Explainable AI for Process-Aware Attack Detection in Industrial Control Systems

被引:0
作者
Kenmogne, Lea Astrid [1 ]
Mocanu, Stephane [1 ]
机构
[1] Univ Grenoble Alpes, INRIA, CNRS, Grenoble INP,LIG, F-38000 Grenoble, France
来源
2024 IEEE 10TH INTERNATIONAL CONFERENCE ON NETWORK SOFTWARIZATION, NETSOFT 2024 | 2024年
关键词
Explainable Artificial Intelligence; Anomaly based detection; Industrial Control Systems; INTRUSION DETECTION;
D O I
10.1109/NetSoft60951.2024.10588940
中图分类号
TP [自动化技术、计算机技术];
学科分类号
0812 ;
摘要
Industrial Control System cybersecurity has become an important study area after the occurrence of several mediatic events in the 2010's (Stuxnet, BlackEnergy, Industroyer). Two common characteristics of these attacks are the fact that they were not violating the communication protocols being "stealth" for classical pattern-based detection methods and that they explicitly target the physical process. In this paper we study the performance and explainability of an artificial intelligence based detection system for the detection of such sophisticated attacks.
引用
收藏
页码:363 / 368
页数:6
相关论文
共 16 条
[1]   Explaining anomalies detected by autoencoders using Shapley Additive Explanations [J].
Antwarg, Liat ;
Miller, Ronnie Mindlin ;
Shapira, Bracha ;
Rokach, Lior .
EXPERT SYSTEMS WITH APPLICATIONS, 2021, 186
[2]   Exploiting traffic periodicity in industrial control networks [J].
Barbosa, Rafael Ramos Regis ;
Sadre, Ramin ;
Pras, Aiko .
INTERNATIONAL JOURNAL OF CRITICAL INFRASTRUCTURE PROTECTION, 2016, 13 :52-62
[3]  
Carcano A, 2010, LECT NOTES COMPUT SC, V6027, P138
[4]   Explainable artificial intelligence for cybersecurity: a literature survey [J].
Charmet, Fabien ;
Tanuwidjaja, Harry Chandra ;
Ayoubi, Solayman ;
Gimenez, Pierre-Francois ;
Han, Yufei ;
Jmila, Houda ;
Blanc, Gregory ;
Takahashi, Takeshi ;
Zhang, Zonghua .
ANNALS OF TELECOMMUNICATIONS, 2022, 77 (11-12) :789-812
[5]   Explainable Anomaly Detection for Industrial Control System Cybersecurity [J].
Do Thu Ha ;
Nguyen Xuan Hoang ;
Nguyen Viet Hoang ;
Nguyen Huu Du ;
Truong Thu Huong ;
Kim Phuc Tran .
IFAC PAPERSONLINE, 2022, 55 (10) :1183-1188
[6]  
Dwyer M. B., 1999, Proceedings of the 1999 International Conference on Software Engineering (IEEE Cat. No.99CB37002), P411, DOI 10.1109/ICSE.1999.841031
[7]  
Hink RCB, 2014, INT SYMP RESIL CONTR
[8]   Standard specification-based intrusion detection for hierarchical industrial control systems [J].
Hotellier, Estelle ;
Sicard, Franck ;
Francq, Julien ;
Mocanu, Stephane .
INFORMATION SCIENCES, 2024, 659
[9]  
Konrad S, 2005, PROC INT CONF SOFTW, P372
[10]   Efficient Mining of Temporal Safety Properties for Intrusion Detection in Industrial Control Systems [J].
Koucham, Oualid ;
Mocanu, Stephane ;
Hiet, Guillaume ;
Thiriet, Jean-Marc ;
Majorczyk, Frederic .
IFAC PAPERSONLINE, 2018, 51 (24) :1043-1050
12