Alarm Based Anomaly Detection of Insider Attacks in SCADA System

被引:0
作者
Nasr, Payam Mahmoudi [1 ]
Varjani, Ali Yazdian [1 ]
机构
[1] Tarbiat Modares Univ, Elect & Comp Engn Dept, Tehran, Iran
来源
2014 SMART GRID CONFERENCE (SGC) | 2014年
关键词
Insider attack; anomaly detection; security; SCADA;
D O I
暂无
中图分类号
TE [石油、天然气工业]; TK [能源与动力工程];
学科分类号
0807 ; 0820 ;
摘要
Insider attacks are one of the most dangerous threats on security of critical infrastructures. An insider attack occurs when an authorized operator misuse the permissions, and brings catastrophic damages by sending legitimate control commands. Therefore, insider attacks have great impact and higher success rate, and it is difficult to predict and protect against them. This paper, by study on the SCADA alarms, proposes a new alarm based statistical anomaly detection method to identify potential insider attacks at substations and total transmission system in power grid. To demonstrate the proposed method, two insider attack scenarios have been simulated at both substations level and transmission system. Experimental scenarios illustrate proposed method is effective, and anomalies can be detected by minimum number of alarms.
引用
收藏
页数:6
相关论文
共 50 条
[11]   Wind Turbine Anomaly Detection Based on SCADA Data Mining [J].
Liu, Xiaoyuan ;
Lu, Senxiang ;
Ren, Yan ;
Wu, Zhenning .
ELECTRONICS, 2020, 9 (05)
[12]   An Evaluation of Machine Learning-based Anomaly Detection in a SCADA System Using the Modbus Protocol [J].
Phillips, Brandon ;
Gamess, Eric ;
Krishnaprasad, Sri .
ACMSE 2020: PROCEEDINGS OF THE 2020 ACM SOUTHEAST CONFERENCE, 2020, :188-196
[13]   A System Architecture for the Detection of Insider Attacks in Big Data Systems [J].
Aditham, Santosh ;
Ranganathan, Nagarajan .
IEEE TRANSACTIONS ON DEPENDABLE AND SECURE COMPUTING, 2018, 15 (06) :974-987
[14]   An Ensemble Learning for Anomaly Identification in SCADA System [J].
Siddavatam, Irfan A. ;
Satish, S. ;
Mahesh, W. ;
Kazi, Faruk .
2017 7TH INTERNATIONAL CONFERENCE ON POWER SYSTEMS (ICPS), 2017, :457-462
[15]   Analysis of SCADA System Vulnerabilities to DDoS Attacks [J].
Markovic-Petrovic, Jasna D. ;
Stojanovic, Mirjana D. .
2013 11TH INTERNATIONAL CONFERENCE ON TELECOMMUNICATIONS IN MODERN SATELLITE, CABLE AND BROADCASTING SERVICES (TELSIKS), VOLS 1 AND 2, 2013, :591-594
[16]   False Logic Attacks on SCADA Control System [J].
Li, Weize ;
Xie, Lun ;
Liu, Daqian ;
Wang, Zhiliang .
2014 ASIA-PACIFIC SERVICES COMPUTING CONFERENCE (APSCC), 2014, :136-140
[17]   Design of Intrusion Detection and Prevention in SCADA System for the Detection of Bias Injection Attacks [J].
Benisha, R. B. ;
Raja Ratna, S. .
SECURITY AND COMMUNICATION NETWORKS, 2019, 2019
[18]   Anomaly detection in smart grid using optimized extreme gradient boosting with SCADA system [J].
Sharma, Akash ;
Tiwari, Rajive .
ELECTRIC POWER SYSTEMS RESEARCH, 2024, 235
[19]   Anomaly Detection in SCADA Systems: A State Transition Modeling [J].
Barsha, Nisha Kumari ;
Hubballi, Neminath .
IEEE TRANSACTIONS ON NETWORK AND SERVICE MANAGEMENT, 2024, 21 (03) :3511-3521
[20]   A Model-Based Approach to Anomaly Detection Trading Detection Time and False Alarm Rate [J].
Goncalves, Charles F. ;
Menasche, Daniel S. ;
Avritzer, Alberto ;
Antunes, Nuno ;
Vieira, Marco .
2020 MEDITERRANEAN COMMUNICATION AND COMPUTER NETWORKING CONFERENCE (MEDCOMNET), 2020,
12345