Skip to Main content Skip to Navigation
New interface
Conference papers

Process-Aware Model-based Intrusion Detection System on Filtering Approach: Further Investigations

Abstract : Against new emerging cyber-threats targeting Industrial Control Systems (ICSs), Intrusion Detection Systems (IDSs) have emerged as viable solutions for implementing signature or behavioural approaches. The Security Approach based on Filter Execution (S.A.F.E.), a process-aware model-based IDS, deploys detection mechanisms through the implementation of command and report filters close to the process under control. Based on the S.A.F.E. approach, this paper proposes its improvement and novel contributions: a report filter modelling, optimization algorithms for speeding up the computation of the detection indicators and an implementation on a real testbed.
Document type :
Conference papers
Complete list of metadata

https://hal.archives-ouvertes.fr/hal-02547697
Contributor : Franck SICARD Connect in order to contact the contributor
Submitted on : Monday, April 20, 2020 - 11:13:04 AM
Last modification on : Monday, November 29, 2021 - 6:02:02 PM

Identifiers

Citation

Amaury Beaudet, Franck Sicard, Cédric Escudero, Éric Zamaï. Process-Aware Model-based Intrusion Detection System on Filtering Approach: Further Investigations. ICIT 2020 - IEEE International Conference on Industrial Technology, Feb 2020, Buenos Aires, Argentina. pp.310-315, ⟨10.1109/ICIT45562.2020.9067195⟩. ⟨hal-02547697⟩

Share

Metrics

Record views

38