Multi-Attribute SCADA-Specific Intrusion Detection System for Power Networks

Y. Yang; K. McLaughlin; S. Sezer; T. Littler; E. G. Im; B. Pranggono; H.F. Wang

doi:10.1109/TPWRD.2014.2300099

Multi-Attribute SCADA-Specific Intrusion Detection System for Power Networks

Y. Yang, K. McLaughlin, S. Sezer, T. Littler, E. G. Im, B. Pranggono, H.F. Wang

Research output: Contribution to journal › Article

81 Citations (Scopus)

1050 Downloads (Pure)

Abstract

The increased interconnectivity and complexity of supervisory control and data acquisition (SCADA) systems in power system networks has exposed the systems to a multitude of potential vulnerabilities. In this paper, we present a novel approach for a next-generation SCADA-specific intrusion detection system (IDS). The proposed system analyzes multiple attributes in order to provide a comprehensive solution that is able to mitigate varied cyber-attack threats. The multiattribute IDS comprises a heterogeneous white list and behavior-based concept in order to make SCADA cybersystems more secure. This paper also proposes a multilayer cyber-security framework based on IDS for protecting SCADA cybersecurity in smart grids without compromising the availability of normal data. In addition, this paper presents a SCADA-specific cybersecurity testbed to investigate simulated attacks, which has been used in this paper to validate the proposed approach.

Original language	English
Pages (from-to)	1092-1102
Journal	Ieee Transactions On Power Delivery
Volume	29
Issue number	3
Early online date	11 Feb 2014
DOIs	https://doi.org/10.1109/TPWRD.2014.2300099
Publication status	Published - Jun 2014

Access to Document

10.1109/TPWRD.2014.2300099

Multiattribute SCADA-Specific Intrusion Detection System for Power Networks
© 2014 IEEE. Personal use of this material is permitted. Permission from IEEE must be obtained for all other uses, in any current or future media, including reprinting/republishing this material for advertising or promotional purposes, creating new collective works, for resale or redistribution to servers or lists, or reuse of any copyrighted component of this work in other works.
Accepted author manuscript, 926 KB

Fingerprint Dive into the research topics of 'Multi-Attribute SCADA-Specific Intrusion Detection System for Power Networks'. Together they form a unique fingerprint.

Cite this

Yang, Y., McLaughlin, K., Sezer, S., Littler, T., Im, E. G., Pranggono, B., & Wang, H. F. (2014). Multi-Attribute SCADA-Specific Intrusion Detection System for Power Networks. Ieee Transactions On Power Delivery, 29(3), 1092-1102. https://doi.org/10.1109/TPWRD.2014.2300099

@article{2b4cb78c5e604d7aaa9324a9c09f7045,

title = "Multi-Attribute SCADA-Specific Intrusion Detection System for Power Networks",

abstract = "The increased interconnectivity and complexity of supervisory control and data acquisition (SCADA) systems in power system networks has exposed the systems to a multitude of potential vulnerabilities. In this paper, we present a novel approach for a next-generation SCADA-specific intrusion detection system (IDS). The proposed system analyzes multiple attributes in order to provide a comprehensive solution that is able to mitigate varied cyber-attack threats. The multiattribute IDS comprises a heterogeneous white list and behavior-based concept in order to make SCADA cybersystems more secure. This paper also proposes a multilayer cyber-security framework based on IDS for protecting SCADA cybersecurity in smart grids without compromising the availability of normal data. In addition, this paper presents a SCADA-specific cybersecurity testbed to investigate simulated attacks, which has been used in this paper to validate the proposed approach.",

author = "Y. Yang and K. McLaughlin and S. Sezer and T. Littler and Im, {E. G.} and B. Pranggono and H.F. Wang",

year = "2014",

month = jun,

doi = "10.1109/TPWRD.2014.2300099",

language = "English",

volume = "29",

pages = "1092--1102",

journal = "Ieee Transactions On Power Delivery",

issn = "0885-8977",

publisher = "Institute of Electrical and Electronics Engineers Inc.",

number = "3",

}

TY - JOUR

T1 - Multi-Attribute SCADA-Specific Intrusion Detection System for Power Networks

AU - Yang, Y.

AU - McLaughlin, K.

AU - Sezer, S.

AU - Littler, T.

AU - Im, E. G.

AU - Pranggono, B.

AU - Wang, H.F.

PY - 2014/6

Y1 - 2014/6

N2 - The increased interconnectivity and complexity of supervisory control and data acquisition (SCADA) systems in power system networks has exposed the systems to a multitude of potential vulnerabilities. In this paper, we present a novel approach for a next-generation SCADA-specific intrusion detection system (IDS). The proposed system analyzes multiple attributes in order to provide a comprehensive solution that is able to mitigate varied cyber-attack threats. The multiattribute IDS comprises a heterogeneous white list and behavior-based concept in order to make SCADA cybersystems more secure. This paper also proposes a multilayer cyber-security framework based on IDS for protecting SCADA cybersecurity in smart grids without compromising the availability of normal data. In addition, this paper presents a SCADA-specific cybersecurity testbed to investigate simulated attacks, which has been used in this paper to validate the proposed approach.

AB - The increased interconnectivity and complexity of supervisory control and data acquisition (SCADA) systems in power system networks has exposed the systems to a multitude of potential vulnerabilities. In this paper, we present a novel approach for a next-generation SCADA-specific intrusion detection system (IDS). The proposed system analyzes multiple attributes in order to provide a comprehensive solution that is able to mitigate varied cyber-attack threats. The multiattribute IDS comprises a heterogeneous white list and behavior-based concept in order to make SCADA cybersystems more secure. This paper also proposes a multilayer cyber-security framework based on IDS for protecting SCADA cybersecurity in smart grids without compromising the availability of normal data. In addition, this paper presents a SCADA-specific cybersecurity testbed to investigate simulated attacks, which has been used in this paper to validate the proposed approach.

U2 - 10.1109/TPWRD.2014.2300099

DO - 10.1109/TPWRD.2014.2300099

M3 - Article

VL - 29

SP - 1092

EP - 1102

JO - Ieee Transactions On Power Delivery

JF - Ieee Transactions On Power Delivery

SN - 0885-8977

IS - 3

ER -