SCADA systems are nowadays widespread in critical infrastructures, from oil pipelines to chemical manufacturing plants: an attacker taking control of a SCADA system could cause a plethora of damages, both to the infrastructure but also to people. In this paper we propose a method to detect attacks targeting SCADA systems. We consider a model checking technique: we model time-series logs obtained from SCADA systems into a network of timed automata and, through timed temporal logic, we characterize the behaviour of a SCADA system under attack. Experiments performed on a SCADA gas distribution system confirmed the effectiveness of the proposed method.
Timed Automata Networks for SCADA Attacks Real-Time Mitigation
Mercaldo F.;Santone A.
2022-01-01
Abstract
SCADA systems are nowadays widespread in critical infrastructures, from oil pipelines to chemical manufacturing plants: an attacker taking control of a SCADA system could cause a plethora of damages, both to the infrastructure but also to people. In this paper we propose a method to detect attacks targeting SCADA systems. We consider a model checking technique: we model time-series logs obtained from SCADA systems into a network of timed automata and, through timed temporal logic, we characterize the behaviour of a SCADA system under attack. Experiments performed on a SCADA gas distribution system confirmed the effectiveness of the proposed method.I documenti in IRIS sono protetti da copyright e tutti i diritti sono riservati, salvo diversa indicazione.