Title :
Leveraging determinism in industrial control systems for advanced anomaly detection and reliable security configuration
Author :
Hadeli, Hadeli ; Schierholz, Ragnar ; Braendle, Markus ; Tuduce, Cristian
Author_Institution :
Corp. Res. - Ind. Software Syst., ABB Switzerland Ltd., Baden Daettwil, Switzerland
Abstract :
Industrial automation and control systems (IACS) today are often based on common IT technologies. However, they often lack security mechanisms and those available in enterprise IT environments are often not suitable for IACS. Other mechanisms require significant manual maintenance which is error prone. In this paper we present an approach that leverages the unique characteristics of IACS, in particular their deterministic behavior and often available formal system description, to reliably detect anomalies and reproducibly generate configurations for security mechanisms such as firewalls. In particular, we extend common IDS technology to also detect an IACS specific anomaly: the missing of required traffic.
Keywords :
authorisation; industrial control; specification languages; IACS deterministic behavior; IACS formal system description; IACS system; IDS technology; advanced anomaly detection; firewalls; industrial automation and control systems; reliable security configuration; Automatic control; Automation; Computer security; Control systems; Data security; Electrical equipment industry; IEC standards; Industrial control; Intrusion detection; Protection;
Conference_Titel :
Emerging Technologies & Factory Automation, 2009. ETFA 2009. IEEE Conference on
Conference_Location :
Mallorca
Print_ISBN :
978-1-4244-2727-7
Electronic_ISBN :
1946-0759
DOI :
10.1109/ETFA.2009.5347134
