SCADA systems are nowadays widespread in critical infrastructures, from oil pipelines to chemical manufacturing plants: an attacker taking control of a SCADA system could cause a plethora of damages, both to the infrastructure but also to people. In this paper we propose a method to detect attacks targeting SCADA systems. We consider a model checking technique: we model time-series logs obtained from SCADA systems into a network of timed automata and, through timed temporal logic, we characterize the behaviour of a SCADA system under attack. Experiments performed on a SCADA gas distribution system confirmed the effectiveness of the proposed method.
File in questo prodotto:
Non ci sono file associati a questo prodotto.