Using Process Invariants to Detect Cyber Attacks on a Water Treatment System

Abstract : An experimental investigation was undertaken to assess the effectiveness of process invariants in detecting cyber-attacks on an Industrial Control System (ICS). An invariant was derived from one selected sub-process and coded into the corresponding controller. Experiments were performed each with an attack selected from a set of three stealthy attack types and launched in different states of the system to cause tank overflow and degrade system productivity. The impact of power failure, possibly due to an attack on the power source, was also studied. The effectiveness of the detection method was investigated against several design parameters. Despite the apparent simplicity of the experiment, results point to challenges in implementing invariant-based attack detection in an operational Industrial Control System.
Type de document :
Communication dans un congrès
Jaap-Henk Hoepman; Stefan Katzenbeisser. 31st IFIP International Information Security and Privacy Conference (SEC), May 2016, Ghent, Belgium. IFIP Advances in Information and Communication Technology, AICT-471, pp.91-104, 2016, ICT Systems Security and Privacy Protection. 〈10.1007/978-3-319-33630-5_7〉
Liste complète des métadonnées

Littérature citée [15 références]  Voir  Masquer  Télécharger

https://hal.inria.fr/hal-01369545
Contributeur : Hal Ifip <>
Soumis le : mercredi 21 septembre 2016 - 10:53:15
Dernière modification le : jeudi 22 septembre 2016 - 01:04:56
Document(s) archivé(s) le : jeudi 22 décembre 2016 - 13:11:36

Fichier

 Accès restreint
Fichier visible le : 2019-01-01

Connectez-vous pour demander l'accès au fichier

Licence


Distributed under a Creative Commons Paternité 4.0 International License

Identifiants

Citation

Sridhar Adepu, Aditya Mathur. Using Process Invariants to Detect Cyber Attacks on a Water Treatment System. Jaap-Henk Hoepman; Stefan Katzenbeisser. 31st IFIP International Information Security and Privacy Conference (SEC), May 2016, Ghent, Belgium. IFIP Advances in Information and Communication Technology, AICT-471, pp.91-104, 2016, ICT Systems Security and Privacy Protection. 〈10.1007/978-3-319-33630-5_7〉. 〈hal-01369545〉

Partager

Métriques

Consultations de la notice

125