Back to University of Twente portal
MELISSA: Towards Automated Detection of Undesirable User Actions in Critical Infrastructures
Hadziosmanovic, Dina and Bolzoni, Damiano and Hartel, Pieter and Etalle, Sandro (2011) MELISSA: Towards Automated Detection of Undesirable User Actions in Critical Infrastructures. In: European Conference on Computer Network Defense, EC2ND 2011, 6-8 Sept 2011, Gothenburg, Sweden.
![[img]](http://doc.utwente.nl/style/images/fileicons/application_pdf.png)
| PDF 6Mb |
| Abstract: | We address the detection of process-related threats in control systems used in critical infrastructures. Process-related threats take place when an attacker gains user access rights and performs actions, which look legitimate, but which are intended to disrupt the industrial process. We use logs to detect anomalous patterns of user actions on process control application. A preliminary case study suggests that our approach is effective in detecting anomalous events that might alter the regular process workflow. |
| Item Type: | Conference or Workshop Item |
| Copyright: | © 2011 IEEE |
| Faculty: | Electrical Engineering, Mathematics and Computer Science (EEMCS) |
| Research Group: | |
| Link to this item: | http://purl.utwente.nl/publications/78071 |
| Export this item as: | BibTeX EndNote HTML Citation Reference Manager |
Show download statistics for this publication
Show download statistics for this publicationRepository Staff Only: item control page