018) Noise matters: Using sensor and process noise fingerprint to detect stealthy cyber attacks and authenticate sensors in CPS In: Proc. Annual Computer Security Applications Conference (ACSAC 2018), 566\u2013581.. ACM, New York."},{"issue":"4","key":"69_CR12","first-page":"18","volume":"3","author":"T Alves","year":"2004","unstructured":"Alves, T, Felton D (2004) TrustZone: Integrated hardware and software security. ARM white paper 3(4):18\u201324.","journal-title":"ARM white paper"},{"key":"69_CR13","doi-asserted-by":"publisher","first-page":"817","DOI":"10.1145\/3243734.3243781","volume-title":"Proc. ACM SIGSAC Conference on Computer and Communications Security (CCS 2018)","author":"W Aoudi","year":"2018","unstructured":"Aoudi, W, Iturbe M, Almgren M (2018) Truth will out: Departure-based process-level detection of stealthy attacks on control systems In: Proc. ACM SIGSAC Conference on Computer and Communications Security (CCS 2018), 817\u2013831.. ACM, New York."},{"issue":"5","key":"69_CR14","doi-asserted-by":"publisher","first-page":"2693","DOI":"10.1109\/TII.2017.2656905","volume":"13","author":"O Beg","year":"2017","unstructured":"Beg, O, Johnson T, Davoudi A (2017) Detection of false-data injection attacks in cyber-physical DC microgrids. IEEE Trans Ind Inform 13(5):2693\u20132703.","journal-title":"IEEE Trans Ind Inform"},{"key":"69_CR15","doi-asserted-by":"crossref","unstructured":"Bondy, J, Murty U (2008) Graph Theory. Springer.","DOI":"10.1007\/978-1-84628-970-5"},{"key":"69_CR16","unstructured":"Breiman, L, Friedman J, Stone C, Olshen R (1984) Classification and Regression Trees. Wadsworth and Brooks."},{"key":"69_CR17","first-page":"355","volume-title":"Proc. ACM Asia Conference on Computer and Communications Security (AsiaCCS 2011)","author":"A C\u00e1rdenas","year":"2011","unstructured":"C\u00e1rdenas, A, Amin S, Lin Z, Huang Y, Huang C, Sastry S (2011) Attacks against process control systems: risk assessment, detection, and response In: Proc. ACM Asia Conference on Computer and Communications Security (AsiaCCS 2011), 355\u2013366.. ACM, New York."},{"key":"69_CR18","first-page":"1298","volume-title":"Proc. IEEE International Conference On Machine Learning And Applications (ICMLA 2019)","author":"M Carrasco","year":"2019","unstructured":"Carrasco, M, Wu C (2019) An unsupervised framework for anomaly detection in a water treatment system In: Proc. IEEE International Conference On Machine Learning And Applications (ICMLA 2019), 1298\u20131305.. IEEE, New York."},{"key":"69_CR19","first-page":"315","volume-title":"Proc. Annual Computer Security Applications Conference (ACSAC 2017)","author":"L Cheng","year":"2017","unstructured":"Cheng, L, Tian K, Yao D (2017) Orpheus: Enforcing cyber-physical execution semantics to defend against data-oriented attacks In: Proc. Annual Computer Security Applications Conference (ACSAC 2017), 315\u2013326.. ACM, New York."},{"key":"69_CR20","doi-asserted-by":"publisher","first-page":"962","DOI":"10.1109\/ASE.2019.00093","volume-title":"Proc. IEEE\/ACM International Conference on Automated Software Engineering (ASE 2019)","author":"Y Chen","year":"2019","unstructured":"Chen, Y, Poskitt C, Sun J, Adepu S, Zhang F (2019) Learning-guided network fuzzing for testing cyber-physical system defences In: Proc. IEEE\/ACM International Conference on Automated Software Engineering (ASE 2019), 962\u2013973.. IEEE Computer Society, New York."},{"key":"69_CR21","first-page":"155","volume-title":"Proc. International Symposium on Formal Methods (FM 2016), LNCS","author":"Y Chen","year":"2016","unstructured":"Chen, Y, Poskitt C, Sun J (2016) Towards learning and verifying invariants of cyber-physical systems by code mutation In: Proc. International Symposium on Formal Methods (FM 2016), LNCS, 155\u2013163.. Springer, Cham."