An Anomaly Detection Mechanism for IEC 60870-5-104
- Post by: admin
- January 1, 2020
- Comments off
An Anomaly Detection Mechanism for IEC 60870-5-104. 2020.
Abstract
The transformation of the conventional electricity grid into a new paradigm called smart grid demands the appropriate cybersecurity solutions. In this paper, we focus on the security of the IEC 60870-5-104 (IEC-104) protocol which is commonly used by Supervisory Control and Data Acquisition (SCADA) systems in the energy domain. In particular, after investigating its security issues, we provide a multivariate Intrusion Detection System (IDS) which adopts both access control and outlier detection mechanisms in order to detect timely possible anomalies against IEC-104. The efficiency of the proposed IDS is reflected by the Accuracy and F1 metrics that reach 98% and 87%, respectively. © 2020 IEEE.
Links
- https://www.researchgate.net/publication/344386495_An_Anomaly_Detection_Mechanis[...]
- doi:10.1109/MOCAST49295.2020.9200285
BibTeX (Download)
@conference{Grammatikis2020, title = {An Anomaly Detection Mechanism for IEC 60870-5-104}, author = { P.R. Grammatikis and P. Sarigiannidis and A. Sarigiannidis and D. Margounakis and A. Tsiakalos and G. Efstathopoulos}, url = {https://www.researchgate.net/publication/344386495_An_Anomaly_Detection_Mechanism_for_IEC_60870-5-104}, doi = {10.1109/MOCAST49295.2020.9200285}, year = {2020}, date = {2020-01-01}, journal = {2020 9th International Conference on Modern Circuits and Systems Technologies, MOCAST 2020}, abstract = {The transformation of the conventional electricity grid into a new paradigm called smart grid demands the appropriate cybersecurity solutions. In this paper, we focus on the security of the IEC 60870-5-104 (IEC-104) protocol which is commonly used by Supervisory Control and Data Acquisition (SCADA) systems in the energy domain. In particular, after investigating its security issues, we provide a multivariate Intrusion Detection System (IDS) which adopts both access control and outlier detection mechanisms in order to detect timely possible anomalies against IEC-104. The efficiency of the proposed IDS is reflected by the Accuracy and F1 metrics that reach 98% and 87%, respectively. © 2020 IEEE.}, keywords = {Anomaly Detection, Cybersecurity, IEC-60870-5-104, Supervisory Control and Data Acquisition}, pubstate = {published}, tppubtype = {conference} }
Categories: