| Title | Deep Learning-based Multi-PLC Anomaly Detection in Industrial Control Systems |
| Publication Type | Conference Paper |
| Year of Publication | 2022 |
| Authors | Gawehn, Philip, Ergenc, Doganalp, Fischer, Mathias |
| Conference Name | GLOBECOM 2022 - 2022 IEEE Global Communications Conference |
| Date Published | dec |
| Keywords | anomaly detection, Behavioral sciences, Deep Learning, emulation, ICs, ICS Anomaly Detection, Intrusion detection, process control, Production facilities, pubcrawl, resilience, Resiliency, Safety, Scalability, Semantics |
| Abstract | Industrial control systems (ICSs) have become more complex due to their increasing connectivity, heterogeneity and, autonomy. As a result, cyber-threats against such systems have been significantly increased as well. Since a compromised industrial system can easily lead to hazardous safety and security consequences, it is crucial to develop security countermeasures to protect coexisting IT systems and industrial physical processes being involved in modern ICSs. Accordingly, in this study, we propose a deep learning-based semantic anomaly detection framework to model the complex behavior of ICSs. In contrast to the related work assuming only simpler security threats targeting individual controllers in an ICS, we address multi-PLC attacks that are harder to detect as requiring to observe the overall system state alongside single-PLC attacks. Using industrial simulation and emulation frameworks, we create a realistic setup representing both the production and networking aspects of industrial systems and conduct some potential attacks. Our experimental results indicate that our model can detect single-PLC attacks with 95% accuracy and multi-PLC attacks with 80% accuracy and nearly 1% false positive rate. |
| DOI | 10.1109/GLOBECOM48099.2022.10001315 |
| Citation Key | gawehn_deep_2022 |
Deep Learning-based Multi-PLC Anomaly Detection in Industrial Control Systems