},{"key":"69_CR22","doi-asserted-by":"publisher","first-page":"648","DOI":"10.1109\/SP.2018.00016","volume-title":"Proc. IEEE Symposium on Security and Privacy (S&P 2018)","author":"Y Chen","year":"2018","unstructured":"Chen, Y, Poskitt C, Sun J (2018) Learning from mutants: Using code mutation to learn and monitor invariants of a cyber-physical system In: Proc. IEEE Symposium on Security and Privacy (S&P 2018), 648\u2013660.. IEEE Computer Society, New York."},{"key":"69_CR23","volume-title":"Proc. ACM SIGSOFT International Symposium on Software Testing and Analysis (ISSTA 2020)","author":"Y Chen","year":"2020","unstructured":"Chen, Y, Xuan B, Poskitt C, Sun J, Zhang F (2020) Active fuzzing for testing and securing cyber-physical systems In: Proc. ACM SIGSOFT International Symposium on Software Testing and Analysis (ISSTA 2020).. ACM, New York."},{"key":"69_CR24","doi-asserted-by":"publisher","first-page":"801","DOI":"10.1145\/3243734.3243752","volume-title":"Proc. ACM SIGSAC Conference on Computer and Communications Security (CCS 2018)","author":"H Choi","year":"2018","unstructured":"Choi, H, Lee W, Aafer Y, Fei F, Tu Z, Zhang X, Xu D, Xinyan X (2018) Detecting attacks against robotic vehicles: A control invariant approach In: Proc. ACM SIGSAC Conference on Computer and Communications Security (CCS 2018), 801\u2013816.. ACM, New York."},{"key":"69_CR25","doi-asserted-by":"publisher","first-page":"1","DOI":"10.1016\/j.cose.2020.101935","volume":"96","author":"T Das","year":"2020","unstructured":"Das, T, Adepu S, Zhou J (2020) Anomaly detection in industrial control systems using logical analysis of data. Comput Secur 96:1\u201313.","journal-title":"Comput Secur"},{"key":"69_CR26","first-page":"1","volume":"abs\/2012.03586","author":"A Erba","year":"2020","unstructured":"Erba, A, Tippenhauer N (2020) No need to know physics: Resilience of process-based model-free anomaly detection for industrial control systems. CoRR abs\/2012.03586:1\u201318.","journal-title":"CoRR"},{"key":"69_CR27","first-page":"1","volume-title":"Proc. Annual Network and Distributed System Security Symposium (NDSS 2019)","author":"C Feng","year":"2019","unstructured":"Feng, C, Palleti V, Mathur A, Chana D (2019) A systematic framework to generate invariants for anomaly detection in industrial control systems In: Proc. Annual Network and Distributed System Security Symposium (NDSS 2019), 1\u201315.. The Internet Society, Reston."},{"key":"69_CR28","first-page":"1","volume-title":"Proc. Annual Network and Distributed System Security Symposium (NDSS 2016)","author":"D Formby","year":"2016","unstructured":"Formby, D, Srinivasan P, Leonard A, Rogers J, Beyah R (2016) Who\u2019s in control of your control system? device fingerprinting for cyber-physical systems In: Proc. Annual Network and Distributed System Security Symposium (NDSS 2016), 1\u201315.. The Internet Society, Reston."},{"issue":"4","key":"69_CR29","first-page":"76","volume":"51","author":"J Giraldo","year":"2018","unstructured":"Giraldo, J, Urbina D, Cardenas A, Valente J, Faisal M, Ruths J, Tippenhauer N, Sandberg H, Candell R (2018) A survey of physics-based attack detection in cyber-physical systems. ACM Comput Surv 51(4):76\u201317636.","journal-title":"ACM Comput Surv"},{"key":"69_CR30","doi-asserted-by":"publisher","unstructured":"Giraldo, J, Urbina D, Tang C, C\u00e1rdenas A (2020) The more the merrier: adding hidden measurements to secure industrial control systems In: Proc. Annual Symposium on Hot Topics in the Science of Security (HotSoS 2020), 3\u20131310.. ACM. https:\/\/doi.org\/10.1145\/3384217.3385624.","DOI":"10.1145\/3384217.3385624"},{"key":"69_CR31","doi-asserted-by":"crossref","unstructured":"Goh, J, Adepu S, Junejo K, Mathur A (2016) A dataset to support research in the design of secure water treatment systems In: Proc. International Conference on Critical Information Infrastructures Security (CRITIS 2016), 88\u201399.. Springer.","DOI":"10.1007\/978-3-319-71368-7_8"},{"key":"69_CR32","doi-asserted-by":"publisher","first-page":"140","DOI":"10.1109\/HASE.2017.36","volume-title":"Proc. International Symposium on High Assurance Systems Engineering (HASE 2017)","author":"J Goh","year":"2017","unstructured":"Goh, J, Adepu S, Tan M, Lee Z (2017) Anomaly detection in cyber physical systems using recurrent neural networks In: Proc. International Symposium on High Assurance Systems Engineering (HASE 2017), 140\u2013145.. IEEE, New York."