System-Wide Anomaly Detection of Industrial Control Systems via Deep Learning and Correlation Analysis - Artificial Intelligence Applications and Innovations
Conference Papers Year : 2021

System-Wide Anomaly Detection of Industrial Control Systems via Deep Learning and Correlation Analysis

Abstract

In the last few decades, as industrial control systems (ICSs) became more interconnected via modern networking techniques, there has been a growing need for new security and monitoring techniques to protect these systems. Advanced cyber-attacks on industrial systems take multiple steps to reach ICS end devices. However, current anomaly detection systems can only detect attacks on individual local devices, and they do not consider the impact or consequences of an individual attack on the rest of the ICS devices. In this paper, we aim to explore how deep learning recurrent neural networks and correlation analysis techniques can be used collaboratively for anomaly detection in an ICS network on the scale of the entire systems. For each detected attack, our presented system-wide anomaly detection method will predict the next step of the attack. We use iTrust SWaT dataset and Power System Attack datasets from MSU national Labs to explore how the addition of correlation analysis to recurrent networks can expand anomaly detection methods to the system-wide scale.
Fichier principal
Vignette du fichier
509922_1_En_29_Chapter.pdf (1.19 Mo) Télécharger le fichier
Origin Files produced by the author(s)

Dates and versions

hal-03287698 , version 1 (15-07-2021)

Licence

Identifiers

Cite

Gordon Haylett, Zahra Jadidi, Kien Nguyen Thanh. System-Wide Anomaly Detection of Industrial Control Systems via Deep Learning and Correlation Analysis. 17th IFIP International Conference on Artificial Intelligence Applications and Innovations (AIAI), Jun 2021, Hersonissos, Crete, Greece. pp.362-373, ⟨10.1007/978-3-030-79150-6_29⟩. ⟨hal-03287698⟩
82 View
56 Download

Altmetric

Share

More