A methodology to extract rules to identify attacks in power system critical infrastructure

2007 IEEE Power Engineering Society General Meeting, PES

Volumn , Issue , 2007, Pages

  Coutinho, Maurílio Pereira ^b   Lambert Torres, Germano ^a,b   Da Silva, Luiz Eduardo Borges ^a,b   Fonseca, Edison F ^c   Lazarek, Horst ^d  

^a IEEE

^b FEDERAL UNIVERSITY OF ITAJUBÁ   (Brazil)

^c Paulista Electric Transmission Co (CTEEP)   (Brazil)

^d DRESDEN UNIVERSITY OF TECHNOLOGY   (Germany)

Author keywords

Data mining; Detecting attacks; Electric power system; Rough set theory

Indexed keywords

ALGORITHMS; DATA MINING; ELECTRIC FAULT CURRENTS; ERROR DETECTION; ROUGH SET THEORY;

CRITICAL INFRASTRUCTURE; DETECTING ATTACKS; ELECTRIC POWER CONTROL SYSTEMS; ROUGH SETS CLASSIFICATION ALGORITHMS;

ELECTRIC POWER SYSTEMS;

EID: 42549083708     PISSN: None     EISSN: None     Source Type: Conference Proceeding    
DOI: 10.1109/PES.2007.386075     Document Type: Conference Paper

References (39)

