Skip to Main content Skip to Navigation
Conference papers

Using Process Invariants to Detect Cyber Attacks on a Water Treatment System

Abstract : An experimental investigation was undertaken to assess the effectiveness of process invariants in detecting cyber-attacks on an Industrial Control System (ICS). An invariant was derived from one selected sub-process and coded into the corresponding controller. Experiments were performed each with an attack selected from a set of three stealthy attack types and launched in different states of the system to cause tank overflow and degrade system productivity. The impact of power failure, possibly due to an attack on the power source, was also studied. The effectiveness of the detection method was investigated against several design parameters. Despite the apparent simplicity of the experiment, results point to challenges in implementing invariant-based attack detection in an operational Industrial Control System.
Document type :
Conference papers
Complete list of metadata

Cited literature [15 references]  Display  Hide  Download
Contributor : Hal Ifip Connect in order to contact the contributor
Submitted on : Wednesday, September 21, 2016 - 10:53:15 AM
Last modification on : Monday, May 25, 2020 - 4:34:06 PM
Long-term archiving on: : Thursday, December 22, 2016 - 1:11:36 PM


Files produced by the author(s)


Distributed under a Creative Commons Attribution 4.0 International License



Sridhar Adepu, Aditya Mathur. Using Process Invariants to Detect Cyber Attacks on a Water Treatment System. 31st IFIP International Information Security and Privacy Conference (SEC), May 2016, Ghent, Belgium. pp.91-104, ⟨10.1007/978-3-319-33630-5_7⟩. ⟨hal-01369545⟩



Record views


Files downloads