System-Wide Anomaly Detection of Industrial Control Systems via Deep Learning and Correlation Analysis

Loading...
Thumbnail Image
File version

Accepted Manuscript (AM)

Author(s)
Haylett, Gordon
Jadidi, Zahra
Nguyen Thanh, Kien
Jadidi, Zahra
Griffith University Author(s)
Primary Supervisor
Other Supervisors
Editor(s)
Date
2021
Size
File type(s)
Location

Hersonissos, Crete, Greece

License
Abstract

In the last few decades, as industrial control systems (ICSs) became more interconnected via modern networking techniques, there has been a growing need for new security and monitoring techniques to protect these systems. Advanced cyber-attacks on industrial systems take multiple steps to reach ICS end devices. However, current anomaly detection systems can only detect attacks on individual local devices, and they do not consider the impact or consequences of an individual attack on the rest of the ICS devices. In this paper, we aim to explore how deep learning recurrent neural networks and correlation analysis techniques can be used collaboratively for anomaly detection in an ICS network on the scale of the entire systems. For each detected attack, our presented system-wide anomaly detection method will predict the next step of the attack. We use iTrust SWaT dataset and Power System Attack datasets from MSU national Labs to explore how the addition of correlation analysis to recurrent networks can expand anomaly detection methods to the system-wide scale.

Journal Title
Conference Title

IFIP Advances in Information and Communication Technology

Book Title
Edition
Volume

627

Issue
Thesis Type
Degree Program
School
Publisher link
Patent number
Funder(s)
Grant identifier(s)
Rights Statement
Rights Statement

© IFIP International Federation for Information Processing 2021. This is the author-manuscript version of this paper. Reproduced in accordance with the copyright policy of the publisher. Please refer to the conference's website for access to the definitive, published version.

Item Access Status
Note
Access the data
Related item(s)
Subject

System and network security

Persistent link to this record
Citation

Haylett, G; Jadidi, Z; Nguyen Thanh, K; Jadidi, Z, System-Wide Anomaly Detection of Industrial Control Systems via Deep Learning and Correlation Analysis, IFIP Advances in Information and Communication Technology, 2021, 627, pp. 362-373