Smart Device Profiling for Smart SCADA

Share/Save/Bookmark

Hadziosmanovic, Dina and Bolzoni, Damiano and Hartel, Pieter (2011) Smart Device Profiling for Smart SCADA. In: 14th International Symposium on Recent Advances in Intrusion Detection, RAID 2011, 20-21 Sept 2011, Menlo Park, California, USA.

open access
[img]
Preview
PDF
105kB
Abstract:SCADA (Supervisory Control and Data Acquisition) systems are computer systems used for monitoring and controlling industrial processes such as power plants and power grid systems, water, gas and oil distribution systems, production systems for food, cars and other products. We propose a new approach for regulating and detecting malicious behaviour of network devices in SCADA systems. Our approach consists of building proles that describe normal communication between pairs of devices in the network. Each prole describes four aspects of network communication: device ngerprint, connectivity pattern, pseudo-protocol pattern and packet content. We validate our approach using network trac from two real-life SCADA installations.
Item Type:Conference or Workshop Item
Faculty:
Electrical Engineering, Mathematics and Computer Science (EEMCS)
Research Group:
Link to this item:http://purl.utwente.nl/publications/78072
Export this item as:BibTeX
EndNote
HTML Citation
Reference Manager

 

Repository Staff Only: item control page