Multi-Attribute SCADA-Specific Intrusion Detection System for Power Networks

Y. Yang; K. McLaughlin; S. Sezer; T. Littler; E. G. Im; B. Pranggono; H.F. Wang

doi:10.1109/TPWRD.2014.2300099

Multi-Attribute SCADA-Specific Intrusion Detection System for Power Networks

Y. Yang, K. McLaughlin, S. Sezer, T. Littler, E. G. Im, B. Pranggono, H.F. Wang

Research output: Contribution to journal › Article › peer-review

99 Citations (Scopus)

1216 Downloads (Pure)

Abstract

The increased interconnectivity and complexity of supervisory control and data acquisition (SCADA) systems in power system networks has exposed the systems to a multitude of potential vulnerabilities. In this paper, we present a novel approach for a next-generation SCADA-specific intrusion detection system (IDS). The proposed system analyzes multiple attributes in order to provide a comprehensive solution that is able to mitigate varied cyber-attack threats. The multiattribute IDS comprises a heterogeneous white list and behavior-based concept in order to make SCADA cybersystems more secure. This paper also proposes a multilayer cyber-security framework based on IDS for protecting SCADA cybersecurity in smart grids without compromising the availability of normal data. In addition, this paper presents a SCADA-specific cybersecurity testbed to investigate simulated attacks, which has been used in this paper to validate the proposed approach.

Original language	English
Pages (from-to)	1092-1102
Journal	Ieee Transactions On Power Delivery
Volume	29
Issue number	3
Early online date	11 Feb 2014
DOIs	https://doi.org/10.1109/TPWRD.2014.2300099
Publication status	Published - Jun 2014

UN SDGs

This output contributes to the following UN Sustainable Development Goals (SDGs)

Access to Document

10.1109/TPWRD.2014.2300099

Multiattribute SCADA-Specific Intrusion Detection System for Power Networks
© 2014 IEEE. Personal use of this material is permitted. Permission from IEEE must be obtained for all other uses, in any current or future media, including reprinting/republishing this material for advertising or promotional purposes, creating new collective works, for resale or redistribution to servers or lists, or reuse of any copyrighted component of this work in other works.
Accepted author manuscript, 926 KB

1 Finished

R1118ECI: Centre for Secure Information Technologies (CSIT)
McCanny, J. V., Cowan, C., Crookes, D., Fusco, V., Linton, D., Liu, W., Miller, P., O'Neill, M., Scanlon, W. & Sezer, S.
01/08/2009 → 30/06/2014
Project: Research

Kieran McLaughlin
- kieran.mclaughlin@qub.ac.uk
Person: Academic

Cite this

@article{2b4cb78c5e604d7aaa9324a9c09f7045,

title = "Multi-Attribute SCADA-Specific Intrusion Detection System for Power Networks",

abstract = "The increased interconnectivity and complexity of supervisory control and data acquisition (SCADA) systems in power system networks has exposed the systems to a multitude of potential vulnerabilities. In this paper, we present a novel approach for a next-generation SCADA-specific intrusion detection system (IDS). The proposed system analyzes multiple attributes in order to provide a comprehensive solution that is able to mitigate varied cyber-attack threats. The multiattribute IDS comprises a heterogeneous white list and behavior-based concept in order to make SCADA cybersystems more secure. This paper also proposes a multilayer cyber-security framework based on IDS for protecting SCADA cybersecurity in smart grids without compromising the availability of normal data. In addition, this paper presents a SCADA-specific cybersecurity testbed to investigate simulated attacks, which has been used in this paper to validate the proposed approach.",

author = "Y. Yang and K. McLaughlin and S. Sezer and T. Littler and Im, {E. G.} and B. Pranggono and H.F. Wang",

year = "2014",

month = jun,

doi = "10.1109/TPWRD.2014.2300099",

language = "English",

volume = "29",

pages = "1092--1102",

journal = "Ieee Transactions On Power Delivery",

issn = "0885-8977",

publisher = "Institute of Electrical and Electronics Engineers Inc.",

number = "3",

}

TY - JOUR

T1 - Multi-Attribute SCADA-Specific Intrusion Detection System for Power Networks

AU - Yang, Y.

AU - McLaughlin, K.

AU - Sezer, S.

AU - Littler, T.

AU - Im, E. G.

AU - Pranggono, B.

AU - Wang, H.F.

PY - 2014/6

Y1 - 2014/6

N2 - The increased interconnectivity and complexity of supervisory control and data acquisition (SCADA) systems in power system networks has exposed the systems to a multitude of potential vulnerabilities. In this paper, we present a novel approach for a next-generation SCADA-specific intrusion detection system (IDS). The proposed system analyzes multiple attributes in order to provide a comprehensive solution that is able to mitigate varied cyber-attack threats. The multiattribute IDS comprises a heterogeneous white list and behavior-based concept in order to make SCADA cybersystems more secure. This paper also proposes a multilayer cyber-security framework based on IDS for protecting SCADA cybersecurity in smart grids without compromising the availability of normal data. In addition, this paper presents a SCADA-specific cybersecurity testbed to investigate simulated attacks, which has been used in this paper to validate the proposed approach.

AB - The increased interconnectivity and complexity of supervisory control and data acquisition (SCADA) systems in power system networks has exposed the systems to a multitude of potential vulnerabilities. In this paper, we present a novel approach for a next-generation SCADA-specific intrusion detection system (IDS). The proposed system analyzes multiple attributes in order to provide a comprehensive solution that is able to mitigate varied cyber-attack threats. The multiattribute IDS comprises a heterogeneous white list and behavior-based concept in order to make SCADA cybersystems more secure. This paper also proposes a multilayer cyber-security framework based on IDS for protecting SCADA cybersecurity in smart grids without compromising the availability of normal data. In addition, this paper presents a SCADA-specific cybersecurity testbed to investigate simulated attacks, which has been used in this paper to validate the proposed approach.

U2 - 10.1109/TPWRD.2014.2300099

DO - 10.1109/TPWRD.2014.2300099

M3 - Article

VL - 29

SP - 1092

EP - 1102

JO - Ieee Transactions On Power Delivery

JF - Ieee Transactions On Power Delivery

SN - 0885-8977

IS - 3

ER -

Multi-Attribute SCADA-Specific Intrusion Detection System for Power Networks

Abstract

UN SDGs

Access to Document

Fingerprint

Projects

R1118ECI: Centre for Secure Information Technologies (CSIT)

Profiles

Kieran McLaughlin

Cite this