Anomaly detection in liquid pipelines using modeling, co-simulation and dynamical estimation

Saed Alajlouni, Vittal Rao

Research output: Chapter in Book/Report/Conference proceedingConference contributionpeer-review

4 Scopus citations

Abstract

Historically, supervisory control and data acquisition (SCADA) systems have relied on obscurity to safeguard against attacks. Indeed, external attackers lacked knowledge about proprietary system designs and software to access systems and execute attacks. The trend to interconnect to the Internet and incorporate standardized protocols, however, has resulted in an increase in the attack surface – attackers can now target SCADA systems and proceed to impact the physical systems they control. Dynamical estimation can be used to identify anomalies and attempts to maliciously affect controlled physical systems. This paper describes an intrusion detection method based on the dynamical estimation of systems. A generic water pipeline system is modeled using state space equations, and a discrete-time Kalman filter is used to estimate operational characteristics for anomaly-based intrusion detection. The effectiveness of the method is evaluated against deception attacks that target the water pipeline system. A co-simulation that integrates computational fluid dynamics software and MATLAB/Simulink is employed to simulate attacks and develop detection schemes.

Original languageEnglish
Title of host publicationCritical Infrastructure Protection VII - 7th IFIP WG 11.10 International Conference, ICCIP 2013, Revised Selected Papers
EditorsSujeet Shenoi, Jonathan Butts
PublisherSpringer New York LLC
Pages111-124
Number of pages14
ISBN (Print)9783642453298
DOIs
StatePublished - 2013
Event7th IFIP WG 11.10 International Conference on Critical Infrastructure Protection, ICCIP 2013 - Washington, United States
Duration: Mar 18 2013Mar 20 2013

Publication series

NameIFIP Advances in Information and Communication Technology
Volume417
ISSN (Print)1868-4238

Conference

Conference7th IFIP WG 11.10 International Conference on Critical Infrastructure Protection, ICCIP 2013
Country/TerritoryUnited States
CityWashington
Period03/18/1303/20/13

Keywords

  • Anomaly detection
  • Dynamical estimation
  • Liquid pipelines

Fingerprint

Dive into the research topics of 'Anomaly detection in liquid pipelines using modeling, co-simulation and dynamical estimation'. Together they form a unique fingerprint.

Cite this