Autoencoder Based Anomaly Detection for SCADA Networks
نویسندگان
چکیده
Supervisory control and data acquisition (SCADA) systems are industrial that used to monitor critical infrastructures such as airports, transport, health, public services of national importance. These cyber physical systems, which increasingly integrated with networks internet things devices. However, this results in a larger attack surface for threats, making it important identify thwart cyber-attacks by detecting anomalous network traffic patterns. Compared other techniques, well known patterns, machine learning can also detect new evolving threats. Autoencoders type neural generates compressed representation its input through reconstruction loss inputs help data. This paper proposes the use autoencoders unsupervised anomaly-based intrusion detection using an appropriate differentiating threshold from distribution demonstrate improvements compared techniques SCADA gas pipeline dataset.
منابع مشابه
Timing-based Anomaly Detection in SCADA Networks
Supervisory Control and Data Acquisition (SCADA) systems that operate our critical infrastructures are subject to increased cyber attacks. Due to the use of request-response communication in polling, SCADA traffic exhibits stable and predictable communication patterns. This paper provides a timing-based anomaly detection system that uses the statistical attributes of the communication patterns....
متن کاملAnomaly-Based Intrusion Detection for SCADA Systems
Most critical infrastructure such as chemical processing plants, electrical generation and distribution networks, and gas distribution is monitored and controlled by Supervisory Control and Data Acquisition Systems (SCADA). These systems have been the focus of increased security and there are concerns that they could be the target of international terrorists. With the constantly growing number ...
متن کاملAn HMM-Based Anomaly Detection Approach for SCADA Systems
We describe the architecture of an anomaly detection system based on the Hidden Markov Model (HMM) for intrusion detection in Industrial Control Systems (ICS) and especially in SCADA systems interconnected using TCP/IP. The proposed system exploits the unique characteristics of ICS networks and protocols to efficiently detect multiple attack vectors. We evaluate the proposed system in terms of ...
متن کاملADAPTIVE ORDERED WEIGHTED AVERAGING FOR ANOMALY DETECTION IN CLUSTER-BASED MOBILE AD HOC NETWORKS
In this paper, an anomaly detection method in cluster-based mobile ad hoc networks with ad hoc on demand distance vector (AODV) routing protocol is proposed. In the method, the required features for describing the normal behavior of AODV are defined via step by step analysis of AODV and independent of any attack. In order to learn the normal behavior of AODV, a fuzzy averaging method is used fo...
متن کاملVariational Autoencoder based Anomaly Detection using Reconstruction Probability
We propose an anomaly detection method using the reconstruction probability from the variational autoencoder. The reconstruction probability is a probabilistic measure that takes into account the variability of the distribution of variables. The reconstruction probability has a theoretical background making it a more principled and objective anomaly score than the reconstruction error, which is...
متن کاملذخیره در منابع من
با ذخیره ی این منبع در منابع من، دسترسی به آن را برای استفاده های بعدی آسان تر کنید
ژورنال
عنوان ژورنال: International journal of artificial intelligence and machine learning
سال: 2021
ISSN: ['2642-1577', '2642-1585']
DOI: https://doi.org/10.4018/ijaiml.20210701.oa6