Search Results (591)

The standard for effective communication between Internet of Things (IoT) devices has been demonstrated by the increasing demand for IoT technologies in Industry 5.0, along with the growing use of actuators, sensors, and automated processes in these settings. De-vice-to-device interactions controlled by communication protocols that specify data sharing are essential to effective operation. By establishing a single standard that permits plug-and-play integration and improves flexibility across various IoT devices, the IEEE 1451 standard represents an approach. This standard ensures interoperability and enables smooth communication with devices from various companies, regardless of their features. By addressing major obstacles to system integration, the IEEE 1451 standard enables IoT technologies to reach their full potential. By integrating information technology (IT) through automation and industrial control systems (ICSs), the Industrial IoT (IIoT) is transforming many industries, especially essential sectors such as energy, chemicals, oil and gas, and water plants. Although drinking water is an essential resource for life and an aspect of technological progress, little is known about the potential for cyberattacks, including the disastrous consequences they could have for water treatment plants. This re-view identifies and documents several adversarial cyberattacks targeting the water distribution and purification sector. Understanding the range of risk factors in this sector is our primary objective. This study presents a technical assessment from an IIoT perspective that addresses attack scenarios, real-world instances of cyberattacks in the water industry, a range of security challenges, and security measures. The contribution is an informative, up-to-date resource that benefits both prospective scholars and industrial practitioners. By integrating key findings to build a secure and reliable digital future, this work will advance a comprehensive understanding of the cybersecurity environment in water plants in Industry 5.0 and smart cities. Full article

This study investigates product abuse, reconciliation challenges, and cybersecurity risks in warehouse management systems (WMS) within increasingly digitized supply chain environments. As warehouses evolve into data-driven operational hubs, vulnerabilities such as data manipulation, insider threats, and fraudulent activities pose significant risks to financial accountability and system integrity. To address these challenges, this research proposes a security-centric WMS framework that integrates blockchain-based immutable logging, Internet of Things (IoT)-enabled tracking, and artificial intelligence (AI)-driven anomaly detection. The methodology follows a hybrid iterative–incremental development approach, supported by real-world deployment of a prototype WMS implemented using a scalable microservices architecture. Over a five-year operational period, the system processed more than 10 million transactions with no recorded successful cybersecurity incidents leading to data breaches, operational compromise, or unauthorized system access, while achieving improvements in reconciliation accuracy, operational efficiency, and fraud detection capabilities. Results demonstrate reductions in manual reconciliation efforts, mispricing incidents, and operational losses, while maintaining high system availability and low latency. In addition, the reported 18–22% improvement associated with AI-assisted anomaly detection is presented as a simulation-based projection rather than a production-validated measurement. The findings indicate that combining secure software engineering practices with automation, auditability, and advanced analytics can significantly enhance transparency and resilience in warehouse operations. The study concludes that integrating decentralized and intelligent technologies provides a viable pathway toward secure, privacy-preserving, and abuse-resistant warehouse ecosystems. Full article

Securing the Industrial Internet of Things (IIoT) is paramount, yet proprietary protocols remain vulnerable to deep-state logic flaws that traditional fuzzers often fail to reach. We propose MALF, a Multi-Agent LLM Fuzzing Framework that couples a dynamic Industrial Security Knowledge Graph (ISKG) with collaborative cognitive agents for effective, efficient, and trustworthy IIoT security testing. A self-evolving knowledge loop mitigates LLM hallucinations by grounding the generation in verifiable graph constraints; QLoRA-tuned models aligned with hexadecimal features enable low-latency mutation; and Chain-of-Thought reasoning reconstructs protocol states for intent-driven attacks. On a heterogeneous testbed spanning five industrial protocols and ten vendors, MALF achieves an average Test Case Acceptance Rate of 88.3% (peak 91.2% on Modbus/TCP) and 91.2% ISKG-defined state coverage, outperforming rule-based, RL-based, and LLM baselines. On a 15-vulnerability N-Day benchmark, MALF detects all known cases, against 60%, 47%, 40%, and 27% for NCMFuzzer, MARLFuzz, BooFuzz, and Fuzz4All, respectively. In a separate real-world campaign, MALF further identifies 14 previously unknown vulnerability candidates, of which four have been assigned CNVD identifiers (CNVD-2024-16009, CNVD-2025-22875, CNVD-2025-29811, CNVD-2026-06041) and 10 remain under vendor review. These results provide controlled-testbed evidence that knowledge-grounded AI agents can systematically expose deep-state vulnerabilities in opaque IIoT environments. Full article

