Multi-Layered Security Frameworks for Safeguarding Critical Infrastructures in Cyber-Physical and Cloud-Native Systems
Keywords:
Cyber-Physical Systems (CPS), Cloud-Native Security, Multi-Layered Framework, Critical Infrastructure Protection, Zero Trust Architecture, Anomaly Detection, Industrial Control Systems (ICS), Security Posture ManagementAbstract
The rapid integration of cyber-physical systems (CPS) with cloud-native technologies has transformed critical infrastructures—such as power grids, transportation, and healthcare—into highly dynamic, interconnected environments. However, this digital convergence has also expanded the attack surface, necessitating robust, adaptive, and multi-layered security frameworks. This paper proposes a comprehensive approach to securing such systems by evaluating and integrating security at multiple layers: physical, network, application, and data. Drawing upon literature and recent advancements, we discuss threats, existing models, and the evolution of security paradigms in CPS and cloud-native architectures. The paper emphasizes resilience, zero-trust models, and AI-driven anomaly detection as crucial components in future-ready security infrastructures.
References
Zuech, Richard, Taghi M. Khoshgoftaar, and Randall Wald. "Intrusion Detection and Big Heterogeneous Data: A Survey." Journal of Big Data, vol. 2, no. 1, 2015, pp. 1–41.
Humayed, Abdulmalik, Jingqiang Lin, Fengjun Li, and Bo Luo. "Cyber-Physical Systems Security—A Survey." IEEE Internet of Things Journal, vol. 4, no. 6, 2017, pp. 1802–1831.
National Institute of Standards and Technology (NIST). Framework for Improving Critical Infrastructure Cybersecurity. Version 1.1, NIST, Apr. 2018.
Sharma, Prateek, Jong Hyuk Park, and Sangheon Lee. "Securing Kubernetes: A Security Framework for Container Orchestration Systems." IEEE Access, vol. 9, 2021, pp. 131177–131190.
Ali, Rizwan, Hafeez Khalid, and Salman Khan. "Zero Trust Security Architecture for Cloud-Based CPS." Future Generation Computer Systems, vol. 128, 2022, pp. 211–223.
Lee, Inkyu, and Kyung Hee Kim. "Security and Privacy Challenges in Cloud-Connected Cyber-Physical Systems." Sensors, vol. 20, no. 24, 2020, pp. 1–24.
Conti, Mauro, Ali Dehghantanha, Katrin Franke, and Steve Watson. "Internet of Things Security and Forensics: Challenges and Opportunities." Future Generation Computer Systems, vol. 78, 2018, pp. 544–546.
He, Haibo, and Jun Yan. "Cyber‐Physical Attacks and Defenses in the Smart Grid: A Survey." IET Cyber‐Physical Systems: Theory & Applications, vol. 1, no. 1, 2016, pp. 13–27.
Abbas, Asharaf, and Satish Narayana Srirama. "Security in Fog and Edge Computing: A Survey." Internet of Things, vol. 14, 2021, pp. 1–22.
Ghosh, Udayan, and Shamik Sural. "A Survey on Security and Privacy Issues in Cloud Computing." Computer Science Review, vol. 20, 2016, pp. 1–18.
Zhang, Qi, Lu Cheng, and Raouf Boutaba. "Cloud Computing: State-of-the-Art and Research Challenges." Journal of Internet Services and Applications, vol. 1, no. 1, 2010, pp. 7–18.
Kolini, Fadhil, and Arash Habibi Lashkari. "A Cyber Attack Evaluation Dataset for Critical Infrastructure and IoT Networks." Data in Brief, vol. 25, 2019, pp. 1–8.
