IDEAS home Printed from https://ideas.repec.org/a/eee/ijocip/v34y2021ics1874548221000160.html
   My bibliography  Save this article

Industrial intrusion detection based on the behavior of rotating machine

Author

Listed:
  • Safari, Mohammad
  • Parvinnia, Elham
  • Haddad, Alireza Keshavarz

Abstract

In this study, a new industrial intrusion detection method is introduced for the control system of rotating machines as critical assets in many industries. Data tampering is a major attack on the control systems which disrupts the functionality of the asset. Hence, our objective is to detect data manipulations in the system. We use the behavior of the rotating machine to propose new industrial intrusion detection for the control system of the rotating machine by machine learning techniques. The behavior is elicited by the data of sensors under all the conditions of the rotating machine operation. In this work, the nonlinear regression, novelty detection, outlier detection, and classification approaches are implemented to create behavioral model. On each implementation, online data are compared with the real data of behavior prediction model during the operation of the rotating machine to detect any abnormality. According to our experimental results, the accuracy of the behavioral models created by the One-classSVM novelty detection, k- Nearest Neighbor (kNN) outlier detection, decision tree classifier, k-Neighbors classifier, random forest classifier, and AdaBoost classifier is obtained as 0.98, 0.994, 0.999, 0.999, 0.999, and 0.999, respectively. The results indicate that the proposed industrial intrusion detection method is able to detect the data tampering attacks on the control system of the rotating machines very accurately.

Suggested Citation

  • Safari, Mohammad & Parvinnia, Elham & Haddad, Alireza Keshavarz, 2021. "Industrial intrusion detection based on the behavior of rotating machine," International Journal of Critical Infrastructure Protection, Elsevier, vol. 34(C).
    • Handle: RePEc:eee:ijocip:v:34:y:2021:i:c:s1874548221000160
    DOI: 10.1016/j.ijcip.2021.100424
    as

    Download full text from publisher

    File URL: http://www.sciencedirect.com/science/article/pii/S1874548221000160
    Download Restriction: Full text for ScienceDirect subscribers only
    File URL: https://libkey.io/10.1016/j.ijcip.2021.100424?utm_source=ideas
    LibKey link: if access is restricted and if your library uses this service, LibKey will redirect you to where you can use your library subscription to access this item
    ---><---

    As the access to this document is restricted, you may want to search for a different version of it.

    References listed on IDEAS

    as
    1. Robles-Durazno, Andres & Moradpoor, Naghmeh & McWhinnie, James & Russell, Gordon & Maneru-Marin, Inaki, 2019. "PLC memory attack detection and response in a clean water supply system," International Journal of Critical Infrastructure Protection, Elsevier, vol. 26(C).
    2. Basnight, Zachry & Butts, Jonathan & Lopez, Juan & Dube, Thomas, 2013. "Firmware modification attacks on programmable logic controllers," International Journal of Critical Infrastructure Protection, Elsevier, vol. 6(2), pages 76-84.
    3. Clotet, Xavier & Moyano, José & León, Gladys, 2018. "A real-time anomaly-based IDS for cyber-attack detection at the industrial process level of Critical Infrastructures," International Journal of Critical Infrastructure Protection, Elsevier, vol. 23(C), pages 11-20.
    4. Mingtao Wu & Zhengyi Song & Young B. Moon, 2019. "Detecting cyber-physical attacks in CyberManufacturing systems with machine learning methods," Journal of Intelligent Manufacturing, Springer, vol. 30(3), pages 1111-1123, March.
    5. SICARD, Franck & ZAMAI, Éric & FLAUS, Jean-Marie, 2019. "An approach based on behavioral models and critical states distance notion for improving cybersecurity of industrial control systems," Reliability Engineering and System Safety, Elsevier, vol. 188(C), pages 584-603.
    6. Schuett, Carl & Butts, Jonathan & Dunlap, Stephen, 2014. "An evaluation of modification attacks on programmable logic controllers," International Journal of Critical Infrastructure Protection, Elsevier, vol. 7(1), pages 61-68.
    Full references (including those not matched with items on IDEAS)