Industrial Internet of Things (IIoT) intrusion detection requires compact, latency-efficient models whose behavior remains assessable under adversarial stress, yet compression can alter the feature-attribution structure learned by a full-precision model. This paper presents X-GATE (eXplanation-Guided Adversarial Training Engine), an attribution-aware training framework for compressed Edge-IIoT intrusion detection. X-GATE combines Explanation-Consistency Distillation (ECD), which aligns Teacher–Student feature-attribution rankings with a differentiable soft-rank Spearman penalty, and Explanation-Guided Adversarial Training (EGAT), which hardens the Student on Teacher-salient feature coordinates. On the full Edge-IIoTset 2022 benchmark, the latest three-seed ablation gives Full X-GATE 89.30 ± 3.89% F1-Macro with 0.617 M parameters, within approximately 0.6 percentage points of the full-precision Teacher; a Random Forest model remains a stronger clean-F1 reference, so X-GATE is not framed as the clean-accuracy optimum. In a separate deployment-subset rerun, X-GATE obtains 78.83 ± 5.83% float F1-Macro and 79.11 ± 5.47% INT8 F1-Macro, reduces the adversarial false-positive rate from 0.46 ± 0.08% for KD-only to 0.16 ± 0.09% under the evaluated single-step white-box explanation-evasion protocol, and reduces CPU latency from 4.16 to 1.25 ms/sample. Component ablation further shows that ECD reduces Logical Drift by 17.24%, while EGAT improves adversarial F1 by 10.57 percentage points. Taken together, these benchmark- and protocol-bounded results position X-GATE as a compact neural operating point for the Edge-IIoT setting studied here, balancing attribution consistency, targeted hardening, and CPU-side efficiency. Full article

As the Industrial Internet of Things becomes increasingly interconnected with critical infrastructure, intrusion traffic exhibits characteristics such as high-dimensional redundancy, class imbalance, and temporal correlation, posing challenges for detection systems in terms of feature representation, model complexity control, and real-time performance. To address the aforementioned issues, this paper proposes an intrusion detection algorithm based on feature optimization and asynchronous advantage actor-critic learning (APA3CID). First, the raw dataset was preprocessed using methods such as label encoding and normalization. Feature selection was performed using the improved Whale Optimization Algorithm (WOA) to reduce data redundancy and eliminate irrelevant features. The samples were then serialized based on the order in which they were collected. Second, we model the detection process as a Markov decision process, use a sliding window to construct states that capture recent temporal features, and, building upon the Asynchronous Advantage Actor-Critic (A3C) framework, we incorporate an adaptive exploration mechanism to address the issues of insufficient exploration in the early training phase and unstable convergence in the later phase. Additionally, we introduce an asynchronous lag correction strategy that utilizes truncated importance weights to mitigate the bias caused by policy lag in asynchronous parallel training, thereby enhancing the stability and robustness of policy updates. Finally, experimental results show that on the X-IIoTID dataset, APA3CID achieves a 3.51% increase in detection rate and a 4.26% increase in F1-score compared to the traditional A3C algorithm. On the WUSTL-IIoT-2021 dataset, single-sample prediction takes as little as 11.56 microseconds, with Acc, DR, and F1-score all exceeding 90%. This outperforms comparison models such as LR, XGBoost, CNN, and the baseline A3C, meeting the requirements of industrial IoT scenarios for low false-negative rates and high real-time performance. Full article

