Anomaly extraction and correlations for power infrastructure cyber systems

Author

Ten, Chee-Wooi ; Liu, Chen-Ching ; Govindarasu, Manimaran

Author_Institution

Electr. & Comput. Eng. Dept., Iowa State Univ., Ames, IA

fYear

2008

fDate

12-15 Oct. 2008

Firstpage

7

Lastpage

12

Abstract

There has not been an organized way to efficiently correlate anomaly behaviors in critical infrastructures as information about malicious activities are not gathered from geographically dispersed cyber systems. This paper establishes a systematic approach to identify properties that can be extracted to detect malicious activities in the cyber-based control systems. The malicious detection can be implemented through an on-line anomaly inference system in order to improve situational awareness. In this preliminary investigation, a methodology to infer anomaly is proposed for power systems, representing the anomalous cyber- or power-related events among substation networks.

Keywords

power engineering computing; security of data; substations; anomaly correlations; anomaly extraction; cyber-based control systems; geographically dispersed cyber systems; malicious detection; power infrastructure cyber systems; substation networks; Centralized control; Communication system control; Computer security; Control systems; Data mining; Distributed control; Personal communication networks; Power systems; Programmable control; SCADA systems; Agent-based methodology; anomaly inference framework; cyber-physical system (CPS); intelligent attacks;

fLanguage

English

Publisher

ieee

Conference_Titel

Systems, Man and Cybernetics, 2008. SMC 2008. IEEE International Conference on

Conference_Location

Singapore

ISSN

1062-922X

Print_ISBN

978-1-4244-2383-5

Electronic_ISBN

1062-922X

Type

conf

DOI

10.1109/ICSMC.2008.4811242

Filename

4811242