1. "National Strategy for the Physical Protection of Critical Infrastructures and Key Assets".Washington D.C.,Feb 2003, http://www.dhs.gov/interweb/assetlibrary/Physical_S trategy.pdf
2. Gamez, D., Nadjm-Tehrani. S., Bigham, J., Balducelli, C., Burbeck. K., and Chyssler, T., "Chapter 19 Safeguarding Critical Infrastructures". Edited by Professor Hassan B. Diab & Professor Albert Y. Zomaya. "Dependable Computing Systems: Paradigms, Performance Issues, and Applications", Wiley STM. 2000.
3. Dunn. M., and Wigert. I., "International CIIP Handbook 2004", ETHZ, Zurich, 2004.
4. "The National Strategy to Secure Cyberspace", Washington D.C.,February,2003,http://www.dhs.gov/interweb/assetlibrary/ National_Cyberspace_Strategy.pdf.
5. "Homeland Security Act of 2002". Washington D.C., January. 2002, http://www.dhs.gov/interweb/assetlibrary/hr_5005_enr.pdf.
6. IT-Grundschutz Manual 2004, http://www.bsi.bund.de/english/gshb/index. htm.
7. Falco, J., Stouffer, K., Wavering, A., and Proctor, F., "IT Security for Industrial Control Systems", NISTIR 6859, February 2002.
8. Oyen, R., "Making Sense of the Myriad of Manufacturing and Control System Security Standards. ISA Expo 2005, Oct., 2005.
9. Naedele, M., "Standardizing Industrial IT Security - A first Look at the IEC Approach", Emerging Technologies and Factory Automation, 2005, ETFA 2005, 10th IEEE Conference on, Vol. 2, 19-22, Sept. 2005, pp. 857-863.
10. Byres, E. and Lowe. J., "The Myths and Facts behind Cyber Security Risks for Industrial Control Systems", VDE 2004 Congress. VDE, Berlin, October, 2004.
11. Dzung, D., Naedele. M., Von Hoff, T.P., and Crevatin, M., "Security for Industrial Communications Systems", Proceedings of the IEEE, Vol.93, No. 6, June 2005.
12. Naedele, M., and Dzung, D., "Industrial Information System Security - Part I, Part2, and Part 3", ABB Review 2005.
13. McHugh, J., Christie, A., and Allen, J., "The role of Intrusion Detection Systems", IEEE Software, September/October/2000.
14. Hale. J., and Bose, A.,"Information Survivability in the Electric Utility Industry", ISW'98, http://www.cert.org/research/isw/isw98/ all_the_papers/no19.html.
15. Goetz, E., "Cyber Security of the Electric Power Industry", Institute for Security Technology Studies at Dartmouth College", December, 2002 [NERC-CIP,2005] http:/Avww.nerc.com/~filez/standards/Reliability_Standards. html#Critical_Infrastructure_Protection.
16. Oman. P., Schweitzer, E., and Roberts, J., "Protecting the Grid From Cyber Attack, Part 11: Safeguarding IEDS, Substations and SCADA Systems", Utility Automation, 7(1), 2002, pp. 25-32.
17. Axelsson, S., "Intrusion Detection Systems: A Survey and Taxonomy", Chalmers University of Technology, Göteborg, Sweden, March/2000.
18. McHugh, J., "Intrusion and Intrusion Detection", International Journal of Information Security, Volume 1, Issue 1, Aug 2001, Pages 14-35, DOI 10.1007/s 102070100001, URL http://dx.doi.org/10.1007/s102070100001.
19. Bace, R., and Mell, P. "Intrusion Detection Systems", NIST Special Publication on Intrusion Detection System,http://csrc.nist.gov/ publication/nistpubs/800-31/sp800-31.pdf.
20. Lundin, E., and Jonson, E., "Survey of Intrusion Detection Research", Technical Report 02-04, Chalmers University of Technology, Göteborg, Sweeden, 2001.
21. Mé, L., and Michel, C., "Intrusion Detection: a Bibliograpy", Technical Report SSIR-2001-01. September,2001. SUPELEC, France.
22. Lunt, T., Tamaru. T., Gilham, F., Jagannathan. R., Neumann, P., Javitz, H., Valdes. A., and Garvey, T., "A Real Time Intrusion Detection Expert System (IDES)", Final Technical Report. Computer Science Lab., SRI International, Menlo Park, California, Feb., 1992.
23. Porras, P.A., and Neumann, P.G., "EMERALD: Event Monitoring Enabling Responses to Anomalous Live Disturbances", Proc. National Information Systems Security Confrenece, Baltimore. MD, Oct. 1997.
24. Forrest. S., Hofmeyer, S.A., Somayaji, A., and Longstaff, T.A., "A Sense of Self for Unix Process", Proc. 1996 IEEE Symp. on Security and Privacy, pp. 120-128, 06-08 May 1996. Oakland,CA.IEEE Computer Security Press. Los Alamitos, CA.
25. Cansian. A.M., "Desenvolvimento de um Sistema Adaptativo de Detecção de Intrusos em Redes de Computadores", PhD Thesis, Instituto de Física de São Carlos. USP, Sâo Carlos, SP, 1997.
26. Manikopoulos, C., and Papavassiliou,S., "Network Intrusion and Fault Detection: A Statistical Anomaly Approach", IEEE Communication Magazine, Vol. 40, No. 10, pp. 76-82, Oct 2002.
27. Fink, G., Ko, C., and Levitt, K., "Automated Detection of Vulnerabilities in privileged Programs by Execution Monitoring", Proc. Of the 10th Annual Computer Security Apps. Conf., pp. 134-144, December 5-9, 1994.
28. Mukkamala, S., Janoski, G., and Sung, A., "Intrusion Detection Using Neural Networks and Support Vector Machines". IEEE Proceedings, 2002.
29. Sekar, R., Gupta, A., Frullo, J., Shanbhag, T., Tiwari. A., Yang, H., and Zhou, S., "Specification-based anomaly detection: a new approach for detecting network intrusions", In Proceedings of the 9th ACM Conference on Computer and Communications Security (Washington, DC, USA, November 18-22, 2002). V. Atluri, Ed. CCS '02. ACM Press, New York, NY.
30. Sarasamma, S.T., Qiuming, A., and Huff, J., "Hierarchical Kohonenen Net for Anomaly Detection in Network Security", IEEE Trans. on System, Man, and Cybernetics - Part B. Cybernetics, Vol. 35, No.2, April 2005.
31. Xiangyang Li, and Nong Ye, "A Supervised Clustering and Classification Algorithm for Mining Data with Mixed Variables", IEEE Trans. On Systems. Man, and Cybernetics, Part a: Systems and Humans, Vol. 36, No. 2, March 2006.
32. Yu, B., Byres, E., and Howey, C., "Monitoring Controller's "DNA Sequence for System Security", ISA Emerging Technologies Conference, Instrumentation Systems and Automation Society, Houston, September 2001.
33. Martinelli, M., Tronci, E., Dipoppa, E., and Balducelli, C., "Electric Power System Anomaly Detection Using Neural Networks", Lecture Notes in Computer Science, Vol.3213/2004, pp 1242-1248, Springer-Verlag, Heidelberg, Oct. 2004.
34. Wang, W. and Battiti, R., "Identifying Intrusions in Computer Networks with Principal Component Analysis", Proceedings of the First International Conference on Availability, Reliability and Security (ARES 2006), IEEE press society, pp. 270-277, April. 20-22nd, Vienna, Austria.
35. Song, D., Heywood, M.I., and Zincir-Heywood, A., "Training Genetic Programming on Half a Million Patterns: An Example from Anomaly Detection", IEEE Trans. On Evolutionary Computation, Vol. 9, No. 3, June 2005.
36. Bigham, J., Gamez, D., and Ning Lu, "Safeguarding SCADA Systems with Anomaly Detection", V.Gorodetsky et al.(Eds.):MMM-ACNS 2003, LNCS 2776, pp. 171-182, Springer-Verlag Berlin Heidelberg, 2003.
37. Pawlak, Z., "Rough Sets", International Journal of Information and Computer Sciences, Vol.11, pp. 341-356, 1982.
38. Lambert-Torres. G., "Applications of Rough Sets in Power System Control Center Data Mining", IEEE Power Engineering Society Winter Meeting 2002, Vol. 1, pp. 627-631.
39. Lambert-Torres. G. et al, "Power System Security Analysis Based on Rough Classification", Rough-Fuzzy Hybridization: New Trend in Decision Making, S.K. Pal & A. Skowron, Springer-Verlag Co., pp. 263-274, 1999.