Fuzzy control decision-making (FCDM) is an intelligent paradigm that leverages linguistic variables to model knowledge, explicitly addressing epistemic uncertainty (incomplete system knowledge) and aleatoric uncertainty (stochastic noise), thereby enabling resolution of multi-objective optimization conflicts in complex industrial systems. Following the PRISMA protocol, this study conducts a systematic literature review of 123 peer-reviewed publications retrieved from IEEE Xplore, Web of Science, ScienceDirect, and Google Scholar over the period 1965–2026, with emphasis on developments in the past 15 years. Existing reviews predominantly focus on isolated subdomains (e.g., scheduling, maintenance, energy systems), lacking a unified cross-scenario synthesis and implementation framework for industrial FCDM. To address scalability challenges such as rule base explosion in high-dimensional spaces, the literature is analyzed with respect to hierarchical fuzzy architectures, rule pruning, and dimensionality reduction techniques. The primary contribution is a structured synthesis of FCDM mechanisms across four industrial domains, combined with a systematic examination of integration with Industrial Internet of Things (IIoT), Digital Twins, and Edge Analytics. Furthermore, a three-stage closed-loop framework is formalized as a unified optimization protocol and modular architecture with technical specifications for Industry 4.0 integration, comprising data preprocessing, fuzzy inference, and optimization-driven decision output with iterative feedback. Comparative evaluation against MILP, MPC, and DRL highlights the conditions under which FCDM provides superior robustness and interpretability. Full article

The Industrial Internet of Things (IIoT) is central to modern industrial automation, yet its growing connectivity exposes critical systems to evolving cyber threats. Traditional intrusion detection methods struggle in IIoT environments due to class imbalance and limited adaptability to zero-day attacks. This systematic review evaluates generative AI techniques for IIoT intrusion detection and identifies deployment requirements for industrial environments. We searched five databases (IEEE Xplore, ACM Digital Library, Springer, ScienceDirect, and arXiv) for studies published between January 2019 and December 2025, applying predefined inclusion criteria. Following a systematic selection process (identification plus three progressive screening stages) across 342 records, 42 primary studies were included for systematic synthesis. We examined four GenAI paradigms—Generative Adversarial Networks, Transformers, Diffusion Models, and Variational Autoencoders—analyzing nine state-of-the-art frameworks through comparative performance analysis. Hybrid Transformer architectures (e.g., Transformer-GAN-AE) achieve the most consistent detection performance, while diffusion-based models (e.g., Diff-IDS) provide computational advantages for edge deployments. However, substantial variability in evaluation methodologies and limited reporting of statistical rigor indicate important gaps in current research practices. These findings inform the development of GenAI-driven strategies tailored to industrial infrastructure constraints and highlight key directions for advancing IIoT cybersecurity. Full article

As urban rail transit systems evolve within the Industrial Internet of Things (IIoT), the intelligent recovery of regenerative braking energy becomes critical for energy efficiency. However, the existing train operation optimizations primarily focus on time-domain synchronization, frequently neglecting the spatial impedance constraints of the DC traction network. This oversight creates a discrepancy between theoretical energy matching and actual absorption. To address this, this paper proposes a spatiotemporal synergistic optimization framework integrating the analysis of electrical energy transmission factors and train relative motion. First, a dynamic multi-node circuit model based on Kirchhoff’s laws is established to characterize train fleet operations. By evaluating electrical energy transmission factors, the current distribution ratio and line impedance loss are identified as primary determinants of absorption efficiency. This physically quantifies the coupling among instantaneous energy distribution, transmission loss, and source-load relative distance. Second, a time-domain integration-based gradient analysis framework is formulated to deconstruct the energy gradient into amplitude and directional components. By mapping the relative position and speed of interacting trains, their relative motion states are systematically categorized. Subsequently, an adaptive gradient optimization strategy based on these motion states is introduced, which fine-tunes dwell times to precisely guide train trajectories into a low-impedance “optimal window” for energy absorption. Finally, a case study using operational data from Luoyang Metro Line 1 validates the proposed framework. Results demonstrate that the framework achieves dual spatiotemporal matching of braking and traction trains, outperforming the traditional fixed timetable and improving the regenerative braking energy absorption rate by approximately 13%. Full article

