Università degli Studi di Cagliari
partially_open
Poisoning attacks on cyber attack detectors for industrial control systems
Biggio, Battista;
2021-01-01
Abstract
Recently, neural network (NN)-based methods, including autoencoders, have been proposed for the detection of cyber attacks targeting industrial control systems (ICSs). Such detectors are often retrained, using data collected during system operation, to cope with the natural evolution (i.e., concept drift) of the monitored signals. However, by exploiting this mechanism, an attacker can fake the signals provided by corrupted sensors at training time and poison the learning process of the detector such that cyber attacks go undetected at test time. With this research, we are the first to demonstrate such poisoning attacks on ICS cyber attack online NN detectors. We propose two distinct attack algorithms, namely, interpolation- and back-gradient based poisoning, and demonstrate their effectiveness on both synthetic and real-world ICS data. We also discuss and analyze some potential mitigation strategies.
File in questo prodotto:
| File | Dimensione | Formato | |
|---|---|---|---|
| kravchik21-sac-editorial.pdf Solo gestori archivio
Tipologia: versione editoriale
Dimensione 796.92 kB
Formato Adobe PDF
|
796.92 kB | Adobe PDF | Visualizza/Apri Richiedi una copia |
| kravchik21-sac.pdf accesso aperto
Tipologia: versione pre-print
Dimensione 1.4 MB
Formato Adobe PDF
|
1.4 MB | Adobe PDF | Visualizza/Apri |
I documenti in IRIS sono protetti da copyright e tutti i diritti sono riservati, salvo diversa indicazione.