Paper Review: Attacks Against Process Control Systems:Risk Assessment, Detection, and Response

This is a paper review for: Cárdenas, Alvaro A., et al. "Attacks against process control systems: risk assessment, detection, and response." Proceedings of the 6th ACM symposium on information, computer and communications security. 2011.

Summary

The authors were able to detect attacks that manipulate the behavior of a targeted control system. In their research, the authors were not focused on the vulnerabilities’ exploitation methods. Instead, they were focused on the end to end purpose of the attack. They also analyzed the security of their solution to guarantee that it would not put the system in an unwanted state. The authors also studied the number of false alarms and made conclusions on the applicability of their solution to other control systems. They mentioned that nonresilient solutions might not similar positive results.

Things I liked

Things I did not like:

Further research

A study on how anomaly detection can be used for regular IT systems as a final defense system when antivirus and other defenses fail

;