Conference paper Open Access

# An Anomaly Detection Mechanism for IEC 60870-5-104

Panagiotis Radoglou Grammatikis; Panagiotis Sarigiannidis; Antonios Sarigiannidis; Dimitrios Margounakis; Apostolos Tsiakalos; Georgios Efstathopoulos

### Citation Style Language JSON Export

{
"DOI": "10.1109/MOCAST49295.2020.9200285",
"language": "eng",
"author": [
{
},
{
"family": "Panagiotis Sarigiannidis"
},
{
"family": "Antonios Sarigiannidis"
},
{
"family": "Dimitrios Margounakis"
},
{
"family": "Apostolos Tsiakalos"
},
{
"family": "Georgios Efstathopoulos"
}
],
"issued": {
"date-parts": [
[
2020,
9,
18
]
]
},
"abstract": "<p>The transformation of the conventional electricity grid into a new paradigm called smart grid demands the appropriate cybersecurity solutions. In this paper, we focus on the security of the IEC 60870-5-104 (IEC-104) protocol which is commonly used by Supervisory Control and Data Acquisition (SCADA) systems in the energy domain. In particular, after investigating its security issues, we provide a multivariate Intrusion Detection System (IDS) which adopts both access control and outlier detection mechanisms in order to detect timely possible anomalies against IEC-104. The efficiency of the proposed IDS is reflected by the Accuracy and F1 metrics that reach 98% and 87%, respectively.</p>",
"title": "An Anomaly Detection Mechanism for IEC 60870-5-104",
"type": "paper-conference",
"id": "4064667"
}
49
121
views