go to top scroll for more


Projects: Projects for Investigator
Reference Number EP/X037452/1
Title RESICS:Resilience and Safety to attacks in ICS and CPS
Status Started
Energy Categories Other Cross-Cutting Technologies or Research 10%;
Not Energy Related 90%;
Research Types Basic and strategic applied research 100%
Science and Technology Fields PHYSICAL SCIENCES AND MATHEMATICS (Computer Science and Informatics) 100%
UKERC Cross Cutting Characterisation Not Cross-cutting 100%
Principal Investigator Professor EC Lupu

Imperial College London
Award Type Standard
Funding Source EPSRC
Start Date 01 September 2023
End Date 31 August 2026
Duration 36 months
Total Grant Value £919,122
Industrial Sectors Information Technologies
Region London
Programme Digital Security and Resilience
Investigators Principal Investigator Professor EC Lupu , Computing, Imperial College London (99.999%)
  Other Investigator Dr S Adepu , Computer Science, University of Bristol (0.001%)
  Industrial Collaborator Project Contact , QinetiQ Ltd (0.000%)
Project Contact , Airbus UK Ltd (0.000%)
Project Contact , Carnegie Mellon University, USA (0.000%)
Project Contact , Thales Group, France (0.000%)
Project Contact , Siemens plc (0.000%)
Project Contact , Adelard LLP (0.000%)
Project Contact , Reperion (0.000%)
Project Contact , Singapore University of Tech & Design (0.000%)
Project Contact , University of Naples Federico II (0.000%)
Web Site
Abstract We all critically depend on and use digital systems that sense and control physical processes and environments. Electricity, gas, water, and other utilities require the continuous operation of both national and local infrastructures to deliver their services. Industrial processes, for example for chemical manufacturing, production of materials such as cement, steel, aluminium or fertilizers, and manufacturing chains for car production or pharmaceuticals similarly lie at this intersection of the digital and the physical. This intersection also applies in other CPS such as robots, autonomous cars, and drones.All such systems are exposed to malicious threats and have been the target of cyber-attacks by different threat actors ranging from disgruntled employees to hacktivists, terrorists, organised crime and nation states. The increasing fragility and vulnerability of our cyber-enabled society is rapidly approaching intolerable limits. As these systems become larger and more complex interruption of service in any of these infrastructures can cause significant cascading effects with safety, economic and societal impacts.Because we critically depend on the operation of such systems, disruption to their operations must be minimised even when they are under attack and have been partially compromised. Because they operate in a physical environment, the safety of such systems must be preserved at all times to avoid physical damage and even threat to life. Therefore, ensuring the resilience of such systems, their survivability and continued operation when exposed to malicious threats requires the integration of methods and processes from security analysis, safety analysis, system design and operation that have traditionally been done separately and that each involve specialist skills and a significant amount of human effort. This is not only costly, but also error prone and delays response to security events.The full integration and automation of such methodologies will be a challenge for many years to come. However, RESICS aims to significantly advance the state-of-the-art and deliver novel contributions that facilitate: a) risk analysis for such systems in the face of adversarial threats taking into account the impact of security events across the cascading inter-dependencies; b) characterising attacks that can have an impact on the safety of the system, identifying the paths that make such attacks possible; c) identifying countermeasures that can be applied to mitigate threats and contain the impact of attacks; and d) ensuring that such countermeasures can be applied whilst preserving the system's safety and operational constraints and maximising its availability. These contributions will be evaluated across several test beds, digital twins, a cyber range and a number of use-cases across different industry sectors. They will deliver increased automation, lower the skill requirements involved in the analysis and in mitigating threats and improve response times to security incidents. To achieve these goals RESICS will combine model-driven and empirical approaches across both security and safety analysis, adopting a systems-thinking approach which emphasises Security, Safety and Resilience as emerging properties of the system. RESICS leverages preliminary results in the integration of safety and security methodologies with the application of formal methods and the combination of model-based and empirical approaches to the analysis of inter-dependencies in ICSs and CPSs
Publications (none)
Final Report (none)
Added to Database 14/06/23