Date of Award
5-2025
Culminating Project Type
Starred Paper
Styleguide
ieee
Degree Name
Information Assurance: M.S.
Department
Information Assurance and Information Systems
College
Herberger School of Business
First Advisor
Mark Schmidt
Second Advisor
Erich Rice
Third Advisor
Lynn Collen
Creative Commons License
This work is licensed under a Creative Commons Attribution-Noncommercial-No Derivative Works 4.0 License.
Keywords and Subject Headings
Forensic Intelligence, Industrial Control Systems, Cyber-Physical Systems, Cyber Security, Threat Attribution, Incident Response
Abstract
Cyber-Physical Systems (CPS) and Industrial Control Systems (ICS) play a significant role in controlling critical infrastructure such as power grids, water treatment facilities, transportation networks, and manufacturing plants to name a few. These systems were originally intended to function within isolated environments, however with the rise of digital automation and the Industrial Internet of Things (IIoT), they are now connected to cloud computing environments and IT networks. Though this association upscales efficiency and automates processes, it also exposes the CPS and ICS to major cyber threats, such as ransomware, insider attacks, and Advanced Persistent Threats (APTs).
Conventional security tools such as firewalls and antivirus software are inadequate to defend CPS and ICS against advanced intrusions, which makes Forensic intelligence vital. Forensic intelligence is an amalgamation of digital forensics, threat intelligence, and data driven analytics, which help entities such as industrial firms and business organizations to identify, evaluate, and mitigate cyberthreats in real time. It allows analysts to track the origins of attacks, uncover vulnerabilities, and strengthen security protocols.
This paper illustrates the importance of forensic intelligence using real-world case studies, such as the Stuxnet, Triton, and Colonial Pipeline intrusions. Based on the findings, utilizing forensic intelligence would improve threat attribution accuracy, speed up detection and response times, minimizing system outages and maximize cost-benefit results for CPS/ICS security.
Recommended Citation
Vanka Sadanand, Smridhi, "Safeguarding Critical Infrastructure: The Role of Forensic Intelligence in Mitigating Cyber Threats to Cyber- Physical Systems and Industrial Control Systems" (2025). Culminating Projects in Information Assurance. 146.
https://repository.stcloudstate.edu/msia_etds/146
Comments/Acknowledgements
I sincerely appreciate the guidance and support of my research advisors, whose insights have been invaluable in this study. Special thanks to my university and peers for their encouragement and assistance throughout this research.