A survey of intrusion detection on industrial control systems
Top Cited Papers
Open Access
- 17 August 2018
- journal article
- research article
- Published by SAGE Publications in International Journal of Distributed Sensor Networks
- Vol. 14 (8)
- https://doi.org/10.1177/1550147718794615
Abstract
The modern industrial control systems now exhibit an increasing connectivity to the corporate Internet technology networks so as to make full use of the rich resource on the Internet. The increasing interaction between industrial control systems and the outside Internet world, however, has made them an attractive target for a variety of cyber attacks, raising a great need to secure industrial control systems. Intrusion detection technology is one of the most important security precautions for industrial control systems. It can effectively detect potential attacks against industrial control systems. In this survey, we elaborate on the characteristics and the new security requirements of industrial control systems. After that, we present a new taxonomy of intrusion detection systems for industrial control systems based on different techniques: protocol analysis based, traffic mining based, and control process analysis based. In addition, we analyze the advantages and disadvantages of different categories of intrusion detection systems and discuss some future developments of intrusion detection systems for industrial control systems, in order to promote further research on intrusion detection technology for industrial control systems.Keywords
Funding Information
- National Natural Science Foundation of China (61502466)
- National Natural Science Foundation of China (61503365)
- National Natural Science Foundation of China (61702506)
- Fundamental Research Funds for the Central Universities (FRF-TP-17-058A1)
- National Social Science Foundation of China (17ZDA331)
This publication has 17 references indexed in Scilit:
- Process Discovery for Industrial Control System Cyber Attack DetectionIFIP Advances in Information and Communication Technology, 2017
- Fuzziness based semi-supervised learning approach for intrusion detection systemInformation Sciences, 2017
- The Performance and Limitations of $\epsilon$- Stealthy Attacks on Higher Order SystemsIEEE Transactions on Automatic Control, 2016
- Modeling Message Sequences for Intrusion Detection in Industrial Control SystemsIFIP Advances in Information and Communication Technology, 2015
- A survey of intrusion detection techniques for cyber-physical systemsACM Computing Surveys, 2014
- Stuxnet: Dissecting a Cyberwarfare WeaponIEEE Security & Privacy, 2011
- False data injection attacks against state estimation in electric power gridsACM Transactions on Information and System Security, 2011
- Bro: a system for detecting network intruders in real-timeComputer Networks, 1999
- Robustness in model-based fault diagnosis: The 1995 situationAnnual Reviews in Control, 1997
- Robust detection filter design in the presence of time-varying system perturbationsAutomatica, 1997