Flow‐based intrusion detection algorithm for supervisory control and data acquisition systems: A real‐time approach

Flow‐based intrusion detection algorithm for supervisory control and data acquisition systems: A real‐time approach

Abstract Intrusion detection in supervisory control and data acquisition (SCADA) systems is integral because of the critical roles of these systems in industries. However, available approaches in the literature lack representative flow‐based datasets and reliable real‐time adaption and evaluation. A...

Full description

Bibliographic Details
Main Authors: Marcio Andrey Teixeira, Maede Zolanvari, Khaled M. Khan, Raj Jain, Nader Meskin
Format: Article
Language:English
Published: Wiley 2021-09-01
Series:IET Cyber-Physical Systems
Online Access:https://doi.org/10.1049/cps2.12016
id doaj-091f5724033d475f9162ee710b544ea7
record_format Article
spelling doaj-091f5724033d475f9162ee710b544ea72021-09-20T11:54:41ZengWileyIET Cyber-Physical Systems2398-33962021-09-016317819110.1049/cps2.12016Flow‐based intrusion detection algorithm for supervisory control and data acquisition systems: A real‐time approachMarcio Andrey Teixeira0Maede Zolanvari1Khaled M. Khan2Raj Jain3Nader Meskin4Department of Informatics Federal Institute of Education, Science, and Technology of São Paulo Catanduva BrazilDepartment of Computer Science and Engineering Washington University in St. Louis St. Louis USADepartment of Computer Science and Engineering Qatar University Doha QatarDepartment of Computer Science and Engineering Washington University in St. Louis St. Louis USADepartment of Electrical Engineering Qatar University Doha QatarAbstract Intrusion detection in supervisory control and data acquisition (SCADA) systems is integral because of the critical roles of these systems in industries. However, available approaches in the literature lack representative flow‐based datasets and reliable real‐time adaption and evaluation. A publicly available labelled dataset to support flow‐based intrusion detection research specific to SCADA systems is presented. Cyberattacks were carried out against our SCADA system test bed to generate this flow‐based dataset. Moreover, a flow‐based intrusion detection system (IDS) is developed for SCADA systems using a deep learning algorithm. We used the dataset to develop this IDS model for real‐time operations of SCADA systems to detect attacks momentarily after they happen. The results show empirical proof of the model’s adequacy when deployed online to detect cyberattacks in real time.https://doi.org/10.1049/cps2.12016
collection DOAJ
language English
format Article
sources DOAJ
author Marcio Andrey Teixeira
Maede Zolanvari
Khaled M. Khan
Raj Jain
Nader Meskin
spellingShingle Marcio Andrey Teixeira
Maede Zolanvari
Khaled M. Khan
Raj Jain
Nader Meskin
Flow‐based intrusion detection algorithm for supervisory control and data acquisition systems: A real‐time approach
IET Cyber-Physical Systems
author_facet Marcio Andrey Teixeira
Maede Zolanvari
Khaled M. Khan
Raj Jain
Nader Meskin
author_sort Marcio Andrey Teixeira
title Flow‐based intrusion detection algorithm for supervisory control and data acquisition systems: A real‐time approach
title_short Flow‐based intrusion detection algorithm for supervisory control and data acquisition systems: A real‐time approach
title_full Flow‐based intrusion detection algorithm for supervisory control and data acquisition systems: A real‐time approach
title_fullStr Flow‐based intrusion detection algorithm for supervisory control and data acquisition systems: A real‐time approach
title_full_unstemmed Flow‐based intrusion detection algorithm for supervisory control and data acquisition systems: A real‐time approach
title_sort flow‐based intrusion detection algorithm for supervisory control and data acquisition systems: a real‐time approach
publisher Wiley
series IET Cyber-Physical Systems
issn 2398-3396
publishDate 2021-09-01
description Abstract Intrusion detection in supervisory control and data acquisition (SCADA) systems is integral because of the critical roles of these systems in industries. However, available approaches in the literature lack representative flow‐based datasets and reliable real‐time adaption and evaluation. A publicly available labelled dataset to support flow‐based intrusion detection research specific to SCADA systems is presented. Cyberattacks were carried out against our SCADA system test bed to generate this flow‐based dataset. Moreover, a flow‐based intrusion detection system (IDS) is developed for SCADA systems using a deep learning algorithm. We used the dataset to develop this IDS model for real‐time operations of SCADA systems to detect attacks momentarily after they happen. The results show empirical proof of the model’s adequacy when deployed online to detect cyberattacks in real time.
url https://doi.org/10.1049/cps2.12016
work_keys_str_mv AT marcioandreyteixeira flowbasedintrusiondetectionalgorithmforsupervisorycontrolanddataacquisitionsystemsarealtimeapproach
AT maedezolanvari flowbasedintrusiondetectionalgorithmforsupervisorycontrolanddataacquisitionsystemsarealtimeapproach
AT khaledmkhan flowbasedintrusiondetectionalgorithmforsupervisorycontrolanddataacquisitionsystemsarealtimeapproach
AT rajjain flowbasedintrusiondetectionalgorithmforsupervisorycontrolanddataacquisitionsystemsarealtimeapproach
AT nadermeskin flowbasedintrusiondetectionalgorithmforsupervisorycontrolanddataacquisitionsystemsarealtimeapproach
_version_ 1717374475597512704

Similar Items