Detection of Malicious SCADA Communications via Multi-Subspace Feature Selection

Security maintenance of Supervisory Control and Data Acquisition (SCADA) systems has been a point of interest during recent years. Numerous research works have been dedicated to the design of intrusion detection systems for securing SCADA communications. Nevertheless, these data-driven techniques ar...

Full description

Saved in:
Bibliographic Details
Main Authors: Hallaji, Ehsan, Razavi-Far, Roozbeh, Saif, Mehrdad
Format: Conference Proceeding
Language:English
Subjects:
cyberphysical systems
Data models
ensemble learning
Feature extraction
Feature selection
Intrusion detection
Mutual information
Pipelines
Redundancy
SCADA
SCADA systems
supervised learning
Online Access:Request full text
Tags: Add Tag
No Tags, Be the first to tag this record!
Description
Summary:Security maintenance of Supervisory Control and Data Acquisition (SCADA) systems has been a point of interest during recent years. Numerous research works have been dedicated to the design of intrusion detection systems for securing SCADA communications. Nevertheless, these data-driven techniques are usually dependant on the quality of the monitored data. In this work, we propose a novel feature selection approach, called MSFS, to tackle undesirable quality of data caused by feature redundancy. In contrast to most feature selection techniques, the proposed method models each class in a different subspace, where it is optimally discriminated. This has been accomplished by resorting to ensemble learning, which enables the usage of multiple feature sets in the same feature space. The proposed method is then utilized to perform intrusion detection in smaller subspaces, which brings about efficiency and accuracy. Moreover, a comparative study is performed on a number of advanced feature selection algorithms. Furthermore, a dataset obtained from the SCADA system of a gas pipeline is employed to enable a realistic simulation. The results indicate the proposed approach extensively improves the detection performance in terms of classification accuracy and standard deviation.
ISSN:2161-4407
DOI:10.1109/IJCNN48605.2020.9207066