Security in Process: Detecting Attacks in Industrial Process Data

09/09/2019
by   Simon D. Duque Anton, et al.
0

Due to the fourth industrial revolution, industrial applications make use of the progress in communication and embedded devices. This allows industrial users to increase efficiency and manageability while reducing cost and effort. Furthermore, the fourth industrial revolution, creating the so-called Industry 4.0, opens a variety of novel use and business cases in the industrial environment. However, this progress comes at the cost of an enlarged attack surface of industrial companies. Operational networks that have previously been phyiscally separated from public networks are now connected in order to make use of new communication capabilites. This motivates the need for industrial intrusion detection solutions that are compatible to the long-term operation machines in industry as well as the heterogeneous and fast-changing networks. In this work, process data is analysed. The data is created and monitored on real-world hardware. After a set up phase, attacks are introduced into the systems that influence the process behaviour. A time series-based anomaly detection approach, the Matrix Profiles, are adapted to the specific needs and applied to the intrusion detection. The results indicate an applicability of these methods to detect attacks in the process behaviour. Furthermore, they are easily integrated into existing process environments. Additionally, one-class classifiers One-Class Support Vector Machines and Isolation Forest are applied to the data without a notion of timing. While Matrix Profiles perform well in terms of creating and visualising results, the one-class classifiers perform poorly.

READ FULL TEXT

page 1

page 2

page 3

page 4

research
07/17/2020

Intrusion Detection in Binary Process Data: Introducing the Hamming-distance to Matrix Profiles

The digitisation of industry provides a plethora of novel applications t...
research
07/09/2019

Using Temporal and Topological Features for Intrusion Detection in Operational Networks

Until two decades ago, industrial networks were deemed secure due to phy...
research
05/15/2019

Modern Problems Require Modern Solutions: Hybrid Concepts for Industrial Intrusion Detection

The concept of Industry 4.0 brings a disruption into the processing indu...
research
09/09/2019

Discussing the Feasibility of Acoustic Sensors for Side Channel-aided Industrial Intrusion Detection: An Essay

The fourth industrial revolution leads to an increased use of embedded c...
research
09/20/2018

Time is of the Essence: Machine Learning-based Intrusion Detection in Industrial Time Series Data

The Industrial Internet of Things drastically increases connectivity of ...
research
05/28/2019

Evaluation of Machine Learning-based Anomaly Detection Algorithms on an Industrial Modbus/TCP Data Set

In the context of the Industrial Internet of Things, communication techn...

Please sign up or login with your details

Forgot password? Click here to reset