Abstract
This paper presents the development of a Supervisory Control and Data Acquisition (SCADA) system testbed used for cybersecurity research. The testbed consists of a water storage tank’s control system, which is a stage in the process of water treatment and distribution. Sophisticated cyber-attacks were conducted against the testbed. During the attacks, the network traffic was captured, and features were extracted from the traffic to build a dataset for training and testing different machine learning algorithms. Five traditional machine learning algorithms were trained to detect the attacks: Random Forest, Decision Tree, Logistic Regression, Naïve Bayes and KNN. Then, the trained machine learning models were built and deployed in the network, where new tests were made using online network traffic. The performance obtained during the training and testing of the machine learning models was compared to the performance obtained during the online deployment of these models in the network. The results show the efficiency of the machine learning models in detecting the attacks in real time. The testbed provides a good understanding of the effects and consequences of attacks on real SCADA environments.
Funder
Fundação de Amparo à Pesquisa do Estado de São Paulo
Qatar National Research Fund
Subject
Computer Networks and Communications
Reference33 articles.
1. Supervisory Control and Data Acquisition (SCADA) Systems, Technical Information Bulletin 04-1https://www.cedengineering.com/userfiles/SCADA%20Systems.pdf
2. IT Security Spending Trendshttps://www.sans.org/reading-room/whitepapers/analyst/security-spending-trends-36697
3. Modbus TCP/IPhttp://www.modbus.org/tech.php
Cited by
106 articles.
订阅此论文施引文献
订阅此论文施引文献,注册后可以免费订阅5篇论文的施引文献,订阅后可以查看论文全部施引文献