Enhanced Anomaly Detection in Industrial Control Systems aided by Machine Learning

Authors

Keywords:

Intrusion Detection, Industrial Control Systems, Purdue Model, Machine Learning

Abstract

This paper explores the enhancement of anomaly detection in industrial control systems (ICSs) by integrating machine learning with traditional intrusion detection. Using a comprehensive dataset from the SWaT facility at iTrust labs, we leverage both network traffic and process data to improve the detection of malicious activities. This hybrid approach significantly improves detection capabilities by capturing both network anomalies and process deviations, addressing gaps in traditional intrusion detection systems for increasingly interconnected ICSs. The findings contribute to a deeper understanding of anomaly detection techniques, providing actionable insights to improve the security posture of critical infrastructure.

Downloads

Download data is not yet available.
A viking ship where the sail is a Linear Feedback Shift Register, and the shields are zeros and ones, sailing on a sea that is NISK

Downloads

Published

2024-11-24

How to Cite

[1]
V. Berge and C. Li, “Enhanced Anomaly Detection in Industrial Control Systems aided by Machine Learning”, NIKT, no. 3, Nov. 2024.

Issue

No. 3 (2024): NISK Norsk informasjonssikkerhets-konferanse

Section

Regular papers

License

Creative Commons License

This work is licensed under a Creative Commons Attribution 4.0 International License.