Cybersecurity for Industry 5.0: trends and gaps – Frontiers

The Evolving Threat Landscape

Industry 5.0 marks a pivotal shift in the manufacturing landscape, placing humans at the center of intelligent, interconnected systems. This human-centric approach, combined with the focus on sustainability and resilience, introduces a complex cybersecurity landscape that requires a comprehensive understanding and strategic response.

The proliferation of connected devices, from machines and sensors to robots, has drastically expanded the attack surface in Industry 5.0. Malicious actors now have numerous entry points to exploit, heightening the risk of breaches and disruptions. Furthermore, the vast amount of sensitive data generated and collected within these systems, including production data, customer information, and AI models, necessitates robust data security measures.

The interconnected nature of Industry 5.0 extends beyond factory walls, encompassing suppliers and partners across the supply chain. Vulnerabilities in any part of this interconnected ecosystem can be exploited to gain access to core systems, introducing supply chain security challenges.

The integration of advanced technologies, such as Artificial Intelligence (AI) and Blockchain, while unlocking innovative possibilities, also introduces new attack vectors. Malicious actors can target AI algorithms to manipulate outputs, disrupt operations, or steal intellectual property. The close collaboration between humans and machines in Industry 5.0 also requires secure authentication protocols to prevent unauthorized access or manipulation by either party.

According to the Orange cyberdefense Security Navigator 2024 Report, the manufacturing industry was the most targeted sector in 2023, underscoring the critical need for effective cybersecurity strategies in this evolving industrial landscape.

Cybersecurity Incidents and their Impacts

The history of cybersecurity incidents across various industries serves as a sobering reminder of the devastating consequences that can arise from cyber threats. These attacks have compromised people’s safety, damaged organizational reputations, led to monetary losses, and compromised data accuracy, ultimately threatening the overall dependability of affected systems.

Iran’s Nuclear Facilities Attack (2010)

The Stuxnet computer worm infected computer networks through USB-flash drives and switched off safety devices, causing centrifuges to spin out of control and damaging Iran’s nuclear facilities.

WannaCry Ransomware Attack (2017)

The WannaCry ransomware attack caused more than $4 billion in damages and infected over 300,000 computers worldwide.

Norsk Hydro Attack (2019)

A ransomware attack triggered by a trusted customer’s email tricked a Norsk Hydro employee, shutting down plants, forcing manual operations, and costing the company $40 million.

Florida Water Plant Attack (2021)

An attacker attempted to change the chemical levels of the water supply by increasing the amount of sodium hydroxide, but a watchful operator thwarted the attack before any harm could be caused.

Colonial Pipeline Ransomware Attack (2021)

This attack led to fuel delivery disruptions and panic buying across the United States, with the company paying a $4.4 million ransom to the hacker group.

Toyota Cyberattacks (2022 and 2023)

In 2022, a cyberattack halted Toyota’s production in Japan, while in 2023, a ransomware attack on their financial services in Germany exposed data and demanded an $8 million ransom.

Bridgestone Americas Attack (2022)

A LockBit cyberattack forced Bridgestone to shut down manufacturing across North and Latin America for days, compromising customer and employee data.

Johnson Controls Attack (2023)

A ransomware attack by The Dark Angels stole over 27 Terabytes of data and demanded a $51 million ransom.

Scandinavian Airlines Website Attack (2023)

The SAS website was down for a few hours, and customer details were exposed to active customers during the attack.

Tietoevry Ransomware Attack (2024)

This cyberattack affected several customers and forced the closure of several stores across Sweden.

These incidents illustrate the substantial impact of cyberattacks, which can compromise safety, damage reputations, lead to financial losses, and disrupt operations. Addressing these vulnerabilities is crucial for maintaining the overall dependability and resilience of Industry 5.0 systems.

Existing Cybersecurity Frameworks and Regulations

To address the growing cybersecurity concerns, several efforts have been undertaken to protect data and critical infrastructure. The European Union’s General Data Protection Regulation (GDPR) and the Network and Information Security (NIS 2) Directive are examples of regulatory frameworks aimed at safeguarding sensitive information and enhancing the security of critical infrastructure.

Additionally, the International Electrotechnical Commission (IEC) has developed the IEC 62443 series of standards, which provide a comprehensive set of guidelines for industrial communication networks and systems security. These standards cover various aspects, including security requirements, security risk assessment, and security life cycle management.

While Industry 5.0 lacks specific regulations, existing frameworks like GDPR, IEC 62443, and ISO 27001 can be leveraged to enhance cybersecurity until dedicated standards emerge. By staying vigilant about emerging threats and aligning with these established guidelines, industries can strengthen their defenses and ensure the overall dependability of their systems.

Cybersecurity Trends and Gaps in Industry 5.0

A comprehensive literature review of 18 academic papers published between 2022 and 2024 revealed several notable trends and gaps in the cybersecurity landscape of Industry 5.0.

Research Trends

The analysis of the reviewed literature highlighted the following key trends:

1. Conceptual Research Dominance: The majority of the research papers (39%) employed a conceptual approach, focusing on theoretical frameworks and high-level discussions of cybersecurity challenges and solutions.

2. Prevalence of AI, Blockchain, and IoT: The most prevalent technologies mentioned in the literature were Artificial Intelligence (AI), Blockchain, and the Internet of Things (IoT), reflecting their central role in the Industry 5.0 paradigm.

3. Geographic Concentration: The studies primarily originated from India (33%), followed by Pakistan (11%) and Russia (11%), indicating a geographic concentration of cybersecurity research in these regions.