},{"issue":"5","key":"69_CR33","doi-asserted-by":"publisher","first-page":"49","DOI":"10.1109\/MSP.2018.3761722","volume":"16","author":"Q Gu","year":"2018","unstructured":"Gu, Q, Formby D, Ji S, Cam H, Beyah R (2018) Fingerprinting for cyber-physical system security: Device physics matters too. IEEE Secur Priv 16(5):49\u201359.","journal-title":"IEEE Secur Priv"},{"key":"69_CR34","first-page":"1","volume-title":"Proc. IEEE\/PES Power Systems Conference and Exposition (PSCE 2009)","author":"N Hadjsaid","year":"2009","unstructured":"Hadjsaid, N, Tranchita C, Rozel B, Viziteu M, Caire R (2009) Modeling cyber and physical interdependencies - application in ICT and power grids In: Proc. IEEE\/PES Power Systems Conference and Exposition (PSCE 2009), 1\u20136.. IEEE, New York."},{"key":"69_CR35","first-page":"1","volume-title":"Proc. International Workshop on Empirical Software Engineering in Practice (IWESEP 2017)","author":"Y Harada","year":"2017","unstructured":"Harada, Y, Yamagata Y, Mizuno O, Choi E (2017) Log-based anomaly detection of CPS using a statistical method In: Proc. International Workshop on Empirical Software Engineering in Practice (IWESEP 2017), 1\u20136.. IEEE, New York."},{"issue":"5","key":"69_CR36","doi-asserted-by":"publisher","first-page":"03120003","DOI":"10.1061\/(ASCE)EE.1943-7870.0001686","volume":"146","author":"A Hassanzadeh","year":"2020","unstructured":"Hassanzadeh, A, Rasekh A, Galelli S, Aghashahi M, Taormina R, Ostfeld A, Banks M (2020) A review of cybersecurity incidents in the water sector. J Environ Eng 146(5):03120003.","journal-title":"J Environ Eng"},{"key":"69_CR37","first-page":"160","volume-title":"Proc. IEEE International Conference On Trust, Security And Privacy In Computing And Communications (TrustCom 2019)","author":"Z He","year":"2019","unstructured":"He, Z, Raghavan A, Hu G, Chai S, Lee R (2019) Power-grid controller anomaly detection with enhanced temporal deep learning In: Proc. IEEE International Conference On Trust, Security And Privacy In Computing And Communications (TrustCom 2019), 160\u2013167.. IEEE, New York."},{"key":"69_CR38","doi-asserted-by":"publisher","first-page":"1058","DOI":"10.1109\/ICDMW.2017.149","volume-title":"Proc. IEEE International Conference on Data Mining Workshops (ICDMW 2017): Data Mining for Cyberphysical and Industrial Systems (DMCIS 2017)","author":"J Inoue","year":"2017","unstructured":"Inoue, J, Yamagata Y, Chen Y, Poskitt C, Sun J (2017) Anomaly detection for a water treatment system using unsupervised machine learning In: Proc. IEEE International Conference on Data Mining Workshops (ICDMW 2017): Data Mining for Cyberphysical and Industrial Systems (DMCIS 2017), 1058\u20131065.. IEEE, New York."},{"key":"69_CR39","unstructured":"iTrust Labs: Datasets (2020). https:\/\/itrust.sutd.edu.sg\/itrust-labs_datasets\/. Accessed December 2020."