Radio Frequency Identification (RFID) is an emerging technology in Industry 4.0 for low-cost logistics, yet direction and orientation estimation typically requires multiple antennas, and robustness under industrial multipath fading, operator variability, and signal fragmentation has not been evaluated. To address this gap, this study proposes a single-antenna RFID system that evaluated thirteen architectures spanning unsupervised methods (clustering algorithms) and supervised methods (classical machine learning, deep learning, and hybrid architectures) on Received Signal Strength Indicator (RSSI) and phase time-series reconstructed through a pipeline of Savitzky–Golay smoothing, phase unwrapping, and cubic spline resampling to $N$ = 50–300 samples, preserving signal morphology across variable-length RFID passes. The system further incorporates a physics-informed augmentation strategy that encodes multipath fading, distance variation, and fragmentation into synthetic training samples for cross-domain generalization without hardware modification. In controlled laboratory experiments, both direction and orientation tasks achieved $>$99.5% accuracy, while direction tracking was additionally validated on an industrial shop floor under varying distances, Non-Line-of-Sight (NLoS) occlusions, and signal fragmentation. Zero-shot transfer caused accuracy to degrade to near-chance levels for several configurations, confirming a pronounced domain gap. Domain adaptation with XGBoost recovered direction accuracy to $>$97% under severe fragmentation under NLoS conditions, with an inference latency of ≈150 $\mu$s. Under domain-adapted shop floor conditions, direction accuracy exceeded the 75–92% reported in prior single-antenna laboratory studies, suggesting that physics-informed domain adaptation is a promising approach for single-antenna RFID tracking in Industrial Internet of Things (IIoT) logistics environments. Full article

Industrial control systems (ICSs) increasingly rely on legacy communication protocols such as ModbusTCP, which lack built-in security mechanisms and remain widely exposed to network-based attacks. This paper investigates the security limitations of authentication mechanisms in ModbusTCP-enabled programmable logic controllers (PLCs) and demonstrates how plaintext credential transmission and limited connection handling capabilities can be exploited to perform brute-force and denial-of-service (DoS) attacks. An experimental testbed based on two industrial Delta PLC families (DVP-13SE and DVP-311SV3) was developed to systematically evaluate these vulnerabilities under realistic conditions. The results show that authentication credentials can be easily captured through network sniffing, while the PLC communication stack supports a maximum of 16 concurrent connections and can process up to approximately 8600 Modbus operations per second, making it susceptible to resource exhaustion and performance degradation under distributed attack scenarios. To address these limitations, this paper proposes a lightweight deception-based protection mechanism, termed the PLC misleading algorithm (PMA), which is implemented directly within the PLC ladder logic. Unlike traditional network-level defenses, PMA operates at the device level and dynamically misleads attackers by generating controlled randomized responses while preserving consistent behavior for legitimate clients. Experimental results demonstrate that PMA significantly mitigates brute-force effectiveness by preventing reliable password extraction while introducing minimal overhead (2.2% memory usage) and maintaining acceptable communication latency. Additionally, the proposed approach significantly reduces observable attack traffic, with only 0.246 Modbus operations per second observed during the attack phase, thereby limiting the effectiveness of automated exploitation tools. These findings highlight the potential of in-device deception mechanisms as a practical and deployable security layer for legacy industrial systems, and provide new insights into the resilience of PLC-based infrastructures against network-level attacks. This work bridges the gap between lightweight PLC-level protections and the growing need for robust cybersecurity mechanisms in industrial IoT environments. Full article

