Assessing machine learning techniques for intrusion detection in cyber-physical systems

Santos, Vinicius F.; Albuquerque, Célio; Passos, Diego; Ereno Quincozes, Silvio; Mossé, Daniel

http://hdl.handle.net/10400.21/22148

Use this identifier to reference this record.

Name:	Description:	Size:	Format:
Assessing_DPassos.pdf		564.7 KB	Adobe PDF	Download

Send Feedback

Authors

Santos, Vinicius F.

Albuquerque, Célio

Passos, Diego

Ereno Quincozes, Silvio

Mossé, Daniel

Abstract(s)

Cyber-physical systems (CPS) are vital to key infrastructures such as Smart Grids and water treatment, and are increasingly vulnerable to a broad spectrum of evolving attacks. Whereas traditional security mechanisms, such as encryption and firewalls, are often inadequate for CPS architectures, the implementation of Intrusion Detection Systems (IDS) tailored for CPS has become an essential strategy for securing them. In this context, it is worth noting the difference between traditional offline Machine Learning (ML) techniques and understanding how they perform under different IDS applications. To answer these questions, this article presents a novel comparison of five offline and three online ML algorithms for intrusion detection using seven CPS-specific datasets, revealing that offline ML is superior when attack signatures are present without time constraints, while online techniques offer a quicker response to new attacks. The findings provide a pathway for enhancing CPS security through a balanced and effective combination of ML techniques.

Keywords

Cyber-physical systems Intrusion detection systems Offline machine learning Online machine learning

URI

http://hdl.handle.net/10400.21/22148

Citation

Santos, V. F., Albuquerque, C., Passos, D., Quincozes, S. E., & Mossé, D. (2023). Assessing machine learning techniques for intrusion detection in cyber-physical systems. Energies, 16(16), 1-18. https://doi.org/10.3390/en16166058