@inproceedings{9dbc495c247c4035bc48a2ec07473d87,
title = "Towards Smarter Security Orchestration and Automatic Response for CPS and IoT",
abstract = "Current security orchestration and response (SOAR) approaches have primarily focused on specific layers of systems, such as Intrusion Detection Systems, the network layer, or the application layer. We aim to find the gaps in the existing SOAR approaches for IoT/CPS-based systems, especially critical infrastructures, and propose some directions to fill in these gaps. This paper presents a literature survey and future research directions for advancing SOAR towards increased automation and more holistic operation, especially for the cyber-physical security of critical infrastructures. We have found 14 primary SOAR studies and discussed the gaps in general. There is a significant gap when it comes to a comprehensive and systematic approach to SOAR for multi-layered systems using IoT/CPS and considering the computing continuum perspective. To address the gap, we present our on-going work on a framework of multi-layer SOAR decision-making methods and orchestration tools that leverage Reinforcement Learning (RL)-based adaptation intelligence, virtual reality, avatar-human interaction and advanced Cyber Threat Intelligence (CTI) tools.",
keywords = "CPS, CTI, IoT, Machine Learning, Security Orchestration, VR",
author = "Phu Nguyen and Rustem Dautov and Hui Song and Angel Rego and Eider Iturbe and Erkuden Rios and Diego Sagasti and Gonzalo Nicolas and Valeria Vald{\'e}s and Wissam Mallouli and Ana Cavalli and Nicolas Ferry",
note = "Publisher Copyright: {\textcopyright} 2023 IEEE.; 14th IEEE International Conference on Cloud Computing Technology and Science, CloudCom 2023 ; Conference date: 04-12-2023 Through 06-12-2023",
year = "2023",
doi = "10.1109/CloudCom59040.2023.00055",
language = "English",
series = "Proceedings of the International Conference on Cloud Computing Technology and Science, CloudCom",
publisher = "IEEE Computer Society",
pages = "298--302",
booktitle = "Proceedings - 2023 IEEE International Conference on Cloud Computing Technology and Science, CloudCom 2023",
address = "United States",
}