Machine learning-based defense against process-Aware attacks on Industrial Control Systems

Anastasis Keliris, Hossein Salehghaffari, Brian Cairl, Prashanth Krishnamurthy, Michail Maniatakos, Farshad Khorrami

Research output: Chapter in Book/Report/Conference proceedingConference contribution


The modernization of Industrial Control Systems (ICS), primarily targeting increased efficiency and controllability through integration of Information Technologies (IT), introduced the unwanted side effect of extending the ICS cyber-security threat landscape. ICS are facing new security challenges and are exposed to the same vulnerabilities that plague IT, as demonstrated by the increasing number of incidents targeting ICS. Due to the criticality and unique nature of these systems, it is important to devise novel defense mechanisms that incorporate knowledge of the underlying physical model, and can detect attacks in early phases. To this end, we study a benchmark chemical process, and enumerate the various categories of attack vectors and their practical applicability on hardware controllers in a Hardware-In-The-Loop testbed. Leveraging the observed implications of the categorized attacks on the process, as well as the profile of typical disturbances, we follow a data-driven approach to detect anomalies that are early indicators of malicious activity.

Original languageEnglish (US)
Title of host publicationProceedings - 2016 IEEE International Test Conference, ITC 2016
PublisherInstitute of Electrical and Electronics Engineers Inc.
ISBN (Electronic)9781467387736
StatePublished - Jul 2 2016
Event47th IEEE International Test Conference, ITC 2016 - Fort Worth, United States
Duration: Nov 15 2016Nov 17 2016

Publication series

NameProceedings - International Test Conference
ISSN (Print)1089-3539


Other47th IEEE International Test Conference, ITC 2016
Country/TerritoryUnited States
CityFort Worth

ASJC Scopus subject areas

  • Electrical and Electronic Engineering
  • Applied Mathematics


Dive into the research topics of 'Machine learning-based defense against process-Aware attacks on Industrial Control Systems'. Together they form a unique fingerprint.

Cite this