CPL - Chalmers Publication Library
| Utbildning | Forskning | Styrkeområden | Om Chalmers | In English In English Ej inloggad.

METIS: A two-tier intrusion detection system for advanced metering infrastructures

Vincenzo Gulisano (Institutionen för data- och informationsteknik, Nätverk och system, Datakommunikation och distribuerade system (Chalmers)) ; Magnus Almgren (Institutionen för data- och informationsteknik, Nätverk och system (Chalmers) ) ; Marina Papatriantafilou (Institutionen för data- och informationsteknik, Nätverk och system, Datakommunikation och distribuerade system (Chalmers))
e-Energy 2014 - Proceedings of the 5th ACM International Conference on Future Energy Systems p. 211-212. (2014)
[Konferensbidrag, refereegranskat]

Specification-based intrusion detection systems, the main defense mechanism proposed so far for Advanced Metering Infrastructures, do not provide a comprehensive protection against the wide spectrum of possible attack scenarios. Challenging aspects in this context include the need for timely detection and for novel attack scenario modeling techniques. This paper introduces METIS, a novel two-tier anomaly-based intrusion detection framework that targets such challenges. The framework provides a continuous and fully distributed processing of network traffic by relying on the data streaming processing paradigm. Attack scenarios can be specified by means of the traffic features they affect and their resulting patterns of malicious activities. We overview the framework, presenting the novel detection technique, and provide results from a case study. © 2014 Authors.

Nyckelord: advanced metering infrastructure , data streaming , intrusion detection



Denna post skapades 2014-09-23. Senast ändrad 2015-03-30.
CPL Pubid: 203171

 

Läs direkt!


Länk till annan sajt (kan kräva inloggning)