DRACE: A Framework for Evaluating Anomaly Detectors for Industrial Control Systems

被引:0
|
作者
Christian, Ivan [1 ]
Furtado, Francisco [1 ]
Mathur, Aditya P. [1 ]
机构
[1] SUTD, ITrust, Singapore, Singapore
来源
PROCEEDINGS OF THE 10TH ACM CYBER-PHYSICAL SYSTEM SECURITY WORKSHOP, ACM CPSS 2024 | 2024年
基金
新加坡国家研究基金会;
关键词
Anomaly detection; Cyber exercise; Industrial Control Systems; Cyber Security; Performance Metrics; Critical Infrastructure; Tools;
D O I
10.1145/3626205.3659145
中图分类号
TP [自动化技术、计算机技术];
学科分类号
0812 ;
摘要
The detection of process anomalies is a critical step in defending a physical plant against cyber-attacks. We propose a framework named DRACE that includes a set of metrics to evaluate the effectiveness of anomaly detectors, referred to as Intrusion Detection Systems (IDS). Different from those used in the literature, the proposed metrics are designed to serve as a means for plant engineers and IT specialists to compare multiple detectors prior to deciding which to deploy. The metrics were found effective in evaluating the effectiveness of several anomaly detectors of different origins in a case study conducted in the iTrust laboratory.
引用
收藏
页码:77 / 87
页数:11
相关论文
共 50 条
  • [1] A Mechanism to Assess the Effectiveness Anomaly Detectors in Industrial Control Systems
    Liyakkathali, Salimah
    Furtado, Francisco
    Sugumar, Gayathri
    Mathur, Aditya
    JOURNAL OF INTEGRATED DESIGN & PROCESS SCIENCE, 2020, 24 (3-4) : 35 - +
  • [2] A Mechanism to Assess the Effectiveness Anomaly Detectors in Industrial Control Systems
    Liyakkathali S.
    Furtado F.
    Sugumar G.
    Mathur A.
    Liyakkathali, Salimah (bssbl.research@gmail.com), 1600, IOS Press BV (24): : 35 - 60
  • [3] Crafting Adversarial Samples for Anomaly Detectors in Industrial Control Systems
    Perales Gomez, Angel Luis
    Fernandez Maimo, Lorenzo
    Celdran, Alberto Huertas
    Garcia Clemente, Felix J.
    Cleary, Frances
    12TH INTERNATIONAL CONFERENCE ON AMBIENT SYSTEMS, NETWORKS AND TECHNOLOGIES (ANT) / THE 4TH INTERNATIONAL CONFERENCE ON EMERGING DATA AND INDUSTRY 4.0 (EDI40) / AFFILIATED WORKSHOPS, 2021, 184 : 573 - 580
  • [4] Practical Evaluation of Poisoning Attacks on Online Anomaly Detectors in Industrial Control Systems
    Kravchik, Moshe
    Demetrio, Luca
    Biggio, Battista
    Shabtai, Asaf
    COMPUTERS & SECURITY, 2022, 122
  • [5] A Systematic Framework to Generate Invariants for Anomaly Detection in Industrial Control Systems
    Feng, Cheng
    Palleti, Venkata Reddy
    Mathur, Aditya
    Chana, Deeph
    26TH ANNUAL NETWORK AND DISTRIBUTED SYSTEM SECURITY SYMPOSIUM (NDSS 2019), 2019,
  • [6] Super Detector: An Ensemble Approach for Anomaly Detection in Industrial Control Systems
    Balaji, Madhumitha
    Shrivastava, Siddhant
    Adepu, Sridhar
    Mathur, Aditya
    CRITICAL INFORMATION INFRASTRUCTURES SECURITY, CRITIS 2021, 2021, 13139 : 24 - 43
  • [7] A Methodology for Evaluating the Robustness of Anomaly Detectors to Adversarial Attacks in Industrial Scenarios
    Perales Gomez, Angel Luis
    Fernandez Maimo, Lorenzo
    Garcia Clemente, Felix J.
    Maroto Morales, Javier Alejandro
    Huertas Celdran, Alberto
    Bovet, Gerome
    IEEE ACCESS, 2022, 10 : 124582 - 124594
  • [8] A Control Flow Anomaly Detection Algorithm for Industrial Control Systems
    Zhang, Zhigang
    Chang, Chaowen
    Lv, Zhuo
    Han, Peisheng
    Wang, Yutong
    2018 1ST INTERNATIONAL CONFERENCE ON DATA INTELLIGENCE AND SECURITY (ICDIS 2018), 2018, : 286 - 293
  • [9] AADS: A Noise-Robust Anomaly Detection Framework for Industrial Control Systems
    Abdelaty, Maged
    Doriguzzi-Corin, Roberto
    Siracusa, Domenico
    INFORMATION AND COMMUNICATIONS SECURITY (ICICS 2019), 2020, 11999 : 53 - 70
  • [10] On the Generation of Anomaly Detection Datasets in Industrial Control Systems
    Perales Gomez, Angel Luis
    Fernandez Maimo, Lorenzo
    Celdran, Alberto Huertas
    Garcia Clemente, Felix J.
    Cadenas Sarmiento, Cristian
    Del Canto Masa, Carlos Javier
    Mendez Nistal, Ruben
    IEEE ACCESS, 2019, 7 : 177460 - 177473
12345