A real time OCSVM Intrusion Detection module with low overhead for SCADA systems

Μαγλαράς, Λέανδρος; Jiang, Jianmin

doi:10.14569/ijarai.2014.031006

Cited by 4 publications

(3 citation statements)

References 16 publications

Supporting

Mentioning

Contrasting

Order By: Relevance

“…The research applying machine learning techniques using publicly available SCADA datasets and some of the related techniques on public datasets are outlined in Table 1. One Class Support Vector Machine (OCSVM) for automated anomaly detection (Schuster, et al, 2015) from SCADA telecommunications data was used by (Jiang & Yasakethu, 2013;Maglaras, & Jiang, 2014). They proposed clustering the anomalies into different types to generate a corresponding alarm.…”

Section: Related Workmentioning

confidence: 99%

“…Gas Pipeline MLP with GWO (Mansouri, et al, 2017) Gas Pipeline K-means, Naïve Bayesian, PCA-SVD, GMM (Shirazi et al, 2016) Gas pipeline LSTM (Feng et al, 2017) Water Distribution System (DUWWTP) KNN, K-means (Almalawi, et al, 2014) DUWWTP, Gas pipeline SVDD, PCA (Nader et al, 2014) Network trace OCSVM, K-means (Maglaras, & Jiang, 2014) CERT Insider Threat RNN (Tuor et al, 2017) algorithms is provided (Mansouri, et. al., 2017) for anomaly detection in a gas distribution network (Beaver, et al, 2013) and dimensionality reduction techniques for improving accuracy were also used.…”

Section: Dataset Technique Referencementioning

confidence: 99%

“…The machine learning application to reduce the manual configurations for IDS is discussed by (Mantere, et al, 2013). An IDS to detect malicious traffic was described by (Maglaras, & Jiang, 2014) combining OCSVM with recursive K-means clustering to minimize false alarms. OCSVM was found to perform well in comparison to other methods for anomaly detection; however, the performance could degrade for higher dimensional problems (Sander, 2017).…”

Section: Background Anomaly Based Intrusion Detectionmentioning

confidence: 99%

See 2 more Smart Citations

Autoencoder Based Anomaly Detection for SCADA Networks

Nazir

Patel

2021

International Journal of Artificial Intelligence and Machine Learning

View full text Add to dashboard Cite

Supervisory control and data acquisition (SCADA) systems are industrial control systems that are used to monitor critical infrastructures such as airports, transport, health, and public services of national importance. These are cyber physical systems, which are increasingly integrated with networks and internet of things devices. However, this results in a larger attack surface for cyber threats, making it important to identify and thwart cyber-attacks by detecting anomalous network traffic patterns. Compared to other techniques, as well as detecting known attack patterns, machine learning can also detect new and evolving threats. Autoencoders are a type of neural network that generates a compressed representation of its input data and through reconstruction loss of inputs can help identify anomalous data. This paper proposes the use of autoencoders for unsupervised anomaly-based intrusion detection using an appropriate differentiating threshold from the loss distribution and demonstrate improvements in results compared to other techniques for SCADA gas pipeline dataset.

show abstract

Section: Related Workmentioning

confidence: 99%