A Framework for Determining Robust Context-Aware Attack-Detection Thresholds for Cyber-Physical Systems
Paper in proceeding, 2021

Process-aware attack detection plays a key role in securing cyber-physical systems. A process-aware detection system (PADS) identifies a baseline behaviour of the physical process in cyber-physical systems and continuously attempts to detect deviations from the baseline attributed to malicious modifications in the process operation. Typically, a PADS triggers an alarm whenever the detection score crosses a fixed and predetermined threshold. In this paper, we argue that in the context of securing cyber-physical systems, relying on a single fixed threshold can undermine the effectiveness of the PADS, and propose a context-aware framework for determining two-dimensional thresholds that enhance the sensibility and reliability of such detection systems by rendering them more robust to false detection. In addition, we propose an algorithm, out of many possible, within this framework as a practical example.

attack detection

cyber-physical systems

process-aware defense

threshold

Author

Wissam Aoudi

Chalmers, Computer Science and Engineering (Chalmers), Networks and Systems (Chalmers)

Other publications Research

Magnus Almgren

Chalmers, Computer Science and Engineering (Chalmers), Networks and Systems (Chalmers)

Other publications Research

ACM International Conference Proceeding Series


9781450389563 (ISBN)

Australasian Information Security Conference
Dunedin, New Zealand,

RIOT: Resilient Internet of Things

Swedish Civil Contingencies Agency (MSB2018-12526), 2019-01-01 -- 2023-12-31.

Show Project

Resilient Information and Control Systems (RICS)

Swedish Civil Contingencies Agency (2015-828), 2015-09-01 -- 2020-08-31.

Show Project

Integrated cyber-physical solutions for intelligent distribution grid with high penetration of renewables (UNITED-GRID)

European Commission (EC) (EC/H2020/773717), 2017-11-01 -- 2020-04-30.

Show Project

KIDSAM: Knowledge and information-sharing in digital collaborative projects

VINNOVA (2018-03966), 2018-11-01 -- 2021-11-30.

Show Project

Subject Categories

Other Computer and Information Science

Computer Science

Computer Systems

DOI

10.1145/3437378.3437393

Publication data connected to DOI

More information

Latest update

3/21/2023

Feedback and support

If you have questions, need help, find a bug or just want to give us feedback you may use this form, or contact us per e-mail research.lib@chalmers.se.

About

Research.chalmers.se contains research information from Chalmers University of Technology, Sweden. It includes information on projects, publications, research funders and collaborations.

More about coverage period and what is publicly available

Privacy and cookies

Accessibility

Citation Style Language
citeproc-js (Frank Bennett)

Links

Chalmers Library
Chalmers Research
Chalmers Student Theses

Chalmers University of Technology

SE-412 96 GOTHENBURG, SWEDEN
PHONE: +46 (0)31-772 10 00
WWW.CHALMERS.SE