An intrusion detection system for wireless process control systems

Author

Roosta, Tanya ; Nilsson, Dennis K. ; Lindqvist, Ulf ; Valdes, Alfonso

Author_Institution

Dep. of Electr. Eng. & Comput. Sci., UC Berkeley, Berkeley, CA

fYear

2008

fDate

Sept. 29 2008-Oct. 2 2008

Firstpage

866

Lastpage

872

Abstract

A recent trend in the process control system (PCS) is to deploy sensor networks in hard-to-reach areas. Using wireless sensors greatly decreases the wiring costs and increases the volume of data gathered for plant monitoring. However, ensuring the security of the deployed sensor network, which is part of the overall security of PCS, is of crucial importance. In this paper, we design a model-based intrusion detection system (IDS) for sensor networks used for PCS. Given that PCS tends to have regular traffic patterns and a well-defined request-response communication, we can design an IDS that models normal behavior of the entities and detects attacks when there is a deviation from this model. Model-based IDS can prove useful in detecting unknown attacks.

Keywords

process control; telecommunication security; telecommunication traffic; wireless sensor networks; attack detection; model-based intrusion detection system; network security; request-response communication; traffic pattern; wireless process control system; wireless sensor network; Communication system security; Costs; Data security; Intrusion detection; Monitoring; Personal communication networks; Process control; Sensor systems; Wireless sensor networks; Wiring;

fLanguage

English

Publisher

ieee

Conference_Titel

Mobile Ad Hoc and Sensor Systems, 2008. MASS 2008. 5th IEEE International Conference on

Conference_Location

Atlanta, GA

Print_ISBN

978-1-4244-2574-7

Electronic_ISBN

978-1-4244-2575-4

Type

conf

DOI

10.1109/MAHSS.2008.4660125

Filename

4660125