    Most related items

    These are the items that most often cite the same works as this one and are cited by the same works as this one.
    1. Monzer, Mohamad-Houssein & Beydoun, Kamal & Ghaith, Alaa & Flaus, Jean-Marie, 2022. "Model-based IDS design for ICSs," Reliability Engineering and System Safety, Elsevier, vol. 225(C).
    2. SICARD, Franck & ZAMAI, Éric & FLAUS, Jean-Marie, 2019. "An approach based on behavioral models and critical states distance notion for improving cybersecurity of industrial control systems," Reliability Engineering and System Safety, Elsevier, vol. 188(C), pages 584-603.
    3. Yadav, Geeta & Paul, Kolin, 2021. "Architecture and security of SCADA systems: A review," International Journal of Critical Infrastructure Protection, Elsevier, vol. 34(C).
    4. Zhu, Ruijin & Zhang, Baofeng & Mao, Junjie & Zhang, Quanxin & Tan, Yu-an, 2017. "A methodology for determining the image base of ARM-based industrial control system firmware," International Journal of Critical Infrastructure Protection, Elsevier, vol. 16(C), pages 26-35.
    5. Gopal Vishwakarma & Wonjun Lee, 2018. "Exploiting JTAG and Its Mitigation in IOT: A Survey," Future Internet, MDPI, vol. 10(12), pages 1-18, December.
    6. Xiaobao Zhu & Jing Shi & Fengjie Xie & Rouqi Song, 2020. "Pricing strategy and system performance in a cloud-based manufacturing system built on blockchain technology," Journal of Intelligent Manufacturing, Springer, vol. 31(8), pages 1985-2002, December.
    7. Robles-Durazno, Andres & Moradpoor, Naghmeh & McWhinnie, James & Russell, Gordon & Maneru-Marin, Inaki, 2019. "PLC memory attack detection and response in a clean water supply system," International Journal of Critical Infrastructure Protection, Elsevier, vol. 26(C).
    8. adepu, Sridhar & Mathur, Aditya, 2021. "SafeCI: Avoiding process anomalies in critical infrastructure," International Journal of Critical Infrastructure Protection, Elsevier, vol. 34(C).
    9. Chatterjee, Samrat & Thekdi, Shital, 2020. "An iterative learning and inference approach to managing dynamic cyber vulnerabilities of complex systems," Reliability Engineering and System Safety, Elsevier, vol. 193(C).
    10. Schuett, Carl & Butts, Jonathan & Dunlap, Stephen, 2014. "An evaluation of modification attacks on programmable logic controllers," International Journal of Critical Infrastructure Protection, Elsevier, vol. 7(1), pages 61-68.
    11. Ranabhat, Bikash & Clements, Joseph & Gatlin, Jacob & Hsiao, Kuang-Ting & Yampolskiy, Mark, 2019. "Optimal sabotage attack on composite material parts," International Journal of Critical Infrastructure Protection, Elsevier, vol. 26(C).
    12. Krotofil, Marina & Cárdenas, Alvaro & Larsen, Jason & Gollmann, Dieter, 2014. "Vulnerabilities of cyber-physical systems to stale data—Determining the optimal time to launch attacks," International Journal of Critical Infrastructure Protection, Elsevier, vol. 7(4), pages 213-232.
    13. Sándor, Hunor & Genge, Béla & Szántó, Zoltán & Márton, Lőrinc & Haller, Piroska, 2019. "Cyber attack detection and mitigation: Software Defined Survivable Industrial Control Systems," International Journal of Critical Infrastructure Protection, Elsevier, vol. 25(C), pages 152-168.
    14. Ying Zhang & Mutahar Safdar & Jiarui Xie & Jinghao Li & Manuel Sage & Yaoyao Fiona Zhao, 2023. "A systematic review on data of additive manufacturing for machine learning applications: the data quality, type, preprocessing, and management," Journal of Intelligent Manufacturing, Springer, vol. 34(8), pages 3305-3340, December.
    15. Barry C. Ezell & R. Michael Robinson & Peter Foytik & Craig Jordan & David Flanagan, 2013. "Cyber risk to transportation, industrial control systems, and traffic signal controllers," Environment Systems and Decisions, Springer, vol. 33(4), pages 508-516, December.
    16. Alanen, Jarmo & Linnosmaa, Joonas & Malm, Timo & Papakonstantinou, Nikolaos & Ahonen, Toni & Heikkilä, Eetu & Tiusanen, Risto, 2022. "Hybrid ontology for safety, security, and dependability risk assessments and Security Threat Analysis (STA) method for industrial control systems," Reliability Engineering and System Safety, Elsevier, vol. 220(C).
    17. Md Doulotuzzaman Xames & Fariha Kabir Torsha & Ferdous Sarwar, 2023. "A systematic literature review on recent trends of machine learning applications in additive manufacturing," Journal of Intelligent Manufacturing, Springer, vol. 34(6), pages 2529-2555, August.
    18. Zhangyue Shi & Abdullah Al Mamun & Chen Kan & Wenmeng Tian & Chenang Liu, 2023. "An LSTM-autoencoder based online side channel monitoring approach for cyber-physical attack detection in additive manufacturing," Journal of Intelligent Manufacturing, Springer, vol. 34(4), pages 1815-1831, April.
    19. Zhao Peng & Huan Zhang & Hongtao Tang & Yue Feng & Weiming Yin, 2022. "Research on flexible job-shop scheduling problem in green sustainable manufacturing based on learning effect," Journal of Intelligent Manufacturing, Springer, vol. 33(6), pages 1725-1746, August.
    20. William Derigent & Olivier Cardin & Damien Trentesaux, 2021. "Industry 4.0: contributions of holonic manufacturing control architectures and future challenges," Journal of Intelligent Manufacturing, Springer, vol. 32(7), pages 1797-1818, October.

    Corrections

    All material on this site has been provided by the respective publishers and authors. You can help correct errors and omissions. When requesting a correction, please mention this item's handle: RePEc:eee:ijocip:v:34:y:2021:i:c:s1874548221000160. See general information about how to correct material in RePEc.

    If you have authored this item and are not yet registered with RePEc, we encourage you to do it here. This allows to link your profile to this item. It also allows you to accept potential citations to this item that we are uncertain about.

    If CitEc recognized a bibliographic reference but did not link an item in RePEc to it, you can help with this form .

    If you know of missing items citing this one, you can help us creating those links by adding the relevant references in the same way as above, for each refering item. If you are a registered author of this item, you may also want to check the "citations" tab in your RePEc Author Service profile, as there may be some citations waiting for confirmation.

    For technical questions regarding this item, or to correct its authors, title, abstract, bibliographic or download information, contact: Catherine Liu (email available below). General contact details of provider: https://www.journals.elsevier.com/international-journal-of-critical-infrastructure-protection .

    Please note that corrections may take a couple of weeks to filter through the various RePEc services.

    IDEAS is a RePEc service. RePEc uses bibliographic data supplied by the respective publishers.