A Taxonomy of Supervised Learning for IDSs in SCADA Environments-Reference-Cited by-同舟云学术

A Taxonomy of Supervised Learning for IDSs in SCADA Environments

Published:2021-03-31 Issue:2 Volume:53 Page:1-37
ISSN:0360-0300
Container-title:ACM Computing Surveys
language:en
Short-container-title:ACM Comput. Surv.

Author:

Suaboot Jakapan¹^ORCID,Fahad Adil²,Tari Zahir¹,Grundy John³,Mahmood Abdun Naser⁴,Almalawi Abdulmohsen⁵,Zomaya Albert Y.⁶,Drira Khalil⁷

Affiliation:

1. RMIT University, Melbourne, Victoria, Australia

2. University of Albaha, Jeddah, Saudi Arabia

3. Monash University, Clayton, Victoria, Australia

4. La Trobe University, Bundoora, Victoria, Australia

5. King Abdulaziz University, Jeddah, Saudi Arabia

6. The University of Sydney, Sydney, New South Wales, Australia

7. University of Toulouse, LAAS CNRS, Toulouse, France

Abstract

Supervisory Control and Data Acquisition (SCADA) systems play an important role in monitoring industrial processes such as electric power distribution, transport systems, water distribution, and wastewater collection systems. Such systems require a particular attention with regards to security aspects, as they deal with critical infrastructures that are crucial to organizations and countries. Protecting SCADA systems from intrusion is a very challenging task because they do not only inherit traditional IT security threats but they also include additional vulnerabilities related to field components (e.g., cyber-physical attacks). Many of the existing intrusion detection techniques rely on supervised learning that consists of algorithms that are first trained with reference inputs to learn specific information, and then tested on unseen inputs for classification purposes. This article surveys supervised learning from a specific security angle, namely SCADA-based intrusion detection. Based on a systematic review process, existing literature is categorized and evaluated according to SCADA-specific requirements. Additionally, this survey reports on well-known SCADA datasets and testbeds used with machine learning methods. Finally, we present key challenges and our recommendations for using specific supervised methods for SCADA systems.

Funder

Australian Research Council

Publisher

Association for Computing Machinery (ACM)

Subject

General Computer Science,Theoretical Computer Science

Link

https://dl.acm.org/doi/pdf/10.1145/3379499

Reference139 articles.

1. A study on critical capabilities for security information and event management;Agrawal Kavita;International Journal of Science and Research,2015

2. An Investigation of Performance Analysis of Anomaly Detection Techniques for Big Data in SCADA Systems

3. Feature normalization and likelihood-based similarity measures for image retrieval

Cited by 36 articles. 订阅此论文施引文献订阅此论文施引文献，注册后可以免费订阅5篇论文的施引文献，订阅后可以查看论文全部施引文献

1. A systematic literature review on Windows malware detection: Techniques, research issues, and future directions;Journal of Systems and Software;2024-03

2. Joint Exploration of Kernel Functions Potential for Data Representation and Classification: A First Step Toward Interactive Interpretable Dimensionality Reduction;SN Computer Science;2023-12-08

3. Industrial cyber-physical systems protection: A methodological review;Computers & Security;2023-12

4. A Smart Network Intrusion Detection System for Cyber Security of Industrial IoT;2023 Fourth International Conference on Intelligent Data Science Technologies and Applications (IDSTA);2023-10-24

5. Differential evolution-based convolutional neural networks: An automatic architecture design method for intrusion detection in industrial control systems;Computers & Security;2023-09