Mitigation of Cyber-Physical Attacks in Industry 4.0 Using Secure Function Blocks
| aut.relation.conference | MEMOCODE '25: International Symposium on Formal Methods and Models for System Design | |
| aut.relation.endpage | 27 | |
| aut.relation.startpage | 16 | |
| dc.contributor.author | Wu, Steph | |
| dc.contributor.author | Allen, Nathan | |
| dc.contributor.author | Baird, Alex | |
| dc.contributor.author | Pearce, Hammond | |
| dc.contributor.author | Roop, Partha | |
| dc.contributor.editor | Guan, N | |
| dc.contributor.editor | Pagetti, C | |
| dc.contributor.editor | Chattopadhyay, S | |
| dc.contributor.editor | Pinisetty, S | |
| dc.date.accessioned | 2026-01-15T01:34:25Z | |
| dc.date.available | 2026-01-15T01:34:25Z | |
| dc.date.issued | 2025-12-29 | |
| dc.description.abstract | As Industry 4.0 drives the Fourth Industrial Revolution, Cyber-Physical Systems (CPSs) have become central to industrial automation. These systems integrate software with physical processes, significantly improving the efficiency and adaptability. However, this integration also expands the attack surface, exposing systems to Cyber-Physical-attacks (CP-attacks) that can target either the computational components, physical devices, or both. The impact of such attacks can be catastrophic, ranging from system disruption to physical damage. Although numerous techniques have been developed to detect and mitigate these threats, industrial standards are often not incorporated into the design of these methods. This limits their deployment within the Industry 4.0 systems, where standard compliance is critical. To this end, we extend IEC 61499, an emerging standard being considered in Industry 4.0, that uses reusable artefacts called function blocks. We formalise the mitigation of CP-attacks using a novel method based on Bi-directional Runtime Enforcement (Bi-RE) using a standards compliant approach called Secure Function Blocks (SFBs). This approach automatically generates the necessary enforcers from a timed specification language called Valued Discrete Timed Automaton (VDTA). We illustrate our approach using the case study of a water treatment system, and highlight the low overhead associated with it. This approach allows for runtime techniques to be applied with minimal changes to many Industry 4.0 applications. | |
| dc.identifier.citation | Proceedings of the International Symposium on Formal Methods and Models for System Design. Pages 16 - 27. MEMOCODE ’25, September 28-October 3, 2025, Taipei, Taiwan. ISBN 979-8-4007-1994-3/2025/09 | |
| dc.identifier.doi | 10.1145/3742875.3754685 | |
| dc.identifier.isbn | 9798400719943 | |
| dc.identifier.uri | http://hdl.handle.net/10292/20504 | |
| dc.publisher | ACM | |
| dc.relation.uri | https://dl.acm.org/doi/10.1145/3742875.3754685 | |
| dc.rights | Permission to make digital or hard copies of part or all of this work for personal or classroom use is granted without fee provided that copies are not made or distributed for profit or commercial advantage and that copies bear this notice and the full citation on the first page. Copyrights for third-party components of this work must be honored. For all other uses, contact the owner/author(s). © 2025 Copyright held by the owner/author(s). As of January 1, 2026, all ACM publications and related artifacts in the ACM Digital Library are now open access. | |
| dc.rights.accessrights | OpenAccess | |
| dc.subject | 46 Information and Computing Sciences | |
| dc.subject | 40 Engineering | |
| dc.subject | 4604 Cybersecurity and Privacy | |
| dc.subject | 9 Industry, Innovation and Infrastructure | |
| dc.subject | IEC61499 | |
| dc.subject | Cyber-Physical security | |
| dc.subject | Function Blocks | |
| dc.subject | Runtime Enforcement | |
| dc.title | Mitigation of Cyber-Physical Attacks in Industry 4.0 Using Secure Function Blocks | |
| dc.type | Conference Contribution | |
| pubs.elements-id | 749823 |