@Article{jcs.2026.077850,
AUTHOR = {Ali Lamjid, Khairul Akram Zainol Ariffin, Mohd Juzaiddin Ab Aziz, Nor Samsiah Sani},
TITLE = {Intrusion Detection Systems from IT to IIoT: Survey and Taxonomy},
JOURNAL = {Journal of Cyber Security},
VOLUME = {8},
YEAR = {2026},
NUMBER = {1},
PAGES = {211--240},
URL = {http://www.techscience.com/JCS/v8n1/67432},
ISSN = {2579-0064},
ABSTRACT = {The convergence of Operational Technology (OT) and Information Technology (IT) within Critical Infrastructures gives rise to complex and heterogeneous network architectures in the Industrial Internet of Things (IIoT). Traditional Intrusion Detection Systems (IDS), designed for conventional IT environments, are suited for mitigating vulnerabilities inherent in these systems; however, they often fail to address vulnerabilities intrinsic to heterogeneous IIoT architectures, most notably adversarial threats. To address this challenge, this study undertakes a systematic review of 23 representative papers published between 2016 and 2025, analyzing the IIoT-based IDS approaches. Distinguishing itself from existing reviews, this work classifies IDS approaches based on deployment architecture, detection methodology, and security threat types, thereby identifying a critical gap in current defensive capabilities. This analytical framework reveals a critical deficiency in current defense mechanisms against sophisticated threats such as adversarial attacks. The proposed taxonomy provides a foundational framework for the rational design of robust hybrid IDS solutions that can secure both legacy supervisory control and data acquisition (SCADA) systems and modern smart devices. Ultimately, these findings provide a strategic road-map for researchers and practitioners to advance Cybersecurity resilience in the rapidly maturing IIoT platforms.},
DOI = {10.32604/jcs.2026.077850}
}