File Download
There are no files associated with this item.
Links for fulltext
(May Require Subscription)
- Publisher Website: 10.1007/978-3-030-56223-6_6
- Scopus: eid_2-s2.0-85091271765
- WOS: WOS:000724610300006
Supplementary
- Citations:
- Appears in Collections:
Conference Paper: Detecting Attacks on a Water Treatment System Using Oneclass Support Vector Machines
| Title | Detecting Attacks on a Water Treatment System Using Oneclass Support Vector Machines |
|---|---|
| Authors | |
| Keywords | Machine learning one-class SVM forensics water treatment system |
| Issue Date | 2020 |
| Publisher | Springer. |
| Citation | 16th IFIP WG 11.9 International Conference on Digital Forensics (DigitalForensics 2020), New Delhi, India, 6-8 January. In Peterson, G & Shenoi, S (Eds.), Advances in Digital Forensics XVI: 16th IFIP WG 11.9 International Conference, Revised Selected Papers, p. 95-108 How to Cite? |
| Abstract | Critical infrastructure assets such as power grids and water treatment plants are monitored and managed by industrial control systems. Attacks that leverage industrial control systems to disrupt or damage infrastructure assets can impact human lives, the economy and the environment. Several attack detection methods have been proposed, but they are often difficult to implement and their accuracy is often low. Additionally, these methods do not consider the digital forensic aspects.
This chapter focuses on the use of machine learning, specifically one-class support vector machines, for attack detection and forensic investigations. The methodology is evaluated using a water treatment testbed, a scaled-down version of a real-world industrial water treatment plant. Data collected under normal operations and attacks are used in the study. In order to enhance detection accuracy, the water treatment process is divided into sub-processes for individual one-class support vector machine model training. The experimental results demonstrate that the trained sub-process models yield better detection performance than the trained complete process model. Additionally, the approach enhances the efficiency and effectiveness of forensic investigations. |
| Persistent Identifier | http://hdl.handle.net/10722/289179 |
| ISBN | |
| ISI Accession Number ID | |
| Series/Report no. | IFIP Advances in Information and Communication Technology (IFIPAICT) ; v. 589 |
| DC Field | Value | Language |
|---|---|---|
| dc.contributor.author | Yau, KK | - |
| dc.contributor.author | Chow, KP | - |
| dc.contributor.author | Yiu, SM | - |
| dc.date.accessioned | 2020-10-22T08:08:57Z | - |
| dc.date.available | 2020-10-22T08:08:57Z | - |
| dc.date.issued | 2020 | - |
| dc.identifier.citation | 16th IFIP WG 11.9 International Conference on Digital Forensics (DigitalForensics 2020), New Delhi, India, 6-8 January. In Peterson, G & Shenoi, S (Eds.), Advances in Digital Forensics XVI: 16th IFIP WG 11.9 International Conference, Revised Selected Papers, p. 95-108 | - |
| dc.identifier.isbn | 9783030562229 | - |
| dc.identifier.uri | http://hdl.handle.net/10722/289179 | - |
| dc.description.abstract | Critical infrastructure assets such as power grids and water treatment plants are monitored and managed by industrial control systems. Attacks that leverage industrial control systems to disrupt or damage infrastructure assets can impact human lives, the economy and the environment. Several attack detection methods have been proposed, but they are often difficult to implement and their accuracy is often low. Additionally, these methods do not consider the digital forensic aspects. This chapter focuses on the use of machine learning, specifically one-class support vector machines, for attack detection and forensic investigations. The methodology is evaluated using a water treatment testbed, a scaled-down version of a real-world industrial water treatment plant. Data collected under normal operations and attacks are used in the study. In order to enhance detection accuracy, the water treatment process is divided into sub-processes for individual one-class support vector machine model training. The experimental results demonstrate that the trained sub-process models yield better detection performance than the trained complete process model. Additionally, the approach enhances the efficiency and effectiveness of forensic investigations. | - |
| dc.language | eng | - |
| dc.publisher | Springer. | - |
| dc.relation.ispartof | Advances in Digital Forensics XVI: 16th IFIP WG 11.9 International Conference on Digital Forensics (DigitalForensics 2020) | - |
| dc.relation.ispartofseries | IFIP Advances in Information and Communication Technology (IFIPAICT) ; v. 589 | - |
| dc.subject | Machine learning | - |
| dc.subject | one-class SVM | - |
| dc.subject | forensics | - |
| dc.subject | water treatment system | - |
| dc.title | Detecting Attacks on a Water Treatment System Using Oneclass Support Vector Machines | - |
| dc.type | Conference_Paper | - |
| dc.identifier.email | Chow, KP: chow@cs.hku.hk | - |
| dc.identifier.email | Yiu, SM: smyiu@cs.hku.hk | - |
| dc.identifier.authority | Chow, KP=rp00111 | - |
| dc.identifier.authority | Yiu, SM=rp00207 | - |
| dc.identifier.doi | 10.1007/978-3-030-56223-6_6 | - |
| dc.identifier.scopus | eid_2-s2.0-85091271765 | - |
| dc.identifier.hkuros | 317137 | - |
| dc.identifier.spage | 95 | - |
| dc.identifier.epage | 108 | - |
| dc.identifier.isi | WOS:000724610300006 | - |
| dc.publisher.place | Cham, Switzerland | - |