OSCIDS: An Ontology based SCADA Intrusion Detection Framework

Abdullah Al Balushi, Kieran McLaughlin, Sakir Sezer

2016

Abstract

This paper presents the design, development, and validation of an ontology based SCADA intrusion detection system. The proposed system analyses SCADA network communications and can derive additional information based on the background knowledge and ontology models to enhance the intrusion detection data. The developed intrusion model captures network communications, cyber attacks and the context within the SCADA domain. Moreover, a set of semantic rules were constructed to detect various attacks and extract logical relationships among these attacks. The presented framework was extensively evaluated and a comparison to the state of the art is provided.

Paper Citation

in Harvard Style

Al Balushi A., McLaughlin K. and Sezer S. (2016). OSCIDS: An Ontology based SCADA Intrusion Detection Framework . In Proceedings of the 13th International Joint Conference on e-Business and Telecommunications - Volume 4: SECRYPT, (ICETE 2016) ISBN 978-989-758-196-0, pages 327-335. DOI: 10.5220/0005969803270335

in Bibtex Style

@conference{secrypt16,
author={Abdullah Al Balushi and Kieran McLaughlin and Sakir Sezer},
title={OSCIDS: An Ontology based SCADA Intrusion Detection Framework},
booktitle={Proceedings of the 13th International Joint Conference on e-Business and Telecommunications - Volume 4: SECRYPT, (ICETE 2016)},
year={2016},
pages={327-335},
publisher={SciTePress},
organization={INSTICC},
doi={10.5220/0005969803270335},
isbn={978-989-758-196-0},
}

in EndNote Style

TY - CONF
JO - Proceedings of the 13th International Joint Conference on e-Business and Telecommunications - Volume 4: SECRYPT, (ICETE 2016)
TI - OSCIDS: An Ontology based SCADA Intrusion Detection Framework
SN - 978-989-758-196-0
AU - Al Balushi A.
AU - McLaughlin K.
AU - Sezer S.
PY - 2016
SP - 327
EP - 335
DO - 10.5220/0005969803270335