},{"key":"69_CR40","doi-asserted-by":"publisher","first-page":"86","DOI":"10.1016\/j.compind.2014.10.008","volume":"67","author":"H Kandjani","year":"2015","unstructured":"Kandjani, H, Tavana M, Bernus P, Wen L, Mohtarami A (2015) Using extended axiomatic design theory to reduce complexities in global software development projects. Comput Ind 67:86\u201396.","journal-title":"Comput Ind"},{"key":"69_CR41","doi-asserted-by":"crossref","unstructured":"Kim, J, Yun J, Kim H (2019) Anomaly detection for industrial control systems using sequence-to-sequence neural networks In: Proc. International Workshop on the Security of Industrial Control Systems and Cyber-Physical Systems (CyberICPS 2019), LNCS, 3\u201318.. Springer.","DOI":"10.1007\/978-3-030-42048-2_1"},{"key":"69_CR42","doi-asserted-by":"publisher","first-page":"787","DOI":"10.1145\/3243734.3243751","volume-title":"Proc. ACM SIGSAC Conference on Computer and Communications Security (CCS 2018)","author":"M Kneib","year":"2018","unstructured":"Kneib, M, Huth C (2018) Scission: Signal characteristic-based sender identification and intrusion detection in automotive networks In: Proc. ACM SIGSAC Conference on Computer and Communications Security (CCS 2018), 787\u2013800.. ACM, New York."},{"key":"69_CR43","doi-asserted-by":"publisher","first-page":"72","DOI":"10.1145\/3264888.3264896","volume-title":"Proc. Workshop on Cyber-Physical Systems Security and PrivaCy (CPS-SPC 2018)","author":"M Kravchik","year":"2018","unstructured":"Kravchik, M, Shabtai A (2018) Detecting cyber attacks in industrial control systems using convolutional neural networks In: Proc. Workshop on Cyber-Physical Systems Security and PrivaCy (CPS-SPC 2018), 72\u201383.. ACM, New York."},{"key":"69_CR44","unstructured":"Leyden, J (2016) Water treatment plant hacked, chemical mix changed for tap supplies. The Register. Accessed December 2020."},{"key":"69_CR45","doi-asserted-by":"publisher","first-page":"525","DOI":"10.1145\/3196494.3196546","volume-title":"Proc. Asia Conference on Computer and Communications Security (AsiaCCS 2018)","author":"Q Lin","year":"2018","unstructured":"Lin, Q, Adepu S, Verwer S, Mathur A (2018) TABOR: A graphical model-based approach for anomaly detection in industrial control systems In: Proc. Asia Conference on Computer and Communications Security (AsiaCCS 2018), 525\u2013536.. ACM, New York."},{"key":"69_CR46","doi-asserted-by":"publisher","first-page":"13","DOI":"10.1016\/j.ijcip.2016.11.002","volume":"16","author":"X Liu","year":"2017","unstructured":"Liu, X, Zhang J, Zhu P (2017) Modeling cyber-physical attacks based on probabilistic colored petri nets and mixed-strategy game theory. Int J Crit Infrastruct Prot 16:13\u201325.","journal-title":"Int J Crit Infrastruct Prot"},{"key":"69_CR47","doi-asserted-by":"publisher","first-page":"31","DOI":"10.1109\/CySWater.2016.7469060","volume-title":"Proc. International Workshop on Cyber-physical Systems for Smart Water Networks (CySWater@CPSWeek 2016)","author":"A Mathur","year":"2016","unstructured":"Mathur, A, Tippenhauer N (2016) SWaT: a water treatment testbed for research and training on ICS security In: Proc. International Workshop on Cyber-physical Systems for Smart Water Networks (CySWater@CPSWeek 2016), 31\u201336.. IEEE Computer Society, New York."},{"key":"69_CR48","doi-asserted-by":"publisher","first-page":"1850","DOI":"10.1080\/00207543.2011.565086","volume":"50","author":"D Matt","year":"2012","unstructured":"Matt, D (2012) Application of axiomatic design principles to control complexity dynamics in a mixed-model assembly system: a case analysis. Int J Prod Res 50:1850\u20131861.","journal-title":"Int J Prod Res"},{"key":"69_CR49","unstructured":"Mohsen, H, Cekecek E (2000) Thoughts on the use of axiomatic designs within the product development process In: Proc. International Conference on Axiomatic Design (ICAD 2000), 188\u2013195.. Institute for Axiomatic Design."},{"key":"69_CR50","doi-asserted-by":"publisher","first-page":"13","DOI":"10.1145\/3264888.3264894","volume-title":"Proc. Workshop on Cyber-Physical Systems Security and PrivaCy (CPS-SPC 2018)","author":"V Narayanan","year":"2018","unstructured":"Narayanan, V, Bobba R (2018) Learning based anomaly detection for industrial arm applications In: Proc. Workshop on Cyber-Physical Systems Security and PrivaCy (CPS-SPC 2018), 13\u201323.. ACM, New York."