DRACE: A Framework for Evaluating Anomaly Detectors for Industrial Control Systems

被引:0
|
作者
Christian, Ivan [1 ]
Furtado, Francisco [1 ]
Mathur, Aditya P. [1 ]
机构
[1] SUTD, ITrust, Singapore, Singapore
来源
PROCEEDINGS OF THE 10TH ACM CYBER-PHYSICAL SYSTEM SECURITY WORKSHOP, ACM CPSS 2024 | 2024年
基金
新加坡国家研究基金会;
关键词
Anomaly detection; Cyber exercise; Industrial Control Systems; Cyber Security; Performance Metrics; Critical Infrastructure; Tools;
D O I
10.1145/3626205.3659145
中图分类号
TP [自动化技术、计算机技术];
学科分类号
0812 ;
摘要
The detection of process anomalies is a critical step in defending a physical plant against cyber-attacks. We propose a framework named DRACE that includes a set of metrics to evaluate the effectiveness of anomaly detectors, referred to as Intrusion Detection Systems (IDS). Different from those used in the literature, the proposed metrics are designed to serve as a means for plant engineers and IT specialists to compare multiple detectors prior to deciding which to deploy. The metrics were found effective in evaluating the effectiveness of several anomaly detectors of different origins in a case study conducted in the iTrust laboratory.
引用
收藏
页码:77 / 87
页数:11
相关论文
共 50 条
  • [41] An Analytics Framework for Heuristic Inference Attacks against Industrial Control Systems
    Choi, Taejun
    Bai, Guangdong
    Ko, Ryan K. L.
    Dong, Naipeng
    Zhang, Wenlu
    Wang, Shunyao
    2020 IEEE 19TH INTERNATIONAL CONFERENCE ON TRUST, SECURITY AND PRIVACY IN COMPUTING AND COMMUNICATIONS (TRUSTCOM 2020), 2020, : 828 - 836
  • [42] INDUSTRIAL CONTROL SYSTEM FINGERPRINTING AND ANOMALY DETECTION
    Peng, Yong
    Xiang, Chong
    Gao, Haihui
    Chen, Dongqing
    Ren, Wang
    CRITICAL INFRASTRUCTURE PROTECTION IX, 2015, 466 : 73 - 85
  • [43] Adaptable and Interpretable Framework for Anomaly Detection in SCADA-based industrial systems
    Wadinger, Marek
    Kvasnica, Michal
    EXPERT SYSTEMS WITH APPLICATIONS, 2024, 246
  • [44] Anomaly detection using isomorphic analysis for false data injection attacks in industrial control systems
    Zhang, Xinchen
    Jiang, Zhihan
    Ding, Yulong
    Ngai, Edith C. H.
    Yang, Shuang-Hua
    JOURNAL OF THE FRANKLIN INSTITUTE-ENGINEERING AND APPLIED MATHEMATICS, 2024, 361 (13):
  • [45] Enhancing Industrial Control Systems Security: Real-Time Anomaly Detection with Uncertainty Estimation
    Birihanu, Ermiyas
    Soullami, Ayyoub
    Lendak, Imre
    DISCOVERY SCIENCE, DS 2024, PT II, 2025, 15244 : 99 - 114
  • [46] Data Clustering-based Anomaly Detection in Industrial Control Systems
    Kiss, Istvan
    Genge, Bela
    Haller, Piroska
    Sebestyen, Gheorghe
    2014 IEEE INTERNATIONAL CONFERENCE ON INTELLIGENT COMPUTER COMMUNICATION AND PROCESSING (ICCP), 2014, : 275 - +
  • [47] A modified densenet approach with nearmiss for anomaly detection in industrial control systems
    Selen Ayas
    Mustafa Sinasi Ayas
    Multimedia Tools and Applications, 2022, 81 : 22573 - 22586
  • [48] A modified densenet approach with nearmiss for anomaly detection in industrial control systems
    Ayas, Selen
    Ayas, Mustafa Sinasi
    MULTIMEDIA TOOLS AND APPLICATIONS, 2022, 81 (16) : 22573 - 22586
  • [49] DAICS: A Deep Learning Solution for Anomaly Detection in Industrial Control Systems
    Abdelaty, Maged
    Doriguzzi-Corin, Roberto
    Siracusa, Domenico
    IEEE TRANSACTIONS ON EMERGING TOPICS IN COMPUTING, 2022, 10 (02) : 1117 - 1129
  • [50] Explainable correlation-based anomaly detection for Industrial Control Systems
    Birihanu, Ermiyas
    Lendak, Imre
    FRONTIERS IN ARTIFICIAL INTELLIGENCE, 2025, 7
12345