Skip to Main content Skip to Navigation
Book sections

Critical States Distance Filter Based Approach for Detection and Blockage of Cyberattacks in Industrial Control Systems

Franck Sicard 1 Éric Zamaï 1 Jean-Marie Flaus 1
1 G-SCOP_GCSP - Gestion et Conduite des Systèmes de Production
G-SCOP - Laboratoire des sciences pour la conception, l'optimisation et la production
Abstract : Industrial Control Systems (ICS) are integrated in many areas and critical infrastructures from manufacturing systems to energy production and distribution networks. Originally, these systems have been designed to insure the productivity and reliability of a system. Since the beginning of the century, ICS are targeted by hackers that use vulnerabilities in control-command architecture and component to physically damage the system and its environment. These vulnerabilities are induced by introduction of Information Technology (IT) that brings major improvements as communication speed or standardization of architecture. Furthermore, despite these advantages, IT provides incomplete or incompatible solutions from security point of view for ICS. This paper presents an innovative approach for detecting intrusions in ICS based on different works in safety and security fields. Indeed, by coupling the Filter Approach with theory of Intrusion Detection System (IDS), we propose an approach to detect and block orders that could damage the system. Moreover, the notion of distance between states is developed to anticipate potential attacks and distinguish cyberattacks from classical failures. The study is supported by simulation inspired by classical ICS and industrial platforms.
Document type :
Book sections
Complete list of metadata

https://hal.archives-ouvertes.fr/hal-01741155
Contributor : Franck Sicard Connect in order to contact the contributor
Submitted on : Thursday, March 22, 2018 - 5:08:02 PM
Last modification on : Tuesday, May 11, 2021 - 11:37:20 AM

Identifiers

Citation

Franck Sicard, Éric Zamaï, Jean-Marie Flaus. Critical States Distance Filter Based Approach for Detection and Blockage of Cyberattacks in Industrial Control Systems. In: Sayed-Mouchaweh M. (eds). Diagnosability, Security and Safety of Hybrid Dynamic and Cyber-Physical Systems, Springer, Cham, 2018, ⟨10.1007/978-3-319-74962-4_5⟩. ⟨hal-01741155⟩

Share

Metrics

Record views

519