dc.contributor.author |
Atassi, Alaa Hussam. |
dc.date.accessioned |
2013-10-02T09:21:59Z |
dc.date.available |
2013-10-02T09:21:59Z |
dc.date.issued |
2012 |
dc.identifier.uri |
http://hdl.handle.net/10938/9488 |
dc.description |
Thesis (M.E.)--American University of Beirut, Department of Electrical and Computer Engineering, 2012. |
dc.description |
Advisor : Dr. Imad H. Elhajj, Associate Professor, Electrical and Computer Engineering --Members of Committee: Dr. Ayman Kayssi, Professor, Electrical and Computer Engineering ; Dr. Ali Chehab, Associate Professor, Electrical and Computer Engineering. |
dc.description |
Includes bibliographical references (leaves 72-75) |
dc.description.abstract |
Supervisory Control and Data Acquisition systems (SCADA) are widely used for the control and automation of various types of processes and operations in the industrial field. Lately, the security of these systems has become an issue due to the discovery of vulnerabilities in programmable logical controllers (PLCs) that are the main part of these systems. Regular intrusion detection and prevention systems that are dedicated to detect and-or prevent attacks over different network protocols fail to detect control specific attacks targeted at SCADA networks. We studied the protocols used in SCADA systems and developed an effective detection technique against different types of known and unknown attacks by means of a probabilistic mathematical system. Our system depends basically on the idea of Markov chain to detect any unusual sequence that leads to unacceptable system state. Our design led to detection rates higher than 99percent in most of the experiments in addition to low false negative rates (3.55percent and lower). Moreover, we minimized the training phase of the detection engine by choosing features relevant to SCADA systems. |
dc.format.extent |
x, 75 leaves : ill. ; 30 cm. |
dc.language.iso |
eng |
dc.relation.ispartof |
Theses, Dissertations, and Projects |
dc.subject.classification |
ET:005734 AUBNO |
dc.subject.lcsh |
Supervisory control systems -- Security measures. |
dc.subject.lcsh |
Programmable logic devices. |
dc.subject.lcsh |
Programmable controllers. |
dc.subject.lcsh |
Internet -- Security measures. |
dc.subject.lcsh |
Industries -- Security measures. |
dc.subject.lcsh |
Computer security. |
dc.subject.lcsh |
Information technology -- Security measures. |
dc.title |
Intrusion detection for SCADA and BMS. |
dc.type |
Thesis |
dc.contributor.department |
American University of Beirut. Faculty of Engineering and Architecture. Department of Electrical and Computer Engineering. |