Back to University of Twente portal
MEDUSA: Mining Events to Detect Undesirable uSer Actions in SCADA
Hadziosmanovic, Dina and Bolzoni, Damiano and Hartel, Pieter (2010) MEDUSA: Mining Events to Detect Undesirable uSer Actions in SCADA. In: 13th International Symposium on Recent Advances in Intrusion Detection, RAID 2010, 15-17 Sep 2010, Ottawa, Canada.
![[img]](http://doc.utwente.nl/style/images/fileicons/application_pdf.png) | PDF Restricted to UT campus only: Request a copy 61Kb |
| Abstract: | Standard approaches for detecting malicious behaviors, e.g.
monitoring network traffic, cannot address process-related threats in SCADA(Supervisory Control And Data Acquisition) systems. These threats take place when an attacker gains user access rights and performs actions which look legitimate, but which can disrupt the industrial process. We believe that it is possible to detect such behavior by analysing SCADA system logs. We present MEDUSA, an anomaly-based tool for detecting user actions that may negatively impact the system. |
| Item Type: | Conference or Workshop Item |
| Copyright: | © 2010 Springer |
| Faculty: | Electrical Engineering, Mathematics and Computer Science (EEMCS) |
| Research Group: | |
| Link to this item: | http://purl.utwente.nl/publications/74581 |
| Official URL: | http://dx.doi.org/10.1007/978-3-642-15512-3_33 |
| Export this item as: | BibTeX EndNote HTML Citation Reference Manager |
Show download statistics for this publication
Show download statistics for this publicationRepository Staff Only: item control page