Industrial Control System Fingerprinting and Anomaly Detection

Abstract : Industrial control systems are cyber-physical systems that supervise and control physical processes in critical infrastructures such as electric grids, water and wastewater treatment plants, oil and natural gas pipelines, transportation systems and chemical plants and refineries. Leveraging the stable and persistent control flow communications patterns in industrial control systems, this chapter proposes an innovative control system fingerprinting methodology that analyzes industrial control protocols to capture normal behavior characteristics. The methodology can be used to identify specific physical processes and control system components in industrial facilities and detect abnormal behavior. An experimental testbed that incorporates real systems for the cyber domain and simulated systems for the physical domain is used to validate the methodology. The experimental results demonstrate that the fingerprinting methodology holds promise for detecting anomalies in industrial control systems and cyber-physical systems used in the critical infrastructure.
Type de document :
Communication dans un congrès
Mason Rice; Sujeet Shenoi. 9th International Conference on Critical Infrastructure Protection (ICCIP), Mar 2015, Arlington, VA, United States. IFIP Advances in Information and Communication Technology, AICT-466, pp.73-85, 2015, Critical Infrastructure Protection IX. 〈10.1007/978-3-319-26567-4_5〉
Liste complète des métadonnées

Littérature citée [15 références]  Voir  Masquer  Télécharger

https://hal.inria.fr/hal-01431014
Contributeur : Hal Ifip <>
Soumis le : mardi 10 janvier 2017 - 14:56:22
Dernière modification le : mercredi 11 janvier 2017 - 14:29:29
Document(s) archivé(s) le : mardi 11 avril 2017 - 15:16:50

Fichier

978-3-319-26567-4_5_Chapter.pd...
Fichiers produits par l'(les) auteur(s)

Licence


Distributed under a Creative Commons Paternité 4.0 International License

Identifiants

Citation

Yong Peng, Chong Xiang, Haihui Gao, Dongqing Chen, Wang Ren. Industrial Control System Fingerprinting and Anomaly Detection. Mason Rice; Sujeet Shenoi. 9th International Conference on Critical Infrastructure Protection (ICCIP), Mar 2015, Arlington, VA, United States. IFIP Advances in Information and Communication Technology, AICT-466, pp.73-85, 2015, Critical Infrastructure Protection IX. 〈10.1007/978-3-319-26567-4_5〉. 〈hal-01431014〉

Partager

Métriques

Consultations de la notice

87

Téléchargements de fichiers

48