This paper investigates whether a low-code workflow engine can operate as practical Industrial Internet of Things (IIoT) middleware at the edge when cloud application programming interface (API) rate limits make direct telemetry upload unsustainable. The main contribution is a dual-path architecture in which a Hot Path persists all telemetry locally, while a Cold Path selectively forwards only anomalous or summary events to cloud services. The architecture is implemented as a lightweight containerized stack based on n8n, Eclipse Mosquitto, InfluxDB, and Grafana, and evaluated on a Raspberry Pi 4 under baseline, cloud-only saturation, and edge-filtered stress scenarios. Under the cloud-only condition, the external endpoint is throttled to approximately 60 requests/min, yielding a rejection rate of 98.0% (95% Wilson confidence interval: 97.43–98.44%). Under the dual-path condition, the same inbound load is fully retained locally while outbound cloud traffic is reduced by 98.0%, thereby avoiding throttling without sacrificing edge-side data fidelity. The measured Hot Path processing latency remains around 5 ms on average, with observed peaks below 10 ms, which is compatible with soft real-time monitoring workloads. Compared with more established low-code tools such as Node-RED, the novelty of the study is not the existence of visual orchestration itself, but the combination of containerized deployment, explicit hot/cold decoupling, and an empirical rate-limit mitigation analysis focused on low-cost edge hardware. Full article

Industrial Internet of Things (IIoT) systems generate high-dimensional, non-stationary sensor streams under strict memory and computational constraints, limiting the applicability of classical batch dimensionality reduction methods. While incremental PCA (IPCA) enables online updates, it produces dense components and lacks mechanisms for drift adaptation and interpretability. Existing sparse PCA methods, in contrast, are predominantly batch-oriented and unsuitable for streaming deployment. This paper presents incremental sparse adaptive PCA (ISAPCA), a unified streaming framework that integrates exponential forgetting for concept drift adaptation, mini-batch Oja–Sanger subspace tracking for online variance maximization, and proximal ${\ell }_1$ soft thresholding with QR re-orthonormalization for stable sparse component learning. The contribution lies in the coordinated implementation of these established mechanisms within a constant-memory architecture tailored to industrial edge and TinyML settings. We evaluate ISAPCA on three industrial datasets (SmartBuilding, Tennessee Eastman Process, and GasSensor) and compare it against streaming IPCA and offline upper-bound methods (randomized PCA, sparse PCA, and dictionary learning). ISAPCA retains approximately 93% and 96% of IPCA’s explained variance on SmartBuilding and Tennessee Eastman streams, respectively, while achieving improved explained variance on GasSensor (0.862 vs. 0.822 for IPCA, respectively). Across datasets, ISAPCA enforces sparse loadings without severe degradation in reconstruction fidelity. Ablation analysis confirms the necessity of both forgetting and sparsity components for stable performance under drift. Runtime measurements show sub-millisecond batch updates (0.234–0.606 ms for 256-sample mini-batches), demonstrating suitability for real-time deployment. These results indicate that ISAPCA provides a practical and interpretable solution for streaming dimensionality reduction in non-stationary industrial IoT environments, balancing variance retention, sparsity, and computational efficiency. Full article

Energy consumption is a critical concern for Internet of Things (IoT) platforms lacking abundant resources, particularly for swarm robotic systems that rely on numerous devices operating collaboratively over extended periods. This study presents a comprehensive design strategy for improving processing and communication to enhance system efficiency and reduce energy consumption. We incorporate energy harvesting (photovoltaic and RF), dynamic power management, and energy-efficient communication protocols (e.g., duty cycle, power control, data compression) into two complementary platforms built for swarm robotics: MCU-based nodes (TI MSP430 with LoRa transceiver), which serve as the experimental prototype for validating energy-aware communication, compression, and scheduling mechanisms; edge platforms (Jetson Nano and TX2), which are used for high-level power profiling and system-level evaluation, particularly for computation intensive workloads and comparative analysis. Our technique involves analyzing the device’s energy usage and harvesting processes, developing efficient communication protocols, and validating the system through simulations and hardware prototypes. Experimental results under outdoor and indoor conditions show that the device maintains an energy neutrality ratio well above unity, even with limited ambient energy. Key findings include significant reductions in energy per bit transmitted and reliable long-term operation. These insights pave the way for deploying swarms of autonomous IoT-based robots with minimal maintenance and maximal longevity. Full article

