Show simple item record

dc.contributor.authorHussain, M
dc.contributor.authorFoo, E
dc.contributor.authorSuriadi, S
dc.date.accessioned2020-03-25T00:57:44Z
dc.date.available2020-03-25T00:57:44Z
dc.date.issued2019
dc.identifier.isbn9781728166254
dc.identifier.doi10.1109/FIT47737.2019.00037
dc.identifier.urihttp://hdl.handle.net/10072/392605
dc.description.abstractDetecting process-based attacks on industrial control systems (ICS) is challenging. These cyber-attacks are designed to disrupt the industrial process by changing the state of a system, while keeping the system's behaviour close to the expected behaviour. Such anomalous behaviour can be effectively detected by an event-driven approach. Petri Net (PN) model identification has proved to be an effective method for event-driven system analysis and anomaly detection. However, PN identification-based anomaly detection methods require ICS device logs to be converted into event logs (sequence of events). Therefore, in this paper we present a formalised method for pre-processing and transforming ICS device logs into event logs. The proposed approach outperforms the previous methods of device logs processing in terms of anomaly detection. We have demonstrated the results using two published datasets.
dc.description.peerreviewedYes
dc.publisherIEEE
dc.relation.ispartofconferencename2019 International Conference on Frontiers of Information Technology (FIT 2019)
dc.relation.ispartofconferencetitleProceedings - 2019 International Conference on Frontiers of Information Technology, FIT 2019
dc.relation.ispartofdatefrom2019-12-16
dc.relation.ispartofdateto2019-12-18
dc.relation.ispartoflocationIslamabad, Pakistan
dc.relation.ispartofpagefrom150
dc.relation.ispartofpageto155
dc.subject.fieldofresearchComputer System Security
dc.subject.fieldofresearchcode080303
dc.titleAn improved industrial control system device logs processing method for process-based anomaly detection
dc.typeConference output
dc.type.descriptionE1 - Conferences
dcterms.bibliographicCitationHussain, M; Foo, E; Suriadi, S, An improved industrial control system device logs processing method for process-based anomaly detection, Proceedings - 2019 International Conference on Frontiers of Information Technology, FIT 2019, 2019, pp. 150-155
dc.date.updated2020-03-25T00:54:45Z
dc.description.versionAccepted Manuscript (AM)
gro.rights.copyright© 2019 IEEE. Personal use of this material is permitted. Permission from IEEE must be obtained for all other uses, in any current or future media, including reprinting/republishing this material for advertising or promotional purposes, creating new collective works, for resale or redistribution to servers or lists, or reuse of any copyrighted component of this work in other works.
gro.hasfulltextFull Text
gro.griffith.authorFoo, Ernest


Files in this item

This item appears in the following Collection(s)

  • Conference outputs
    Contains papers delivered by Griffith authors at national and international conferences.

Show simple item record