A Distributed IDS for Industrial Control Systems
نویسندگان
چکیده
Cyber-threats are one of the most significant problems faced by modern Industrial Control Systems (ICS), such as SCADA (Supervisory Control and Data Acquisition) systems, as the vulnerabilities of ICS technology become serious threats that can ultimately compromise human lives. This situation demands a domainspecific approach to cyber threat detection within ICS, which is one of the most important contributions of the CockpitCI FP7 project (http://CockpitCI.eu). Specifically, this paper will present the CockpitCI distributed Intrusion Detection System (IDS) for ICS, which provides its core cyber-detection and analysis capabilities, also including a description of its components, in terms of role, operation, integration, and remote management. Moreover, it will also introduce and describe new domain-specific solutions for ICS security such as the SCADA Honeypot and the Shadow Security Unit, which are part of the CockcpitCI IDS framework. A Distributed IDS for Industrial Control Systems
منابع مشابه
Leveraging SDN to Monitor Critical Infrastricture Networks in a Smarter Way
In critical infrastructures, communication networks are used to exchange vital data among elements of Industrial Control Systems (ICSes). Due to the criticality of such systems and the increase of the cybersecurity risks in these contexts, best practices recommend the adoption of Intrusion Detection Systems (IDSes) as monitoring facilities. The choice of the positions of IDSes is crucial to mon...
متن کاملDesign of A No-chatter Fractional Sliding Mode Control Approach for Stabilization of Non-Integer Chaotic Systems
A nonlinear chattering-free sliding mode control method is designed to stabilize fractional chaotic systems with model uncertainties and external disturbances. The main feature of this controller is rapid convergence to equilibrium point, minimize chattering and resistance against uncertainties. The frequency distributed model is used to prove the stability of the controlled system based on dir...
متن کاملAgent-Based Intrusion Detection System for Integration
More and more application services are provided and distributed over the Internet for public access. However, the security of distributed application severs is becoming a serious problem due to many possible attacks, such as deny of service, illegal intrusion, etc. Because of weakness of the firewall systems in ensuring security, intrusion detection system (IDS) becomes popular. Now, many kinds...
متن کاملRFID Privacy Using Spatially Distributed Shared Secrets
Many of today’s proposed RFID privacy schemes rely on the encryption of tag IDs with user-chosen keys. However, password management quickly becomes a bottleneck in such proposals, rendering them infeasible in situations where tagged items are repeatedly exchanged in informal (i.e., personal) situations, in particular outside industrial supply-chains or supermarket checkout lanes. An alternative...
متن کاملAgent-based Intrusion Detection For Network-based Application
Now days, different kinds of IDS systems are available for serving in the network distributed system, but these systems mainly concentrate on network-based and hostbased detection. It is inconvenient to integrate these systems into distributed application servers for applicationbased intrusion detection. An agent-based IDS that can be smoothly integrated into the applications of enterprise info...
متن کاملذخیره در منابع من
با ذخیره ی این منبع در منابع من، دسترسی به آن را برای استفاده های بعدی آسان تر کنید
برای دانلود متن کامل این مقاله و بیش از 32 میلیون مقاله دیگر ابتدا ثبت نام کنید
ثبت ناماگر عضو سایت هستید لطفا وارد حساب کاربری خود شوید
ورودعنوان ژورنال:
- IJCWT
دوره 4 شماره
صفحات -
تاریخ انتشار 2014