},{"key":"69_CR51","first-page":"499","volume":"9","author":"M N. Al-Mhiqani","year":"2018","unstructured":"N. Al-Mhiqani, M, Ahmad R, Mohamed W, Hassan A, Zainal Abidin Z, Ali N, Abdulkareem K (2018) Cyber-security incidents: A review cases in cyber-physical systems. Int J Adv Comput Sci Appl 9:499\u2013508.","journal-title":"Int J Adv Comput Sci Appl"},{"key":"69_CR52","doi-asserted-by":"publisher","first-page":"124","DOI":"10.1109\/HASE.2017.21","volume-title":"Proc. IEEE International Symposium on High Assurance Systems Engineering (HASE 2017)","author":"K Pal","year":"2017","unstructured":"Pal, K, Adepu S, Goh J (2017) Effectiveness of association rules mining for invariants generation in cyber-physical systems In: Proc. IEEE International Symposium on High Assurance Systems Engineering (HASE 2017), 124\u2013127.. IEEE Computer Society, New York."},{"key":"69_CR53","doi-asserted-by":"publisher","first-page":"21","DOI":"10.1016\/j.ijcip.2018.08.007","volume":"23","author":"V Palleti","year":"2018","unstructured":"Palleti, V, Joseph J, Silva A (2018) A contribution of axiomatic design principles to the analysis and impact of attacks on critical infrastructures. Int J Crit Infrastruct Prot 23:21\u201332.","journal-title":"Int J Crit Infrastruct Prot"},{"key":"69_CR54","doi-asserted-by":"publisher","first-page":"2195","DOI":"10.1109\/CDC.2011.6160641","volume-title":"Proc. IEEE Conference on Decision and Control and European Control Conference (CDC-ECC 2011)","author":"F Pasqualetti","year":"2011","unstructured":"Pasqualetti, F, Dorfler F, Bullo F (2011) Cyber-physical attacks in power networks: Models, fundamental limitations and monitor design In: Proc. IEEE Conference on Decision and Control and European Control Conference (CDC-ECC 2011), 2195\u20132201.. IEEE, New York."},{"key":"69_CR55","unstructured":"Secure Water Treatment (SWaT) (2020). https:\/\/itrust.sutd.edu.sg\/itrust-labs-home\/itrust-labs_swat\/. Accessed December 2020."},{"key":"69_CR56","doi-asserted-by":"publisher","unstructured":"Schmidt, T, Hauer F, Pretschner A (2020) Automated anomaly detection in CPS log files - A time series clustering approach In: Proc. International Conference on Computer Safety, Reliability, and Security (SAFECOMP 2020), LNCS, vol. 12234, 179\u2013194.. Springer. https:\/\/doi.org\/10.1007\/978-3-030-54549-9_12.","DOI":"10.1007\/978-3-030-54549-9_12"},{"key":"69_CR57","first-page":"1","volume-title":"Proc. Workshop on Cyber-Physical Systems Security and PrivaCy (CPS-SPC 2018)","author":"P Schneider","year":"2018","unstructured":"Schneider, P, B\u00f6ttinger K (2018) High-performance unsupervised anomaly detection for cyber-physical system networks In: Proc. Workshop on Cyber-Physical Systems Security and PrivaCy (CPS-SPC 2018), 1\u201312.. ACM, New York."},{"key":"69_CR58","doi-asserted-by":"publisher","first-page":"114","DOI":"10.1016\/j.robot.2017.12.005","volume":"101","author":"S Shrivastava","year":"2018","unstructured":"Shrivastava, S, Adepu S, Mathur A (2018) Design and assessment of an orthogonal defense mechanism for a water treatment facility. Robot Auton Syst 101:114\u2013125.","journal-title":"Robot Auton Syst"},{"key":"69_CR59","unstructured":"Suh, N (2001) Axiomatic Design: Advances and Applications. Oxford University Press."},{"key":"69_CR60","doi-asserted-by":"publisher","first-page":"100341","DOI":"10.1016\/j.ijcip.2020.100341","volume":"28","author":"M Umer","year":"2020","unstructured":"Umer, M, Mathur A, Junejo K, Adepu S (2020) Generating invariants using design and data-centric approaches for distributed attack detection. Int J Crit Infrastruct Prot 28:100341.","journal-title":"Int J Crit Infrastruct Prot"},{"key":"69_CR61","doi-asserted-by":"publisher","unstructured":"Valente, J, Barreto C, C\u00e1rdenas A (2014) Cyber-physical systems attestation In: Proc. IEEE International Conference on Distributed Computing in Sensor Systems (DCOSS 2014), 354\u2013357.. IEEE Computer Society. https:\/\/doi.org\/10.1109\/DCOSS.2014.61.","DOI":"10.1109\/DCOSS.2014.61"},{"key":"69_CR62","first-page":"237","volume-title":"Proc. International Workshop on Engineering and Cybersecurity of Critical Systems (EnCyCriS 2020)","author":"H Wijaya","year":"2020","unstructured":"Wijaya, H, Aniche M, Mathur A (2020) Domain-based fuzzing for supervised learning of anomaly detection in cyber-physical systems In: Proc. International Workshop on Engineering and Cybersecurity of Critical Systems (EnCyCriS 2020), 237\u2013244.. ACM, New York."