DRACE: A Framework for Evaluating Anomaly Detectors for Industrial Control Systems

被引:0
|
作者
Christian, Ivan [1 ]
Furtado, Francisco [1 ]
Mathur, Aditya P. [1 ]
机构
[1] SUTD, ITrust, Singapore, Singapore
来源
PROCEEDINGS OF THE 10TH ACM CYBER-PHYSICAL SYSTEM SECURITY WORKSHOP, ACM CPSS 2024 | 2024年
基金
新加坡国家研究基金会;
关键词
Anomaly detection; Cyber exercise; Industrial Control Systems; Cyber Security; Performance Metrics; Critical Infrastructure; Tools;
D O I
10.1145/3626205.3659145
中图分类号
TP [自动化技术、计算机技术];
学科分类号
0812 ;
摘要
The detection of process anomalies is a critical step in defending a physical plant against cyber-attacks. We propose a framework named DRACE that includes a set of metrics to evaluate the effectiveness of anomaly detectors, referred to as Intrusion Detection Systems (IDS). Different from those used in the literature, the proposed metrics are designed to serve as a means for plant engineers and IT specialists to compare multiple detectors prior to deciding which to deploy. The metrics were found effective in evaluating the effectiveness of several anomaly detectors of different origins in a case study conducted in the iTrust laboratory.
引用
收藏
页码:77 / 87
页数:11
相关论文
共 50 条
  • [21] WaXAI: Explainable Anomaly Detection in Industrial Control Systems and Water Systems
    Mathuros, Kornkamon
    Venugopalan, Sarad
    Adepu, Sridhar
    PROCEEDINGS OF THE 10TH ACM CYBER-PHYSICAL SYSTEM SECURITY WORKSHOP, ACM CPSS 2024, 2024, : 3 - 15
  • [22] A Framework of Evaluation Methodologies for Network Anomaly Detectors
    Zhao, Xin
    Qian, Yekui
    Wang, Changsheng
    PROCEEDINGS OF THE 2ND INTERNATIONAL CONFERENCE ON COMPUTER AND INFORMATION APPLICATIONS (ICCIA 2012), 2012, : 729 - 732
  • [23] A Framework for Incident Response in Industrial Control Systems
    Schlegel, Roman
    Hristova, Ana
    Obermeier, Sebastian
    2015 12TH INTERNATIONAL JOINT CONFERENCE ON E-BUSINESS AND TELECOMMUNICATIONS (ICETE), VOL 4, 2015, : 178 - 185
  • [24] A Threat Hunting Framework for Industrial Control Systems
    Jadidi, Zahra
    Lu, Yi
    IEEE ACCESS, 2021, 9 : 164118 - 164130
  • [25] Anomaly Detection of Industrial Control Systems Based on Transfer Learning
    Wang, Weiping
    Wang, Zhaorong
    Zhou, Zhanfan
    Deng, Haixia
    Zhao, Weiliang
    Wang, Chunyang
    Guo, Yongzhen
    TSINGHUA SCIENCE AND TECHNOLOGY, 2021, 26 (06) : 821 - 832
  • [26] Poisoning Attacks on Cyber Attack Detectors for Industrial Control Systems
    Kravchik, Moshe
    Biggio, Battista
    Shabtai, Asaf
    36TH ANNUAL ACM SYMPOSIUM ON APPLIED COMPUTING, SAC 2021, 2021, : 116 - 125
  • [27] Anomaly Detection of Industrial Control Systems Based on Transfer Learning
    Weiping Wang
    Zhaorong Wang
    Zhanfan Zhou
    Haixia Deng
    Weiliang Zhao
    Chunyang Wang
    Yongzhen Guo
    TsinghuaScienceandTechnology, 2021, 26 (06) : 821 - 832
  • [28] A Deep Learning Approach for Anomaly Detection for Industrial Control Systems
    Giracca, Damian Martinez
    Pires, Fabio Lopez
    Baran, Benjamin
    Jara, Eustaquio Alcides Martinez
    2024 L LATIN AMERICAN COMPUTER CONFERENCE, CLEI 2024, 2024,
  • [29] Correlation-Based Anomaly Detection in Industrial Control Systems
    Jadidi, Zahra
    Pal, Shantanu
    Hussain, Mukhtar
    Thanh, Kien Nguyen
    SENSORS, 2023, 23 (03)
  • [30] Unsupervised Learning Approach for Anomaly Detection in Industrial Control Systems
    Choi, Woo-Hyun
    Kim, Jongwon
    APPLIED SYSTEM INNOVATION, 2024, 7 (02)
12345