Common criteria for security evaluation and malicious intrusion detection mechanism of dam supervisory control and data acquisition system

Kuan Chu Lu, I. Hsien Liu, Zong Chao Liu, Jung Shian Li

研究成果: Article同行評審

摘要

Supervisory control and data acquisition (SCADA) systems are vital in monitoring and controlling industrial processes through the web. However, while such systems result in lower costs, greater utilisation efficiency, and improved reliability, they are vulnerable to cyberattacks, with consequences ranging from the inconvenience and minor disruption to severe physical damage and even loss of life. The authors evaluate the security of the Dam system in the form of Common Criteria, develop safety goals to improve this safety, and focus on threats and risks to the dam SCADA system. Finally proposes an anomaly-based machine-learning framework for detecting malicious network attacks in the SCADA system of a dam. Three unsupervised classification algorithms are considered: hierarchical clustering, local outlier factor, and isolation forest. It is shown that the hierarchical clustering algorithm achieves the highest precision and F-score of the three algorithms. Overall, the results confirm the effectiveness of anomaly-based detection algorithms in enhancing the robustness of SCADA systems toward malicious attacks. At the same time, it complies with the security objectives of Common Criteria, achieving the safety and protection of the dam.

原文English
頁(從 - 到)546-559
頁數14
期刊IET Networks
13
發行號5-6
DOIs
出版狀態Published - 2024 9月 1

All Science Journal Classification (ASJC) codes

  • 電腦網路與通信
  • 管理科學與經營研究
  • 控制和優化

引用此