Challenges in machine learning based approaches for real-time anomaly detection in industrial control systems

Ahmed, Chuadhry Mujeeb and M R, Gauthama Raman and Mathur, Aditya P.; (2020) Challenges in machine learning based approaches for real-time anomaly detection in industrial control systems. In: Proceedings of the 6th ACM on Cyber-Physical System Security Workshop. Association for Computing Machinery, New York, USA, 23–29. ISBN 9781450376082

[thumbnail of Ahmed-etal-CPSS2020-Challenges-in-machine-learning-based-approaches-for-real-time-anomaly-detection]
Preview
Text (Ahmed-etal-CPSS2020-Challenges-in-machine-learning-based-approaches-for-real-time-anomaly-detection)
Ahmed_etal_CPSS2020_Challenges_in_machine_learning_based_approaches_for_real_time_anomaly_detection.pdf
Accepted Author Manuscript

Download (1MB)| Preview

    Abstract

    Data-centric approaches are becoming increasingly common in the creation of defense mechanisms for critical infrastructure such as the electric power grid and water treatment plants. Such approaches often use well-known methods from machine learning and system identification, i.e., the Multi-Layer Perceptron, Convolutional Neural Network, and Deep Auto Encoders to create process anomaly detectors. Such detectors are then evaluated using data generated from an operational plant or a simulator; rarely is the assessment conducted in real time on a live plant. Regardless of the method to create an anomaly detector, and the data used for performance evaluation, there remain significant challenges that ought to be overcome before such detectors can be deployed with confidence in city-scale plants or large electric power grids. This position paper enumerates such challenges that the authors have faced when creating data-centric anomaly detectors and using them in a live plant.