Actions
  • shareshare
  • link
  • cite
  • add
add
auto_awesome_motion View all 6 versions
Publication . Conference object . 2020

An Anomaly Detection Mechanism for IEC 60870-5-104

Panagiotis Radoglou Grammatikis; Panagiotis Sarigiannidis; Antonios Sarigiannidis; Dimitrios Margounakis; Apostolos Tsiakalos; Georgios Efstathopoulos;
Open Access
Published: 18 Sep 2020
Publisher: IEEE
Abstract

The transformation of the conventional electricity grid into a new paradigm called smart grid demands the appropriate cybersecurity solutions. In this paper, we focus on the security of the IEC 60870-5-104 (IEC-104) protocol which is commonly used by Supervisory Control and Data Acquisition (SCADA) systems in the energy domain. In particular, after investigating its security issues, we provide a multivariate Intrusion Detection System (IDS) which adopts both access control and outlier detection mechanisms in order to detect timely possible anomalies against IEC-104. The efficiency of the proposed IDS is reflected by the Accuracy and F1 metrics that reach 98% and 87%, respectively.

Subjects by Vocabulary

Microsoft Academic Graph classification: Protocol (object-oriented programming) Access control business.industry business Distributed computing Anomaly detection Intrusion detection system SCADA Domain (software engineering) Computer science IEC 60870-5 Smart grid

ACM Computing Classification System: ComputerApplications_COMPUTERSINOTHERSYSTEMS

Subjects

Anomaly Detection, Cybersecurity, IEC-60870- 5-104, Supervisory Control and Data Acquisition

Funded by
EC| SPEAR
Project
SPEAR
SPEAR: Secure and PrivatE smArt gRid
  • Funder: European Commission (EC)
  • Project Code: 787011
  • Funding stream: H2020 | RIA
Validated by funder
,
EC| SPEAR
Project
SPEAR
SPEAR: Secure and PrivatE smArt gRid
  • Funder: European Commission (EC)
  • Project Code: 787011
  • Funding stream: H2020 | RIA
Validated by funder
Download fromView all 3 sources
lock_open
moresidebar