A Prediction-Based Method for False Data Injection Attacks Detection in Industrial Control Systems
False data Injection attacks is an important security issue in Industrial Control Systems (ICS). Indeed, this kind of attack based on the manipulation and the transmission of corrupted sensing data, can lead to harmful consequences such as disturbing the infrastructure functioning, interrupting it or more again causing its destruction (overheating of a nuclear reactor). In this paper, we propose an unsupervised machine learning approach for false data injection attack detection. It uses a Recurrent Neural Network (RNN) for building a prediction model of expected sensing data. These latter are compared to received values and an alert security is raised if these values differ significantly.
- 2.Rubio-Hernán, J., De Cicco, L., García-Alfaro, J.: Revisiting a watermark-based detection scheme to handle cyber-physical attacks. In: Proceedings - 2016 11th International Conference on Availability, Reliability and Security, ARES 2016 (2016) 21–28Google Scholar
- 3.Krotofil, M., Larsen, J., Gollmann, D.: The process matters : ensuring data veracity in cyber-physical systems. In: ACM Symposium on Information, Computer and Communications Security, pp. 133–144 (2015)Google Scholar
- 5.Linda, O., Vollmer, T., Manic, M.: Neural network based intrusion detection system for critical infrastructures. In: 2009 International Joint Conference on Neural Networks, pp. 1827–1834 (2009)Google Scholar
- 8.Malhotra, P., Ramakrishnan, A., Anand, G., Vig, L., Agarwal, P., Shroff, G.: LSTM-based encoder-decoder for multi-sensor anomaly detection (2016)Google Scholar