MEDUSA: Mining Events to Detect Undesirable uSer Actions in SCADA


Share/Save/Bookmark

Hadziosmanovic, Dina and Bolzoni, Damiano and Hartel, Pieter (2010) MEDUSA: Mining Events to Detect Undesirable uSer Actions in SCADA. In: 13th International Symposium on Recent Advances in Intrusion Detection, RAID 2010, 15-17 Sep 2010, Ottawa, Canada (pp. pp. 500-501).

[img] PDF
Restricted to UT campus only
: Request a copy
62kB
Abstract:Standard approaches for detecting malicious behaviors, e.g.
monitoring network traffic, cannot address process-related threats in
SCADA(Supervisory Control And Data Acquisition) systems. These
threats take place when an attacker gains user access rights and performs
actions which look legitimate, but which can disrupt the industrial process.
We believe that it is possible to detect such behavior by analysing
SCADA system logs. We present MEDUSA, an anomaly-based tool for
detecting user actions that may negatively impact the system.
Item Type:Conference or Workshop Item
Copyright:© 2010 Springer
Faculty:
Electrical Engineering, Mathematics and Computer Science (EEMCS)
Research Group:
Link to this item:http://purl.utwente.nl/publications/74581
Official URL:http://dx.doi.org/10.1007/978-3-642-15512-3_33
Export this item as:BibTeX
EndNote
HTML Citation
Reference Manager

 

Repository Staff Only: item control page