Team for Research in
Ubiquitous Secure Technology

A Model-based Intrusion Detection System for Wireless Process Control Systems
Tanya Roosta

Citation
Tanya Roosta. "A Model-based Intrusion Detection System for Wireless Process Control Systems". Talk or presentation, 10, October, 2007.

Abstract
A recent trend in the process control system (PCS) is to deploy sensor networks in the hard-to-reachareas. Using wireless sensors greatly decreases the wiring costs and increases the volume of data gathered for plant monitoring. However, ensuring the security of the deployed sensor network, which is part of the overall security of PCS, is of crucial importance. In this paper, we design a model-based intrusion detection system (IDS) for sensor networks used for PCS. Given PCS tends to have regular traffic patterns and a well-defined request-response communication, we can design an IDS that defines the model of normal behavior of the entities and detects attacks when there is a deviation from this model. Model-based IDS can prove useful in detecting unknown attacks.

Electronic downloads


Internal. This publication has been marked by the author for TRUST-only distribution, so electronic downloads are not available without logging in.
Citation formats  
  • HTML
    Tanya Roosta. <a
    href="http://www.truststc.org/pubs/298.html"
    ><i>A Model-based Intrusion Detection System for
    Wireless Process Control Systems</i></a>, Talk
    or presentation,  10, October, 2007.
  • Plain text
    Tanya Roosta. "A Model-based Intrusion Detection System
    for Wireless Process Control Systems". Talk or
    presentation,  10, October, 2007.
  • BibTeX
    @presentation{Roosta07_ModelbasedIntrusionDetectionSystemForWirelessProcess,
        author = {Tanya Roosta},
        title = {A Model-based Intrusion Detection System for
                  Wireless Process Control Systems},
        day = {10},
        month = {October},
        year = {2007},
        abstract = {A recent trend in the process control system (PCS)
                  is to deploy sensor networks in the
                  hard-to-reachareas. Using wireless sensors greatly
                  decreases the wiring costs and increases the
                  volume of data gathered for plant monitoring.
                  However, ensuring the security of the deployed
                  sensor network, which is part of the overall
                  security of PCS, is of crucial importance. In this
                  paper, we design a model-based intrusion detection
                  system (IDS) for sensor networks used for PCS.
                  Given PCS tends to have regular traffic patterns
                  and a well-defined request-response communication,
                  we can design an IDS that defines the model of
                  normal behavior of the entities and detects
                  attacks when there is a deviation from this model.
                  Model-based IDS can prove useful in detecting
                  unknown attacks.},
        URL = {http://www.truststc.org/pubs/298.html}
    }
    

Posted by Larry Rohrbough on 16 Oct 2007.
For additional information, see the Publications FAQ or contact webmaster at www truststc org.

Notice: This material is presented to ensure timely dissemination of scholarly and technical work. Copyright and all rights therein are retained by authors or by other copyright holders. All persons copying this information are expected to adhere to the terms and constraints invoked by each author's copyright.