Assessing Anomaly-Based Intrusion Detection Configurations for Industrial Control Systems

机译：评估工业控制系统的基于异常的入侵检测配置

获取原文

页面导航

摘要
著录项
相似文献
相关主题

摘要

To reduce cost and ease maintenance, industrial control systems (ICS) have adopted Ethernetbased interconnections that integrate operational technology (OT) systems with information technology (IT) networks. This integration has made these critical systems vulnerable to attack. Security solutions tailored to ICS environments are an active area of research. Anomalybased network intrusion detection systems are well-suited for these environments. Often these systems must be optimized for their specific environment. In prior work, we introduced a method for assessing the impact of various anomaly-based network IDS settings on security. This paper reviews the experimental outcomes when we applied our method to a full-scale ICS test bed using actual attacks. Our method provides new and valuable data to operators enabling more informed decisions about IDS configurations.

机译：为了降低成本并简化维护，工业控制系统（ICS）已采用基于以太网的互连，该互连将运营技术（OT）系统与信息技术（IT）网络集成在一起。这种集成使这些关键系统容易受到攻击。针对ICS环境量身定制的安全解决方案是研究的活跃领域。基于异常的网络入侵检测系统非常适合这些环境。通常，这些系统必须针对其特定环境进行优化。在先前的工作中，我们介绍了一种评估各种基于异常的网络IDS设置对安全性影响的方法。当我们使用实际攻击将我们的方法应用于全面ICS测试平台时，本文将回顾实验结果。我们的方法为运营商提供了新的有价值的数据，使他们能够对IDS配置做出更明智的决策。

著录项

来源
《IEEE International Symposium on A World of Wireless, Mobile and Multimedia Networks》|2020年|360-366|共7页
会议地点
作者
Robert E. Gillen; Jason M. Carter; Christopher Craig; Jordan A. Johnson; Stephen L. Scott;
展开▼
作者单位

展开▼
会议组织
原文格式 PDF
正文语种
中图分类
关键词
Integrated circuits; Production; Intrusion detection; Government; Industrial control; Electronic mail;

机译：集成电路;生产;入侵检测;政府;工业控制;电子邮件;

相似文献

外文文献
中文文献
专利

1. Particle Swarm Optimization For Adaptive Anomaly-Based Intrusion Detection System Using Fuzzy Controller [J] . K.Kavitha, S.Ranjitha Kumari International Journal of Computer Trends and Technology . 2013,第10期

机译：基于模糊控制器的自适应异常入侵检测系统的粒子群算法
2. Anomaly-based network intrusion detection through assessing feature association impact scale [J] . Veeramreddy Jyothsna, Vaddella Rama Prasad V. International journal of information and computer security . 2016,第3期

机译：通过评估特征关联影响量来进行基于异常的网络入侵检测
3. Configuration of intrusion prevention systems based on a legal user: the case for using intrusion prevention systems instead of intrusion detection systems [J] . Cai Chuanxi, Mei Shue, Zhong Weijun Information technology & management . 2019,第2期

机译：基于合法用户的入侵防御系统的配置：使用入侵防御系统代替入侵检测系统的情况
4. Method for Assessment of Security-Relevant Settings in Anomaly-Based Intrusion Detection for Industrial Control Systems [C] . Robert E. Gillen, Stephen L. Scott IEEE Conference on Industrial Cyberphysical Systems . 2020

机译：用于工业控制系统基于异常的入侵检测中安全相关设置的方法
5. Departure-Based Intrusion Detection: Process-Level Detection of Stealthy Attacks on Industrial Control Systems [D] . Aoudi, Wissam. 2019

机译：基于出发的入侵检测：工业控制系统中隐身攻击的过程级别检测
6. Explaining the Attributes of a Deep Learning Based Intrusion Detection System for Industrial Control Networks [O] . Zhidong Wang, Yingxu Lai, Zenghui Liu, 2020

机译：解释基于深度学习的工业控制网络入侵检测系统的属性
7. Anomaly-based Intrusion Detection in Industrial Data with SVM and Random Forests [O] . Simon D. Duque Anton, Sapna Sinha, Hans Dieter Schotten 2019

机译：基于异常的Industrial数据入侵检测，具有SVM和随机森林
8. Survey of Visualization Tools Assessed for Anomaly-Based Intrusion Detection Analysis. [R] . Rtoty, R. E., Erbacher, R. F. 2014

机译：基于异常的入侵检测分析评估可视化工具的研究。

Assessing Anomaly-Based Intrusion Detection Configurations for Industrial Control Systems

摘要

著录项

相似文献

相关主题

期刊订阅