Paper Info
Title
HAMIDS: Hierarchical Monitoring Intrusion Detection System for Industrial Control Systems.
Abstract
In this paper, we propose a hierarchical monitoring intrusion detection system (HAMIDS) for industrial control systems (ICS). The HAMIDS framework detects the anomalies in both level 0 and level 1 of an industrial control plant. In addition, the framework aggregates the cyber-physical process data in one point for further analysis as part of the intrusion detection process. The novelty of this framework is its ability to detect anomalies that have a distributed impact on the cyber-physical process. The performance of the proposed framework evaluated as part of SWaT security showdown (S3) in which six international teams were invited to test the framework in a real industrial control system. The proposed framework outperformed other proposed academic IDS in term of detection of ICS threats during the S3 event, which was held from July 25-29, 2016 at Singapore University of Technology and Design.
Year
DOI
Venue
2016
10.1145/2994487.2994492
CPS-SPC@CCS
Keywords
Field
DocType
SCADA, Intrusion detection, EtherNet/IP
Host-based intrusion detection system,Industrial control system,Real-time computing,EtherNet/IP,SCADA,Novelty,Engineering,Intrusion detection system,Embedded system
Conference
Citations 
PageRank 
References 
8
0.53
8
Authors
2
Name
Order
Citations
PageRank
Hamid Reza Ghaeini1303.62
Nils Ole Tippenhauer255550.95