Context-aware local Intrusion Detection in SCADA systems: a testbed and two showcases

Justyna Joanna Chromik; Boudewijn R.H.M. Haverkort; Anne Katharina Ingrid Remke; Carina Pilch; Pascal Brackmann; Christof Duhme; Franziska Everinghoff; Artur Giberlein; Thomas Teodorowicz; Julian Wieland

doi:10.1109/SmartGridComm.2017.8340672

Context-aware local Intrusion Detection in SCADA systems: a testbed and two showcases

Justyna Joanna Chromik, Boudewijn R.H.M. Haverkort, Anne Katharina Ingrid Remke, Carina Pilch, Pascal Brackmann, Christof Duhme, Franziska Everinghoff, Artur Giberlein, Thomas Teodorowicz, Julian Wieland

Research output: Chapter in Book/Report/Conference proceeding › Conference contribution › Academic › peer-review

8 Citations (Scopus)

Abstract

This paper illustrates the use of a testbed that we have developed for context-aware local intrusion detection. This testbed is based on the co-simulation framework Mosaik and allows for the validation of local intrusion detection mechanisms at field stations in power distribution networks. For two cases, we show how this testbed assists with studying the effectiveness of two local IDS mechanisms under different kinds of attacks.

Original language	English
Title of host publication	2017 IEEE International Conference on Smart Grid Communications (SmartGridComm)
Publisher	IEEE
Number of pages	6
ISBN (Electronic)	978-1-5386-0943-9
DOIs	https://doi.org/10.1109/SmartGridComm.2017.8340672
Publication status	Published - 19 Apr 2018
Event	8th IEEE International Conference on Smart Grid Communications, SmartGridComm 2017 - Hotel Taschenbergpalais Dresden, Dresden, Germany Duration: 23 Oct 2017 → 26 Oct 2017 Conference number: 8 http://sgc2017.ieee-smartgridcomm.org

Conference

Conference	8th IEEE International Conference on Smart Grid Communications, SmartGridComm 2017
Abbreviated title	SmartGridComm 2017
Country/Territory	Germany
City	Dresden
Period	23/10/17 → 26/10/17
Internet address	http://sgc2017.ieee-smartgridcomm.org

Keywords

SCADA
Intrusion Detection
distributed control

Access to Document

10.1109/SmartGridComm.2017.8340672

Cite this

Chromik, J. J., Haverkort, B. R. H. M., Remke, A. K. I., Pilch, C., Brackmann, P., Duhme, C., Everinghoff, F., Giberlein, A., Teodorowicz, T., & Wieland, J. (2018). Context-aware local Intrusion Detection in SCADA systems: a testbed and two showcases. In 2017 IEEE International Conference on Smart Grid Communications (SmartGridComm) IEEE. https://doi.org/10.1109/SmartGridComm.2017.8340672

@inproceedings{c2aa202621bc45f2b0f5352edaee4a8b,

title = "Context-aware local Intrusion Detection in SCADA systems: a testbed and two showcases",

abstract = "This paper illustrates the use of a testbed that we have developed for context-aware local intrusion detection. This testbed is based on the co-simulation framework Mosaik and allows for the validation of local intrusion detection mechanisms at field stations in power distribution networks. For two cases, we show how this testbed assists with studying the effectiveness of two local IDS mechanisms under different kinds of attacks.",

keywords = "SCADA, Intrusion Detection, distributed control",

author = "Chromik, {Justyna Joanna} and Haverkort, {Boudewijn R.H.M.} and Remke, {Anne Katharina Ingrid} and Carina Pilch and Pascal Brackmann and Christof Duhme and Franziska Everinghoff and Artur Giberlein and Thomas Teodorowicz and Julian Wieland",

year = "2018",

month = apr,

day = "19",

doi = "10.1109/SmartGridComm.2017.8340672",

language = "English",

booktitle = "2017 IEEE International Conference on Smart Grid Communications (SmartGridComm)",

publisher = "IEEE",

note = "8th IEEE International Conference on Smart Grid Communications, SmartGridComm 2017, SmartGridComm 2017 ; Conference date: 23-10-2017 Through 26-10-2017",

url = "http://sgc2017.ieee-smartgridcomm.org",

}

Chromik, JJ, Haverkort, BRHM , Remke, AKI, Pilch, C, Brackmann, P, Duhme, C, Everinghoff, F, Giberlein, A, Teodorowicz, T & Wieland, J 2018, Context-aware local Intrusion Detection in SCADA systems: a testbed and two showcases. in 2017 IEEE International Conference on Smart Grid Communications (SmartGridComm). IEEE, 8th IEEE International Conference on Smart Grid Communications, SmartGridComm 2017, Dresden, Germany, 23/10/17. https://doi.org/10.1109/SmartGridComm.2017.8340672

Context-aware local Intrusion Detection in SCADA systems : a testbed and two showcases. / Chromik, Justyna Joanna; Haverkort, Boudewijn R.H.M.; Remke, Anne Katharina Ingrid et al.

2017 IEEE International Conference on Smart Grid Communications (SmartGridComm). IEEE, 2018.

Research output: Chapter in Book/Report/Conference proceeding › Conference contribution › Academic › peer-review

TY - GEN

T1 - Context-aware local Intrusion Detection in SCADA systems

T2 - 8th IEEE International Conference on Smart Grid Communications, SmartGridComm 2017

AU - Chromik, Justyna Joanna

AU - Haverkort, Boudewijn R.H.M.

AU - Remke, Anne Katharina Ingrid

AU - Pilch, Carina

AU - Brackmann, Pascal

AU - Duhme, Christof

AU - Everinghoff, Franziska

AU - Giberlein, Artur

AU - Teodorowicz, Thomas

AU - Wieland, Julian

N1 - Conference code: 8

PY - 2018/4/19

Y1 - 2018/4/19

N2 - This paper illustrates the use of a testbed that we have developed for context-aware local intrusion detection. This testbed is based on the co-simulation framework Mosaik and allows for the validation of local intrusion detection mechanisms at field stations in power distribution networks. For two cases, we show how this testbed assists with studying the effectiveness of two local IDS mechanisms under different kinds of attacks.

AB - This paper illustrates the use of a testbed that we have developed for context-aware local intrusion detection. This testbed is based on the co-simulation framework Mosaik and allows for the validation of local intrusion detection mechanisms at field stations in power distribution networks. For two cases, we show how this testbed assists with studying the effectiveness of two local IDS mechanisms under different kinds of attacks.

KW - SCADA

KW - Intrusion Detection

KW - distributed control

U2 - 10.1109/SmartGridComm.2017.8340672

DO - 10.1109/SmartGridComm.2017.8340672

M3 - Conference contribution

BT - 2017 IEEE International Conference on Smart Grid Communications (SmartGridComm)

PB - IEEE

Y2 - 23 October 2017 through 26 October 2017

ER -

Context-aware local Intrusion Detection in SCADA systems: a testbed and two showcases

Abstract

Conference

Keywords

Access to Document

Fingerprint

Cite this