Cyber-physical systems (CPS) are used across domains to enable process optimization and previously unachievable functionality. The combination of networked digital systems and analog physical processes creates unique characteristics that change how security theory is applied. Neither cyber nor physical security concepts alone can protect CPS because the crossover effects can introduce unexpected vulnerabilities. Physical attacks may allow access to critical assets resulting in damage or compromise of information being processed by the device, while cyber attacks may cause physical malfunctions resulting in real-world consequences. Therefore, security and privacy are key concerns for CPS design, development, and operation. In this chapter, we discuss how CPS security and privacy differ from that of pure cyber or physical systems and what may be done to secure these systems. Our goal is to help designers of emerging CPS to build more secure, privacy-enhanced products in the future.
Published: April 14, 2022
Citation
Fink G.A., T.W. Edgar, T.R. Rice, D.G. MacDonald, and C.E. Crawford. 2017.Overview of Security and Privacy in Cyber-Physical Systems. In Security and Privacy in Cyber-Physical Systems: Foundations and Applications, edited by H. Song, G.A. FInk and S. Jeschke. 1-23. Hoboken, New Jersey:Wiley-IEEE Press.PNNL-SA-118634.doi:10.1002/9781119226079.ch1