DRACE: A Framework for Evaluating Anomaly Detectors for Industrial Control Systems

被引:0
|
作者
Christian, Ivan [1 ]
Furtado, Francisco [1 ]
Mathur, Aditya P. [1 ]
机构
[1] SUTD, ITrust, Singapore, Singapore
来源
PROCEEDINGS OF THE 10TH ACM CYBER-PHYSICAL SYSTEM SECURITY WORKSHOP, ACM CPSS 2024 | 2024年
基金
新加坡国家研究基金会;
关键词
Anomaly detection; Cyber exercise; Industrial Control Systems; Cyber Security; Performance Metrics; Critical Infrastructure; Tools;
D O I
10.1145/3626205.3659145
中图分类号
TP [自动化技术、计算机技术];
学科分类号
0812 ;
摘要
The detection of process anomalies is a critical step in defending a physical plant against cyber-attacks. We propose a framework named DRACE that includes a set of metrics to evaluate the effectiveness of anomaly detectors, referred to as Intrusion Detection Systems (IDS). Different from those used in the literature, the proposed metrics are designed to serve as a means for plant engineers and IT specialists to compare multiple detectors prior to deciding which to deploy. The metrics were found effective in evaluating the effectiveness of several anomaly detectors of different origins in a case study conducted in the iTrust laboratory.
引用
收藏
页码:77 / 87
页数:11
相关论文
共 50 条
  • [31] A Machine Learning Approach for Anomaly Detection in Industrial Control Systems Based on Measurement Data
    Mokhtari, Sohrab
    Abbaspour, Alireza
    Yen, Kang K.
    Sargolzaei, Arman
    ELECTRONICS, 2021, 10 (04) : 1 - 13
  • [32] Detecting cyberattacks using anomaly detection in industrial control systems: A Federated Learning approach
    Huong, Truong Thu
    Bac, Ta Phuong
    Long, Dao Minh
    Luong, Tran Duc
    Dan, Nguyen Minh
    Quang, Le Anh
    Cong, Le Thanh
    Thang, Bui Doan
    Tran, Kim Phuc
    COMPUTERS IN INDUSTRY, 2021, 132 (132)
  • [33] Research on Improvement of Anomaly Detection Performance in Industrial Control Systems
    Bae, Sungho
    Hwang, Chanwoong
    Lee, Taejin
    INFORMATION SECURITY APPLICATIONS, 2021, 13009 : 76 - 87
  • [34] State-Aware Anomaly Detection for Industrial Control Systems
    Ghaeini, Hamid Reza
    Antonioli, Daniele
    Brasser, Ferdinand
    Sadeghi, Ahmad-Reza
    Tippenhauer, Nils Ole
    33RD ANNUAL ACM SYMPOSIUM ON APPLIED COMPUTING, 2018, : 1620 - 1628
  • [35] Discovering a data interpreted petri net model of industrial control systems for anomaly detection
    Hussain, Mukhtar
    Fidge, Colin
    Foo, Ernest
    Jadidi, Zahra
    EXPERT SYSTEMS WITH APPLICATIONS, 2023, 230
  • [36] Anomaly Detection based on Robust Spatial-temporal Modeling for Industrial Control Systems
    Li, Shijie
    Liu, Junjiao
    Pan, Zhiwen
    Lv, Shichao
    Si, Shuaizong
    Sun, Limin
    2022 IEEE 19TH INTERNATIONAL CONFERENCE ON MOBILE AD HOC AND SMART SYSTEMS (MASS 2022), 2022, : 355 - 363
  • [37] Using timing-based side channels for anomaly detection in industrial control systems
    Dunlap, Stephen
    Butts, Jonathan
    Lopez, Juan
    Rice, Mason
    Mullins, Barry
    INTERNATIONAL JOURNAL OF CRITICAL INFRASTRUCTURE PROTECTION, 2016, 15 : 12 - 26
  • [38] Anomaly detection for industrial control systems using process mining
    Myers, David
    Suriadi, Suriadi
    Radke, Kenneth
    Foo, Ernest
    COMPUTERS & SECURITY, 2018, 78 : 103 - 125
  • [39] A conceptual framework for securing industrial control systems: Smart grid environment
    Ali S.
    Al Abri M.
    International Journal of Systems, Control and Communications, 2019, 10 (04) : 281 - 302
  • [40] An Anomaly Detection Method for Oilfield Industrial Control Systems Fine-Tuned Using the Llama3 Model
    Zhao, Jianming
    Jin, Ziwen
    Zeng, Peng
    Sheng, Chuan
    Wang, Tianyu
    APPLIED SCIENCES-BASEL, 2024, 14 (20):
12345