• DocumentCode
    78270
  • Title

    Integrated OCSVM mechanism for intrusion detection in SCADA systems

  • Author

    Maglaras, Leandros A. ; Jianmin Jiang ; Cruz, Tiago

  • Author_Institution
    Dept. of Comput., Univ. of Surrey, Guildford, UK
  • Volume
    50
  • Issue
    25
  • fYear
    2014
  • fDate
    12 4 2014
  • Firstpage
    1935
  • Lastpage
    1936
  • Abstract
    Intrusion detection in real-time systems is a problem without a profound solution. In supervisory control and data acquisition (SCADA) systems the absence of a defence mechanism that can cope with different types of intrusions is of great importance. False positive alarms or mistakes regarding the origin of the intrusion mean severe costs for the system. An integrated one-class support vector machine (OCSVM) mechanism that is distributed in a SCADA network is presented, as a part of an intrusion detection system, providing accurate information about the origin and the time of an intrusion. The module reads the network traffic, splits traffic according to the source of the packets and creates a cluster of OCSVM models. These trained models run in parallel and can accurately and fast recognise different types of attacks.
  • Keywords
    SCADA systems; real-time systems; security of data; support vector machines; IDS; SCADA network; SCADA systems; defence mechanism; false positive alarms; integrated OCSVM mechanism; intrusion detection system; intrusion mean severe; network traffic; one-class support vector machine mechanism; profound solution; real-time systems; supervisory control-and-data acquisition systems;
  • fLanguage
    English
  • Journal_Title
    Electronics Letters
  • Publisher
    iet
  • ISSN
    0013-5194
  • Type

    jour

  • DOI
    10.1049/el.2014.2897
  • Filename
    6975738
    • Link To Document
    https://search.isc.ac/dl/search/defaultta.aspx?DTC=49&DC=78270