SysDetect: A systematic approach to critical state determination for Industrial Intrusion Detection Systems using Apriori algorithm. (August 2015)
- Record Type:
- Journal Article
- Title:
- SysDetect: A systematic approach to critical state determination for Industrial Intrusion Detection Systems using Apriori algorithm. (August 2015)
- Main Title:
- SysDetect: A systematic approach to critical state determination for Industrial Intrusion Detection Systems using Apriori algorithm
- Authors:
- Khalili, Abdullah
Sami, Ashkan - Abstract:
- Highlights: SysDetect a computationally efficient method to systematically determine all critical states of process is proposed for the first. SysDetect is a complete solution and iteratively generates all the candidate states. In each iteration, control experts determine critical states among the candidates. Experiments to show how SysDetect significantly reduces the number of candidate states without missing a state are presented. A simple example is provided to show the applicability of SysDetect in real settings. Abstract: In recent years, Industrial Intrusion Detection Systems (IIDSs) are employed to improve the security of CPS. Among the state-of-the-art IIDSs, state based intrusion detection is a widely used approach. In such process aware IIDSs, normal states are extracted from historical process data or directly specified by control experts when the historical data is not (or rarely) available. In the second manner, experts try to determine the critical states of the process. However, having a large number of I/O, investigating all process states for determination of critical states is not practical. In this paper, the problem is resolved by proposing SysDetect (a Systematic approach to Critical State Determination) which employs a well-established and iterative data mining algorithm, i.e. Apriori. SysDetect guarantees that all candidate critical states are generated at each iteration. In addition, by identifying the critical states at each iteration using experts'Highlights: SysDetect a computationally efficient method to systematically determine all critical states of process is proposed for the first. SysDetect is a complete solution and iteratively generates all the candidate states. In each iteration, control experts determine critical states among the candidates. Experiments to show how SysDetect significantly reduces the number of candidate states without missing a state are presented. A simple example is provided to show the applicability of SysDetect in real settings. Abstract: In recent years, Industrial Intrusion Detection Systems (IIDSs) are employed to improve the security of CPS. Among the state-of-the-art IIDSs, state based intrusion detection is a widely used approach. In such process aware IIDSs, normal states are extracted from historical process data or directly specified by control experts when the historical data is not (or rarely) available. In the second manner, experts try to determine the critical states of the process. However, having a large number of I/O, investigating all process states for determination of critical states is not practical. In this paper, the problem is resolved by proposing SysDetect (a Systematic approach to Critical State Determination) which employs a well-established and iterative data mining algorithm, i.e. Apriori. SysDetect guarantees that all candidate critical states are generated at each iteration. In addition, by identifying the critical states at each iteration using experts' opinions, number of generated candidates in the next iteration is significantly reduced. As a result, SysDetect in addition to provide a complete solution, guarantees that no redundant candidate is generated. Experimental results on a real settings indicate that SysDetect can be successfully applied to determine the critical states of industrial processes using experts' opinions. … (more)
- Is Part Of:
- Journal of process control. Volume 32(2015:Aug.)
- Journal:
- Journal of process control
- Issue:
- Volume 32(2015:Aug.)
- Issue Display:
- Volume 32 (2015)
- Year:
- 2015
- Volume:
- 32
- Issue Sort Value:
- 2015-0032-0000-0000
- Page Start:
- 154
- Page End:
- 160
- Publication Date:
- 2015-08
- Subjects:
- Cyber Physical Systems (CPS) -- Industrial Intrusion Detection System (IIDS) -- Apriori
Process control -- Periodicals
Fabrication -- Contrôle -- Périodiques
Process control
Periodicals
Electronic journals
660.281 - Journal URLs:
- http://www.sciencedirect.com/science/journal/09591524 ↗
http://www.elsevier.com/journals ↗ - DOI:
- 10.1016/j.jprocont.2015.04.005 ↗
- Languages:
- English
- ISSNs:
- 0959-1524
- Deposit Type:
- Legaldeposit
- View Content:
- Available online (eLD content is only available in our Reading Rooms) ↗
- Physical Locations:
- British Library DSC - 5042.645000
British Library DSC - BLDSS-3PM
British Library HMNTS - ELD Digital store - Ingest File:
- 25585.xml