},{"issue":"5","key":"69_CR63","doi-asserted-by":"publisher","first-page":"955","DOI":"10.1109\/JSAC.2020.2980921","volume":"38","author":"K Yang","year":"2020","unstructured":"Yang, K, Li Q, Lin X, Chen X, Sun L (2020) iFinger: Intrusion detection in industrial control systems via register-based fingerprinting. IEEE J Sel Areas Commun 38(5):955\u2013967.","journal-title":"IEEE J Sel Areas Commun"},{"key":"69_CR64","first-page":"60","volume-title":"Proc. International Symposium on Computer Science and Intelligent Control (ISCSIC 2019)","author":"C Yoong","year":"2019","unstructured":"Yoong, C, Heng J (2019) Framework for continuous system security protection in SWaT In: Proc. International Symposium on Computer Science and Intelligent Control (ISCSIC 2019), 60\u20131606.. ACM, New York."},{"key":"69_CR65","doi-asserted-by":"publisher","unstructured":"Yoong, CH, Palleti VR, Silva A, Poskitt CM (2020) Towards systematically deriving defence mechanisms from functional requirements of Cyber-Physical Systems In: Proc. ACM Cyber-Physical System Security Workshop (CPSS 2020), 11\u201322.. ACM. https:\/\/doi.org\/10.1145\/3384941.3409589.","DOI":"10.1145\/3384941.3409589"},{"key":"69_CR66","doi-asserted-by":"publisher","first-page":"1","DOI":"10.1115\/1.2953076","volume":"130","author":"X Zhu","year":"2008","unstructured":"Zhu, X, Hu S, Koren Y, Marin S (2008) Modeling of manufacturing complexity in mixed-model assembly lines. J Manuf Sci Eng 130:1\u201310.","journal-title":"J Manuf Sci Eng"}],"container-title":["Cybersecurity"],"original-title":[],"language":"en","link":[{"URL":"https:\/\/link.springer.com\/content\/pdf\/10.1186\/s42400-021-00069-7.pdf","content-type":"application\/pdf","content-version":"vor","intended-application":"text-mining"},{"URL":"https:\/\/link.springer.com\/article\/10.1186\/s42400-021-00069-7\/fulltext.html","content-type":"text\/html","content-version":"vor","intended-application":"text-mining"},{"URL":"https:\/\/link.springer.com\/content\/pdf\/10.1186\/s42400-021-00069-7.pdf","content-type":"application\/pdf","content-version":"vor","intended-application":"similarity-checking"}],"deposited":{"date-parts":[[2023,11,1]],"date-time":"2023-11-01T14:15:10Z","timestamp":1698848110000},"score":1,"resource":{"primary":{"URL":"https:\/\/cybersecurity.springeropen.com\/articles\/10.1186\/s42400-021-00069-7"}},"subtitle":[],"short-title":[],"issued":{"date-parts":[[2021,4,2]]},"references-count":66,"journal-issue":{"issue":"1","published-online":{"date-parts":[[2021,12]]}},"alternative-id":["69"],"URL":"https:\/\/doi.org\/10.1186\/s42400-021-00069-7","relation":{},"ISSN":["2523-3246"],"issn-type":[{"value":"2523-3246","type":"electronic"}],"subject":[],"published":{"date-parts":[[2021,4,2]]},"assertion":[{"value":"18 August 2020","order":1,"name":"received","label":"Received","group":{"name":"ArticleHistory","label":"Article History"}},{"value":"1 January 2021","order":2,"name":"accepted","label":"Accepted","group":{"name":"ArticleHistory","label":"Article History"}},{"value":"2 April 2021","order":3,"name":"first_online","label":"First Online","group":{"name":"ArticleHistory","label":"Article History"}},{"value":"The authors declare that they have no competing interests.","order":1,"name":"Ethics","group":{"name":"EthicsHeading","label":"Competing interests"}}],"article-number":"6"}}