Abstract

SCADA networks are an essential part of monitoring and controlling physical infrastructures, such as the power grid. Recent news item show that tampering with the data exchanged in a SCADA network occurs and has severe consequences. A possible way of improving the security of SCADA networks is to use intrusion detection systems. By monitoring and analysing the traffic, it is possible to detect whether information has a legitimate source or was tampered with. However, in many cases the knowledge of just the traffic is not enough. Detecting intrusions could be improved by including awareness about the physical processes that are controlled. This paper shows a simple analysis of a small scenario of a power distribution system, to illustrate the benefits of including the knowledge about the process in detecting breaches in SCADA.
Original languageUndefined
Title of host publicationProceedings of the Joint Workshop on Cyber-physical Security and Resilience in Smart Grids (CPSR-SG 2016)
Place of PublicationUSA
PublisherIEEE
Pages-
Number of pages6
ISBN (Print)978-1-5090-1165-0
DOIs
StatePublished - 12 Apr 2016

Publication series

Name
PublisherIEEE

Fingerprint

traffic
news
intrusion
grids

Keywords

  • METIS-318500
  • IR-101864
  • EWI-27160

Cite this

Chromik, J. J., Remke, A. K. I., & Haverkort, B. R. H. M. (2016). What's under the hood? Improving SCADA security with process awareness. In Proceedings of the Joint Workshop on Cyber-physical Security and Resilience in Smart Grids (CPSR-SG 2016) (pp. -). USA: IEEE. DOI: 10.1109/CPSRSG.2016.7684100

Chromik, Justyna Joanna; Remke, Anne Katharina Ingrid; Haverkort, Boudewijn R.H.M. / What's under the hood? Improving SCADA security with process awareness.

Proceedings of the Joint Workshop on Cyber-physical Security and Resilience in Smart Grids (CPSR-SG 2016). USA : IEEE, 2016. p. -.

Research output: Scientific - peer-reviewConference contribution

@inbook{dbe33d7258d34d7aa6cbf8ea5843a35e,
title = "What's under the hood? Improving SCADA security with process awareness",
abstract = "SCADA networks are an essential part of monitoring and controlling physical infrastructures, such as the power grid. Recent news item show that tampering with the data exchanged in a SCADA network occurs and has severe consequences. A possible way of improving the security of SCADA networks is to use intrusion detection systems. By monitoring and analysing the traffic, it is possible to detect whether information has a legitimate source or was tampered with. However, in many cases the knowledge of just the traffic is not enough. Detecting intrusions could be improved by including awareness about the physical processes that are controlled. This paper shows a simple analysis of a small scenario of a power distribution system, to illustrate the benefits of including the knowledge about the process in detecting breaches in SCADA.",
keywords = "METIS-318500, IR-101864, EWI-27160",
author = "Chromik, {Justyna Joanna} and Remke, {Anne Katharina Ingrid} and Haverkort, {Boudewijn R.H.M.}",
note = "eemcs-eprint-27160",
year = "2016",
month = "4",
doi = "10.1109/CPSRSG.2016.7684100",
isbn = "978-1-5090-1165-0",
publisher = "IEEE",
pages = "--",
booktitle = "Proceedings of the Joint Workshop on Cyber-physical Security and Resilience in Smart Grids (CPSR-SG 2016)",

}

Chromik, JJ, Remke, AKI & Haverkort, BRHM 2016, What's under the hood? Improving SCADA security with process awareness. in Proceedings of the Joint Workshop on Cyber-physical Security and Resilience in Smart Grids (CPSR-SG 2016). IEEE, USA, pp. -. DOI: 10.1109/CPSRSG.2016.7684100

What's under the hood? Improving SCADA security with process awareness. / Chromik, Justyna Joanna; Remke, Anne Katharina Ingrid; Haverkort, Boudewijn R.H.M.

Proceedings of the Joint Workshop on Cyber-physical Security and Resilience in Smart Grids (CPSR-SG 2016). USA : IEEE, 2016. p. -.

Research output: Scientific - peer-reviewConference contribution

TY - CHAP

T1 - What's under the hood? Improving SCADA security with process awareness

AU - Chromik,Justyna Joanna

AU - Remke,Anne Katharina Ingrid

AU - Haverkort,Boudewijn R.H.M.

N1 - eemcs-eprint-27160

PY - 2016/4/12

Y1 - 2016/4/12

N2 - SCADA networks are an essential part of monitoring and controlling physical infrastructures, such as the power grid. Recent news item show that tampering with the data exchanged in a SCADA network occurs and has severe consequences. A possible way of improving the security of SCADA networks is to use intrusion detection systems. By monitoring and analysing the traffic, it is possible to detect whether information has a legitimate source or was tampered with. However, in many cases the knowledge of just the traffic is not enough. Detecting intrusions could be improved by including awareness about the physical processes that are controlled. This paper shows a simple analysis of a small scenario of a power distribution system, to illustrate the benefits of including the knowledge about the process in detecting breaches in SCADA.

AB - SCADA networks are an essential part of monitoring and controlling physical infrastructures, such as the power grid. Recent news item show that tampering with the data exchanged in a SCADA network occurs and has severe consequences. A possible way of improving the security of SCADA networks is to use intrusion detection systems. By monitoring and analysing the traffic, it is possible to detect whether information has a legitimate source or was tampered with. However, in many cases the knowledge of just the traffic is not enough. Detecting intrusions could be improved by including awareness about the physical processes that are controlled. This paper shows a simple analysis of a small scenario of a power distribution system, to illustrate the benefits of including the knowledge about the process in detecting breaches in SCADA.

KW - METIS-318500

KW - IR-101864

KW - EWI-27160

U2 - 10.1109/CPSRSG.2016.7684100

DO - 10.1109/CPSRSG.2016.7684100

M3 - Conference contribution

SN - 978-1-5090-1165-0

SP - -

BT - Proceedings of the Joint Workshop on Cyber-physical Security and Resilience in Smart Grids (CPSR-SG 2016)

PB - IEEE

ER -

Chromik JJ, Remke AKI, Haverkort BRHM. What's under the hood? Improving SCADA security with process awareness. In Proceedings of the Joint Workshop on Cyber-physical Security and Resilience in Smart Grids (CPSR-SG 2016). USA: IEEE. 2016. p. -. Available from, DOI: 10.1109/CPSRSG.2016.7684100