4. Comparative and Experimental Methodologies: In addition to the conceptual approach, the reviewed literature also utilized comparative analysis (33%) and experimental methodologies (22%) to investigate cybersecurity solutions.

Research Gaps

While the literature provided valuable insights, the review also identified several significant gaps:

1. Limited Focus on Resilience and Sustainability: The direct relationship between cybersecurity and the core principles of Industry 5.0, such as resilience and sustainability, was not adequately addressed in the reviewed studies.

2. Absence of User-Friendly Security Solutions: None of the papers discussed the importance of user-friendly security features and their integration within the human-centric design of Industry 5.0 systems.

3. Lack of Comprehensive Coverage: The literature did not comprehensively address cybersecurity across all three aspects of Industry 5.0: human-centricity, sustainability, and resilience.

4. Evolving Security Landscape: The reviewed studies did not explore how the cybersecurity landscape has evolved from Industry 4.0 to Industry 5.0, and how the changing technological landscape affects security strategies.

5. Underrepresentation of Certain Research Areas: Topics such as big data, threat intelligence, advanced security technologies, cryptography, sixth-generation (6G) cellular networks, and governance were not adequately addressed in the literature.

These gaps present significant opportunities for future research, as bridging them can lead to more comprehensive and effective cybersecurity solutions tailored to the unique requirements of Industry 5.0.

Integrating Cybersecurity into the Heart of Industry 5.0

To ensure a secure and sustainable future for Industry 5.0, cybersecurity must be woven into the very fabric of this evolving industrial paradigm, considering its core principles of human-centricity, sustainability, and resilience.

Prioritizing Human-Centric Security

According to the “Human Risk Review 2023” by SoSafe, the human element remains a critical factor in cybersecurity. The report emphasizes the rise of social engineering tactics and a surge in cyber threats powered by geopolitics and the remote work landscape, elevating the vulnerability of human actors.

To address this challenge, the report recommends security awareness training, implementation of remote work security measures, supplier security evaluations, and the development of robust incident response plans. By adopting a human-centric approach to security, organizations can create a culture of security awareness, empower employees to recognize and respond to threats, and minimize the risk of human error that often leads to successful cyberattacks.

Furthermore, secure communication protocols for human-machine interaction require further research and development to ensure the safety and integrity of these critical collaborations.

Balancing Cybersecurity and Sustainability

Industry 5.0’s focus on interconnected, sustainable practices creates complex security challenges. While advancements like the Industrial Internet of Things (IIoT) are crucial for environmental monitoring, they also introduce resource limitations and potential vulnerabilities.

According to the NIST, 50% of cybersecurity emissions are from the use of resilience activities (like redundancy capabilities) and endpoints. Optimizing the volume of logs collected and stored, sharing threat intelligence, and implementing authentication methods that do not require dedicated physical equipment can contribute to reducing emissions.

At the same time, strong data encryption and access controls are necessary to protect the confidentiality of sensitive data while enabling valuable insights for sustainable practices. Standardizing secure communication protocols across the supply chain can also minimize attack vectors and improve overall sustainability.

Enhancing Cyber Resilience

The Cyber Resilience Act (CRA) mandated by the European Union requires the integration of security features within manufacturing equipment, promoting the development of more secure hardware and software solutions. This aligns with the National Institute of Standards and Technology (NIST) definition of resilience, which emphasizes a system’s capacity to anticipate, withstand, recover from, and adapt to cyber threats.

Researchers have employed resilience stages, similar to the Resilience Curve, to propose cybersecurity approaches that predict, prevent, and monitor cyberattack penetration probabilities at each stage of the Cyber Kill Chain Model. Additionally, studies have explored the potential of Blockchain technology and machine learning-based intrusion detection systems for enhancing resilience in manufacturing systems.

AI-powered models have also been proposed to analyze adversary behavior and predict vulnerabilities in critical infrastructure, enabling the implementation of targeted security measures and improved cyber resilience.

By adopting a comprehensive, multi-layered approach that balances resilience, sustainability, and human-centricity, organizations can build a secure and dependable Industry 5.0 ecosystem, capable of withstanding and adapting to evolving cyber threats.

Conclusion

Industry 5.0 marks a significant shift in the manufacturing landscape, placing humans at the center of intelligent, interconnected systems. This human-centric, sustainable, and resilient paradigm introduces a complex cybersecurity landscape that requires a strategic and holistic approach.

The literature review conducted in this article identified several key trends, including the prevalence of conceptual research and the prominence of technologies like AI, Blockchain, and IoT. However, it also revealed substantial gaps, such as the limited focus on the relationship between cybersecurity and the core principles of Industry 5.0, the absence of user-friendly security solutions, and the lack of comprehensive coverage across all three aspects of this evolving industrial paradigm.

To address these gaps and ensure a secure and sustainable future for Industry 5.0, cybersecurity must be integrated into the very foundation of this transformation. By prioritizing human-centric security, balancing cybersecurity and sustainability, and enhancing cyber resilience, organizations can build a robust and adaptable defense against evolving cyber threats.

As Industry 5.0 continues to shape the future of manufacturing, the cybersecurity landscape will undoubtedly become increasingly complex. However, by addressing the identified gaps and aligning with emerging trends, researchers and practitioners can pave the way for a more secure, resilient, and sustainable industrial ecosystem.

IT Fix is dedicated to providing expert insights and practical solutions to help IT professionals navigate the evolving technological landscape. By staying informed about the latest cybersecurity trends and developments in Industry 5.0, our readers can make informed decisions and implement effective strategies to protect their organizations.