Climate control systems are critical to ensuring the continuous operation of data centers, as they maintain the environmental conditions required by sensitive electronic equipment. In this context, continuous supervision of refrigeration compressors is essential to prevent failures that may compromise thermal stability. This work presents the design, implementation, and experimental validation of a remote monitoring and condition-based maintenance framework built on Industrial Internet of Things (IIoT) technologies for air-conditioning compressors used in data centers. The proposed architecture integrates industrial-grade sensors for temperature, electric current, and vibration, a Siemens LOGO! programmable logic controller (PLC) for signal acquisition and scaling, a Node-RED middleware layer for data flow management, and the ThingSpeak cloud platform for remote storage and analysis. The novel contributions of this work are: (i) a fully integrated low-cost IIoT stack validated on a Copeland ZR144KCE-TF5 scroll compressor under real operating conditions over a continuous 49-day monitoring period; (ii) a hybrid anomaly detection model that combines Z-score statistical baselines with moving-average prediction error to reduce false positives from transient events; and (iii) a condition-based maintenance decision framework that maps the three monitored variables to ISO 10816-3 vibration severity zones and manufacturer-referenced thermal and electrical thresholds, producing recommended maintenance actions. The framework was applied to the acquired dataset, confirming predominantly stable operation (93.4% of samples in ISO 10816-3 Zones A–B) while detecting an emergent mechanical-wear trend (5.64% of samples in Zone C) concentrated in the final days of the monitoring period and demonstrating the feasibility of the proposed architecture as a scalable and replicable solution for condition monitoring and maintenance decision support in critical technological infrastructures. Full article

Industrial Internet of Things (IIoT) and SCADA-connected networks are increasingly vulnerable to Distributed Denial of Service (DDoS) attacks, which can disrupt time-sensitive industrial processes and compromise operational continuity. Effective mitigation requires accurate and low-latency attack detection at the network edge, where industrial gateways operate under strict constraints in computation, memory, and energy. This study investigates Deep Reinforcement Learning (DRL) for real-time binary DDoS detection and proposes a detector based on Proximal Policy Optimisation (PPO) for deployment in resource-constrained IIoT environments. Four DRL agents, namely Deep Q-Network (DQN), Double DQN, Dueling DQN, and PPO, are trained and evaluated within a unified experimental pipeline incorporating automatic label mapping, numerical feature selection, robust scaling, and class balancing. Experiments are conducted on three representative benchmark datasets: CIC-DDoS2019, Edge-IIoTset, and CICIoT23. Performance is assessed using accuracy, precision, recall, F1-score, false positive rate, false negative rate, and CPU inference latency. The reward function is asymmetric: +1 for correct classification, −1 for false positive, and −2 for false negative, penalising missed attacks more heavily for IIoT safety. The results show that PPO provides a competitive accuracy–latency tradeoff across all three datasets, achieving the highest mean accuracy of 97.65% and ranking first on CIC-DDoS2019 with a score of 95.92%, while remaining competitive on Edge-IIoTset (99.11%) and CICIoT23 (97.92%). PPO also converges faster than the value-based baselines. Inference latency is below 0.8 ms per sample on a standard CPU (Intel i7-11800H), confirming real-time feasibility. To support practical deployment, the trained PPO policies are exported to ONNX format (≈9 KB per model), enabling lightweight and PyTorch-independent inference on industrial edge gateways. Full article