*4.2. Classification of Studies*

Existing studies were categorised into the following areas: testbeds, simulation and datasets; cyber-attack models; cyber-attacks detection models; model-based security analysis; risk and resilience management; security frameworks; and security benchmarks and case studies. These categories help to answer **RQ6**, showing type of research contributions.
