‘Known Secure Sensor Measurements’ for Critical Infrastructure Systems: Detecting Falsification of System State

McQueen, Miles; Giani, Annarita

doi:10.1007/978-3-642-24124-6_15

Miles McQueen^17,18 &
Annarita Giani^17,18

Part of the book series: Lecture Notes in Computer Science ((LNPSE,volume 6968))

Included in the following conference series:

International Workshop on Software Engineering for Resilient Systems

402 Accesses
9 Citations

Abstract

This paper describes a first investigation on a low cost and low false alarm, reliable mechanism for detecting manipulation of critical physical processes and falsification of system state. We call this novel mechanism Known Secure Sensor Measurements (KSSM). The method moves beyond analysis of network traffic and host based state information, in fact it uses physical measurements of the process being controlled to detect falsification of state. KSSM is intended to be incorporated into the design of new, resilient, cost effective critical infrastructure control systems. It can also be included in incremental upgrades of already installed systems for enhanced resilience. KSSM is based on known secure physical measurements for assessing the likelihood of an attack and will demonstrate a practical approach to creating, transmitting, and using the known secure measurements for detection.

This is a preview of subscription content, log in via an institution to check access.

Access this chapter

Log in via an institution

Chapter: USD 29.95; Price excludes VAT (USA)

eBook: USD 54.99; Price excludes VAT (USA)

Softcover Book: USD 69.99; Price excludes VAT (USA)

Tax calculation will be finalised at checkout

Purchases are for personal use only

Institutional subscriptions

Preview

Unable to display preview. Download preview PDF.

References

Axelsson, S.: The base-rate fallacy and the difficulty of intrusion detection. ACM Transactions on Information and System Security (TISSEC) 3(3), 186–205 (1981)
Article Google Scholar
Fried, D.J., Graf, I., Haines, J.W., Kendall, K.R., Mcclung, D., Weber, D., Webster, S.E., Wyschogrod, D., Cunningham, R.K., Zissman, M.A.: Evaluating intrusion detection systems: The 1998 darpa off-line intrusion detection evaluation. In: Proceedings of the 2000 DARPA Information Survivability Conference and Exposition, pp. 12–26 (2000)
Google Scholar
Linda, O., Vollmer, T., Manic, M.: Neural Network Based Intrusion Detection System for Critical Infrastructures. In: Proceedings of International Joint Conference on Neural Networks, pp. 1827–1834 (2009)
Google Scholar
Stamp, M.: Information Security, 2nd edn., ch. 3-5, 9. John Wiley and Sons, Chichester (2011)
Book Google Scholar
Ferguson, N., Schneier, B., Kohno, T.: Cryptography Engineering, ch. 3-7 (2010)
Google Scholar

Download references

Author information

Authors and Affiliations

Idaho National Laboratory, USA
Miles McQueen & Annarita Giani
University of California at Berkeley, USA
Miles McQueen & Annarita Giani

Authors

Miles McQueen
View author publications
You can also search for this author in PubMed Google Scholar
Annarita Giani
View author publications
You can also search for this author in PubMed Google Scholar

Editor information

Editors and Affiliations

Department of IT, Åbo Akademi University, Joukahaisenkatu 3-5A, 20520, Turku, Finland
Elena A. Troubitsyna

Rights and permissions

Reprints and permissions

Copyright information

About this paper

Cite this paper

McQueen, M., Giani, A. (2011). ‘Known Secure Sensor Measurements’ for Critical Infrastructure Systems: Detecting Falsification of System State. In: Troubitsyna, E.A. (eds) Software Engineering for Resilient Systems. SERENE 2011. Lecture Notes in Computer Science, vol 6968. Springer, Berlin, Heidelberg. https://doi.org/10.1007/978-3-642-24124-6_15

Download citation

DOI: https://doi.org/10.1007/978-3-642-24124-6_15
Publisher Name: Springer, Berlin, Heidelberg
Print ISBN: 978-3-642-24123-9
Online ISBN: 978-3-642-24124-6
eBook Packages: Computer ScienceComputer Science (R0)

Publish with us

Policies and ethics