Cybersecurity Risks and Defense Strategies in Digital-Twin–Enabled Smart Infrastructure: A Systematic Review
Abstract
Background: Digital twins (DTs) are increasingly used in critical infrastructure to link operational technology with cyber-physical systems. Their feedback loops data collection, modeling, and actuation make them highly vulnerable to cyber threats.
Objective: This review aimed to identify cybersecurity and privacy risks specific to DTs in industrial control systems (ICS) and to map current defenses against established security frameworks.
Methods: We conducted a systematic review following PRISMA 2020 guidelines. Five databases (PubMed, IEEE Xplore, ACM Digital Library, Scopus, Web of Science) and grey literature sources were searched up to June 2024. Studies were screened in duplicate using predefined inclusion criteria, and methodological quality was assessed with a 10-point rubric.
Results: From 1,276 records, 124 studies met inclusion. Common risks included data poisoning, model inversion, drift, and unsafe actuation. Mitigation strategies included adversarial training, secure middleware, anomaly detection, and compliance with IEC 62443 and NIST guidelines. A crosswalk analysis showed limited alignment between proposed defenses and existing frameworks.
Conclusions: DTs introduce unique vulnerabilities beyond conventional ICS systems. Existing standards only partly address these risks. Sector-specific extensions, simulation-based adversarial testing, and new trust metrics are urgently needed.
How to Cite This Article
Emma Junior Emmanuel, Mgbemele Amarachi Franca, Opeyemi Omotunde Adebisi (2025). Cybersecurity Risks and Defense Strategies in Digital-Twin–Enabled Smart Infrastructure: A Systematic Review . International Journal of Multidisciplinary Research and Growth Evaluation (IJMRGE), 6(6), 193-198. DOI: https://doi.org/10.54660/IJMRGE.2025.6.6.193-198
References
- 1. Aghazadeh Ardebili A, Longo A, Ficarella A. Digital Twin(DT\in Smart Energy Systems-Systematic Literature Reviewof DTasagrowingsolutionfor Energy Internetofthe Things(EIo T\. E3SWeb Conf.2021;334:05002. doi:10.1051/e3sconf/202133405002.
- 2. Alcaraz C, L?pez J. Digital Twin Security: APerspectiveon Efforts From Standardization Bodies. IEEESecur Priv.2025;23(1\:83-90. doi:10.1109/MSEC.2024.3478923.
- 3. Coppolino L, Nardone R, Petruolo A, Romano L. Building Cyber-Resilient Smart Gridswith Digital Twinsand Data Spaces. Appl Sci.2023;13(24\:13060. doi:10.3390/app132413060.
- 4. El-Hajj M, It?pelto T, Gebremariam T. Systematicliteraturereview: Digitaltwins'roleinenhancingsecurityfor Industry4.0applications. Secur Priv.2024;7(5\: e396. doi:10.1002/spy2.396.
- 5. Glaessgen E, Stargel D. Thedigitaltwinparadigmforfuture NASAand U. S. Air Forcevehicles. In:53rd AIAA/ASME/ASCE/AHS/ASCStructures, Structural Dynamicsand Materials Conference;2012 Apr23-26; Honolulu, HI. Reston(VA\: American Instituteof Aeronauticsand Astronautics;2012. doi:10.2514/6.2012-1818.
- 6. Homaei M, etal. Areviewofdigitaltwinsandtheirapplicationincybersecurity. In: Homaei M, editor. Cybersecurityanddigitaltwins: opportunitiesandchallenges. Cham: Springer;2024. p.45-78. doi:10.1007/978-3-031-23456-7_3.
- 7. International Electrotechnical Commission; International Societyof Automation. ISA/IEC62443 Series: Securityforindustrialautomationandcontrolsystems. Geneva: IEC;2018-2023.
- 8. International Organizationfor Standardization. ISO23247: Automationsystemsandintegration Digitaltwinframeworkformanufacturing. Geneva: ISO;2021.
- 9. ISASecure. ISASecure?program: CSA/SSA/SDLAfrom: https://www. isasecure. org.
- 10. MITRE. ATT&CK?for Industrial Control Systemsupdatedhttps://attack. mitre. org/matrices/ics/.
- 11. National Instituteof Standardsand Technology. AIRisk Management Framework(AIRMF1.0\. Gaithersburg(MD\: NIST;
- 2023. Report No.: NISTAI100-1. doi:10.6028/NIST. AI.100-1.
- 12. National Instituteof Standardsand Technology. Guideto Operational Technology(OT\Security. Gaithersburg(MD\: NIST;
- 2023. Report No.: SP800-82 Rev.3. doi:10.6028/NIST. SP.800-82r3.
- 13. National Telecommunicationsand Information Administration. The Minimum Elementsfora Software Billof Materials(SBOM\. Washington(DC\: U. S. Departmentof Commerce;2021.
- 14. Page MJ, Mc Kenzie JE, Bossuyt PM, Boutron I, Hoffmann TC, Mulrow CD, etal. The PRISMA2020statement: anupdatedguidelineforreportingsystematicreviews. BMJ.2021;372: n71. doi:10.1136/bmj. n71.
- 15. Stouffer K, Pease M, Tang C, Zimmerman T, Pillitteri V, Lightman S, etal. Guideto Operational Technology(OT\Security. Gaithersburg(MD\: NIST;
- 2023. Report No.: SP800-82 Rev.3. doi:10.6028/NIST. SP.800-82r3.
- 16. Waterfall Security Solutions. Theessentialguideto Availablefrom: https://waterfall-security. com/ot-International Journalof Multidisciplinary Researchand Growth Evaluationwww. allmultidisciplinaryjournal. com198|Pageinsights-center/ot-cybersecurity-insights-center/the-essential-guide-to-isa-iec-62443/.
- 17. Wu H, Ji P, Ma H, Xing L. Acomprehensivereviewofdigitaltwinfromtheperspectiveoftotalprocess: Data, models, networksandapplications. Sensors(Basel\.2023;23(19\:8306. doi:10.3390/s23198306.