Cardiff University | Prifysgol Caerdydd ORCA
Online Research @ Cardiff 
WelshClear Cookie - decide language by browser settings

Using application layer metrics to detect advanced SCADA attacks

Maynard, Peter, McLaughlin, Kieran and Sezer, Sakir 2018. Using application layer metrics to detect advanced SCADA attacks. Presented at: 4th International Conference on Information Systems Security and Privacy, Funchal, Madeira, 22 - 24 Jan 2018. Proceedings of the 4th International Conference on Information Systems Security and Privacy. , vol.1 SciTePress, pp. 418-425. 10.5220/0006656204180425

Full text not available from this repository.

Abstract

Current state of the art intrusion detection and network monitoring systems have a tendency to focus on the ’Five-Tuple’ features (Protocol, IP src/dst and Port src/dest). As a result there is a gap in visibility of security at an application level. We propose a collection of network application layer metrics to provide a greater insight into SCADA communications. These metrics are devised from an analysis of the ICS threat landscape and the current state of the art detection systems. Our metrics are able to detect a range of adversary capabilities which goes beyond previous literature in the SCADA domain.

Item Type: Conference or Workshop Item (Paper)
Status: Published
Schools: Computer Science & Informatics
Publisher: SciTePress
ISBN: 978-989-758-282-0
Last Modified: 21 Sep 2023 14:30
URI: https://orca.cardiff.ac.uk/id/eprint/161741

Actions (repository staff only)

Edit Item Edit Item
Dimensions
Altmetric
CORE (COnnecting REpositories)


Maintained by Cardiff University Information Services