Cyber-Physical Systems (CPS) are also known as the Internet of Things (IoT), Machine-to-Machine
(M2M), and Smart X systems.
They have three main components which are:
Physical elements
Computational elements
Communication networks
Computational elements monitor and control the physical elements and exchange data through the
communication network. CPS applications can be found in many industries, including healthcare,
military, agriculture, manufacturing and smart cities.
Thanks to automation and real-time control systems, CPS's main advantage is improved efficiency.
For example, in manufacturing, the continuous flow of data between sensors and control systems
helps manufacturers identify bottlenecks, enhance production quality, and reduce downtime.
However, three main factors have affected the security of CPS. First, CPS are complex. They
incorporate state-of-the-art technologies, such as artificial intelligence (AI), machine learning, and
IoT devices, which introduce new vulnerabilities. Second, CPS rely on interconnectivity, usually based
on the Internet, which hugely expands the attack surface of these systems. Finally, the supply chain
involved in the system increases the risk of an attack.
Although several proposals have been made to secure each of the CPS components independently,
when considering security solutions for CPS, we must not overlook the massive attack surface of
these complex systems. It's crucial to consider the entire CPS attack surface when devising security
strategies.
Open source is crucial for Cyber-Physical Systems for several reasons. It enables flexibility and
scalability in hardware selection and the opportunity to reuse and distribute code and knowledge.
However, as mentioned in other posts, open source has its own security risks.
#SecOPERA (Secure OPen source software and hardware Adaptable framework) aims to provide a
one-stop hub for complex open source (software and hardware) solutions, the means to analyse,
assess, secure (harden), and share open-source solutions.
#SecOPERA