Integrated protection of industrial control systems from cyber-attacks: the ATENA approach

Adamsky, Florian; Aubigny, Matthieu; Battisti, Federica; Carli, Marco; Cimorelli, Federico; Cruz, Tiago; Giorgio, Alessandro Di; Foglietta, Chiara; Galli, Agustina; Giuseppi, Alessandro; Liberati, Francesco; Neri, Alessandro; Panzieri, Stefano; Pascucci, Federica; Proença, Jorge; Pucci, Pietro; Rosa, Luís; Soua, Ridha

doi:10.1016/j.ijcip.2018.04.004

Cited by 32 publications

(23 citation statements)

References 24 publications

Supporting

Mentioning

Contrasting

Order By: Relevance

“…It is trivial to verify that the constraints (19) imply the two sought relations, and, as detailed in [16], [19], as long as the third constraint is active the conified power flow shares the same solution with the original nonlinear one. The activation to the equality of the third constraint in ( 19) can be imposed by minimizing R ij [16] and this is attained by our controller thanks to the presence of the third term in the objective function (1), which represents the minimization of power losses. The power flow equations hence become [4]:…”

Section: ) Network Radialitymentioning

confidence: 99%

“…During the recent years, a significant amount of research and investments has been spent to improve the security of power systems, which transitioned from purely passive networks into an evolved Cyber Physisical System [1] in which sophisticated controller are able to provide advanced services, such as demand-side management and frequency regulation, exploiting new active devices such as Energy Storage Systems (ESSs) and Smart Home Controllers. In fact, in modern micro grids, the quantity of controllable loads and distributed generators is significantly increasing, also thanks to the degree of freedom brought by electro-mobility, and ESSs are being utilised to attain better service performances (e.g., minimize power losses, improve frequency regulation and enhance system stability [2], [3], resiliency [4]) and security [5] and their number is expected to increase significantly as distributed generation becomes even more pervasive [6] and electric vehicles become predominat [7].…”

Section: Introductionmentioning

confidence: 99%

See 1 more Smart Citation

Controlled Optimal Black Start Procedures in Smart Grids for Service Restoration in Presence of Electrical Storage Systems

Giuseppi

Pietrabissa

Liberati

et al. 2020

2020 28th Mediterranean Conference on Control and Automation (MED)

View full text Add to dashboard Cite

This paper presents an optimisation problem to determine the optimal reclosure order of remotely operable switches deployed in a smart grid consisting in a distribution network equipped with one or more Energy Storage Systems (ESS). The proposed solution integrates nonlinear real and reactive power flow equations, by reconducting them to a set of conic constraints, together with several network operator requirements, such as network radiality and ampacity limits. A numerical simulation validates the approach and concludes the work.

show abstract

Section: ) Network Radialitymentioning

confidence: 99%

Section: Introductionmentioning

confidence: 99%

Controlled Optimal Black Start Procedures in Smart Grids for Service Restoration in Presence of Electrical Storage Systems

Giuseppi

Pietrabissa

Liberati

et al. 2020

2020 28th Mediterranean Conference on Control and Automation (MED)

View full text Add to dashboard Cite

show abstract

“…In this work, which is part of the Advanced Tools to assEss and mitigate the criticality of ICT compoNents and their dependencies over Critical InfrAstructures (ATENA) architecture [18], we aim to develop a Network Intrusion Detection System (NIDS) based on ML techniques to recognize attacks targeting SCADA systems, in an industrial use-case. In the following, SVM, RF and BLSTM will be introduced.…”

Section: Machine-learning Techniques For Anomaly Detectionmentioning

confidence: 99%

Forget the Myth of the Air Gap: Machine Learning for Reliable Intrusion Detection in SCADA Systems

Pérez¹,

Adamsky²,

Soua³

et al. 2019

ICST Transactions on Security and Safety

View full text Add to dashboard Cite

Since Critical Infrastructures (CIs) use systems and equipment that are separated by long distances, Supervisory Control And Data Acquisition (SCADA) systems are used to monitor their behaviour and to send commands remotely. For a long time, operator of CIs applied the air gap principle, a security strategy that physically isolates the control network from other communication channels. True isolation, however, is difficult nowadays due to the massive spread of connectivity: using open protocols and more connectivity opens new network attacks against CIs. To cope with this dilemma, sophisticated security measures are needed to address malicious intrusions, which are steadily increasing in number and variety. However, traditional Intrusion Detection Systems (IDSs) cannot detect attacks that are not already present in their databases. To this end, we assess in this paper Machine Learning (ML) techniques for anomaly detection in SCADA systems using a real data set collected from a gas pipeline system and provided by the Mississippi State University (MSU). The contribution of this paper is twofold: 1) The evaluation of four techniques for missing data estimation and two techniques for data normalization, 2) The performances of Support Vector Machine (SVM), Random Forest (RF), Bidirectional Long Short Term Memory (BLSTM) are assessed in terms of accuracy, precision, recall and F 1 score for intrusion detection. Two cases are differentiated: binary and categorical classifications. Our experiments reveal that RF and BLSTM detect intrusions effectively, with an F 1 score of respectively > 99% and > 96%.

show abstract

“…The H2020 project ATENA [27], in which this work was developed, deals with Critical Infrastructures (CIs) protection and focuses on both of the aforementioned research directions, mapping them on the "prevent, detect, mitigate" paradigm for security. In the context of the project ATENA, the partners proposed several solutions for adverse event mitigation [28], attack and anomaly detection [29], [30], and for the secure design of CI sub-systems [31], [32].…”

Section: Introductionmentioning

confidence: 99%

Securing Cyber-Physical Systems: An Optimization Framework based on OSSTMM and Genetic Algorithms

Giuseppi

Tortorelli

Germana

et al. 2019

2019 27th Mediterranean Conference on Control and Automation (MED)

View full text Add to dashboard Cite

This paper presents an optimization framework, based on Genetic Algorithms, for the control of the "security level" of a Cyber-Physical System (CPS). The security level is a quantity that has been studied in several industrial standards, among which we selected the Open Source Security Testing Methodology Manual (OSSTMM). The proposed optimization solution is validated on scenarios representative of real operations of a security evaluator, and numerical simulations report the performances obtained by the algorithm.

show abstract

Integrated protection of industrial control systems from cyber-attacks: the ATENA approach

Cited by 32 publications

References 24 publications

Controlled Optimal Black Start Procedures in Smart Grids for Service Restoration in Presence of Electrical Storage Systems

Controlled Optimal Black Start Procedures in Smart Grids for Service Restoration in Presence of Electrical Storage Systems

Forget the Myth of the Air Gap: Machine Learning for Reliable Intrusion Detection in SCADA Systems

Securing Cyber-Physical Systems: An Optimization Framework based on OSSTMM and Genetic Algorithms

Contact Info

Product

Resources

About