DRACE: A Framework for Evaluating Anomaly Detectors for Industrial Control Systems

被引:0
|
作者
Christian, Ivan [1 ]
Furtado, Francisco [1 ]
Mathur, Aditya P. [1 ]
机构
[1] SUTD, ITrust, Singapore, Singapore
来源
PROCEEDINGS OF THE 10TH ACM CYBER-PHYSICAL SYSTEM SECURITY WORKSHOP, ACM CPSS 2024 | 2024年
基金
新加坡国家研究基金会;
关键词
Anomaly detection; Cyber exercise; Industrial Control Systems; Cyber Security; Performance Metrics; Critical Infrastructure; Tools;
D O I
10.1145/3626205.3659145
中图分类号
TP [自动化技术、计算机技术];
学科分类号
0812 ;
摘要
The detection of process anomalies is a critical step in defending a physical plant against cyber-attacks. We propose a framework named DRACE that includes a set of metrics to evaluate the effectiveness of anomaly detectors, referred to as Intrusion Detection Systems (IDS). Different from those used in the literature, the proposed metrics are designed to serve as a means for plant engineers and IT specialists to compare multiple detectors prior to deciding which to deploy. The metrics were found effective in evaluating the effectiveness of several anomaly detectors of different origins in a case study conducted in the iTrust laboratory.
引用
收藏
页码:77 / 87
页数:11
相关论文
共 50 条
  • [1] A Mechanism to Assess the Effectiveness Anomaly Detectors in Industrial Control Systems
    Liyakkathali S.
    Furtado F.
    Sugumar G.
    Mathur A.
    Liyakkathali, Salimah (bssbl.research@gmail.com), 1600, IOS Press BV (24): : 35 - 60
  • [2] Crafting Adversarial Samples for Anomaly Detectors in Industrial Control Systems
    Perales Gomez, Angel Luis
    Fernandez Maimo, Lorenzo
    Celdran, Alberto Huertas
    Garcia Clemente, Felix J.
    Cleary, Frances
    12TH INTERNATIONAL CONFERENCE ON AMBIENT SYSTEMS, NETWORKS AND TECHNOLOGIES (ANT) / THE 4TH INTERNATIONAL CONFERENCE ON EMERGING DATA AND INDUSTRY 4.0 (EDI40) / AFFILIATED WORKSHOPS, 2021, 184 : 573 - 580
  • [3] A Mechanism to Assess the Effectiveness Anomaly Detectors in Industrial Control Systems
    Liyakkathali, Salimah
    Furtado, Francisco
    Sugumar, Gayathri
    Mathur, Aditya
    JOURNAL OF INTEGRATED DESIGN & PROCESS SCIENCE, 2020, 24 (3-4) : 35 - +
  • [4] FALCON: Framework for Anomaly Detection in Industrial Control Systems
    Sapkota, Subin
    Mehdy, A. K. M. Nuhil
    Reese, Stephen
    Mehrpouyan, Hoda
    ELECTRONICS, 2020, 9 (08) : 1 - 20
  • [5] Practical Evaluation of Poisoning Attacks on Online Anomaly Detectors in Industrial Control Systems
    Kravchik, Moshe
    Demetrio, Luca
    Biggio, Battista
    Shabtai, Asaf
    COMPUTERS & SECURITY, 2022, 122
  • [6] A Systematic Framework to Generate Invariants for Anomaly Detection in Industrial Control Systems
    Feng, Cheng
    Palleti, Venkata Reddy
    Mathur, Aditya
    Chana, Deeph
    26TH ANNUAL NETWORK AND DISTRIBUTED SYSTEM SECURITY SYMPOSIUM (NDSS 2019), 2019,
  • [7] A Methodology for Evaluating the Robustness of Anomaly Detectors to Adversarial Attacks in Industrial Scenarios
    Perales Gomez, Angel Luis
    Fernandez Maimo, Lorenzo
    Garcia Clemente, Felix J.
    Maroto Morales, Javier Alejandro
    Huertas Celdran, Alberto
    Bovet, Gerome
    IEEE ACCESS, 2022, 10 : 124582 - 124594
  • [8] AADS: A Noise-Robust Anomaly Detection Framework for Industrial Control Systems
    Abdelaty, Maged
    Doriguzzi-Corin, Roberto
    Siracusa, Domenico
    INFORMATION AND COMMUNICATIONS SECURITY (ICICS 2019), 2020, 11999 : 53 - 70
  • [9] Constrained Concealment Attacks against Reconstruction-based Anomaly Detectors in Industrial Control Systems
    Erba, Alessandro
    Taormina, Riccardo
    Galelli, Stefano
    Pogliani, Marcello
    Carminati, Michele
    Zanero, Stefano
    Tippenhauer, Nils Ole
    36TH ANNUAL COMPUTER SECURITY APPLICATIONS CONFERENCE (ACSAC 2020), 2020, : 480 - 495
  • [10] Performance Assessment for Stochastic Anomaly Detectors in Industrial Alarm Systems
    Zhou, Jing
    Shang, Jun
    Chen, Tongwen
    2024 IEEE 18TH INTERNATIONAL CONFERENCE ON CONTROL & AUTOMATION, ICCA 2024, 2024, : 406 - 411
12345