{"title":"流程感知IDS的实际案例研究。","authors":"Verena Menzel, Johann Hurink, Anne Remke","doi":"10.1186/s42162-025-00545-1","DOIUrl":null,"url":null,"abstract":"<div><p>The transition to sustainable energy increasingly relies on robust communication infrastructure to monitor, control, and optimize energy distribution. Supervisory Control and Data Acquisition (SCADA) networks manage these processes, transmitting sensor data and control commands. However, integrating (smart) communication systems into an ageing existing communication infrastructure introduces vulnerabilities to cyber-attacks, such as false data injection and man-in-the-middle attacks. Although recent advancements in Intrusion Detection Systems (IDS) for SCADA networks show potential in detecting domain-specific threats, testing has largely been confined to simulations due to the nature of critical infrastructure. This paper presents two real-world case studies using actual grid data, where a process-aware IDS solution is tailored to specific network topologies. The result effectively detects various cyber-attacks, including those targeting critical devices like transformers. This work marks a crucial step toward practical deployment, emphasizing the need for a gradual transition from simulation to real-world validation to ensure the safety and reliability of critical grid infrastructure.</p></div>","PeriodicalId":538,"journal":{"name":"Energy Informatics","volume":"8 1","pages":""},"PeriodicalIF":0.0000,"publicationDate":"2025-06-17","publicationTypes":"Journal Article","fieldsOfStudy":null,"isOpenAccess":false,"openAccessPdf":"https://www.ncbi.nlm.nih.gov/pmc/articles/PMC12174273/pdf/","citationCount":"0","resultStr":"{\"title\":\"Real-world case studies for a process-aware IDS\",\"authors\":\"Verena Menzel, Johann Hurink, Anne Remke\",\"doi\":\"10.1186/s42162-025-00545-1\",\"DOIUrl\":null,\"url\":null,\"abstract\":\"<div><p>The transition to sustainable energy increasingly relies on robust communication infrastructure to monitor, control, and optimize energy distribution. Supervisory Control and Data Acquisition (SCADA) networks manage these processes, transmitting sensor data and control commands. However, integrating (smart) communication systems into an ageing existing communication infrastructure introduces vulnerabilities to cyber-attacks, such as false data injection and man-in-the-middle attacks. Although recent advancements in Intrusion Detection Systems (IDS) for SCADA networks show potential in detecting domain-specific threats, testing has largely been confined to simulations due to the nature of critical infrastructure. This paper presents two real-world case studies using actual grid data, where a process-aware IDS solution is tailored to specific network topologies. The result effectively detects various cyber-attacks, including those targeting critical devices like transformers. This work marks a crucial step toward practical deployment, emphasizing the need for a gradual transition from simulation to real-world validation to ensure the safety and reliability of critical grid infrastructure.</p></div>\",\"PeriodicalId\":538,\"journal\":{\"name\":\"Energy Informatics\",\"volume\":\"8 1\",\"pages\":\"\"},\"PeriodicalIF\":0.0000,\"publicationDate\":\"2025-06-17\",\"publicationTypes\":\"Journal Article\",\"fieldsOfStudy\":null,\"isOpenAccess\":false,\"openAccessPdf\":\"https://www.ncbi.nlm.nih.gov/pmc/articles/PMC12174273/pdf/\",\"citationCount\":\"0\",\"resultStr\":null,\"platform\":\"Semanticscholar\",\"paperid\":null,\"PeriodicalName\":\"Energy Informatics\",\"FirstCategoryId\":\"1085\",\"ListUrlMain\":\"https://link.springer.com/article/10.1186/s42162-025-00545-1\",\"RegionNum\":0,\"RegionCategory\":null,\"ArticlePicture\":[],\"TitleCN\":null,\"AbstractTextCN\":null,\"PMCID\":null,\"EPubDate\":\"\",\"PubModel\":\"\",\"JCR\":\"Q2\",\"JCRName\":\"Energy\",\"Score\":null,\"Total\":0}","platform":"Semanticscholar","paperid":null,"PeriodicalName":"Energy Informatics","FirstCategoryId":"1085","ListUrlMain":"https://link.springer.com/article/10.1186/s42162-025-00545-1","RegionNum":0,"RegionCategory":null,"ArticlePicture":[],"TitleCN":null,"AbstractTextCN":null,"PMCID":null,"EPubDate":"","PubModel":"","JCR":"Q2","JCRName":"Energy","Score":null,"Total":0}
The transition to sustainable energy increasingly relies on robust communication infrastructure to monitor, control, and optimize energy distribution. Supervisory Control and Data Acquisition (SCADA) networks manage these processes, transmitting sensor data and control commands. However, integrating (smart) communication systems into an ageing existing communication infrastructure introduces vulnerabilities to cyber-attacks, such as false data injection and man-in-the-middle attacks. Although recent advancements in Intrusion Detection Systems (IDS) for SCADA networks show potential in detecting domain-specific threats, testing has largely been confined to simulations due to the nature of critical infrastructure. This paper presents two real-world case studies using actual grid data, where a process-aware IDS solution is tailored to specific network topologies. The result effectively detects various cyber-attacks, including those targeting critical devices like transformers. This work marks a crucial step toward practical deployment, emphasizing the need for a gradual transition from simulation to real-world validation to ensure the safety and reliability of critical grid infrastructure.
求助内容:
应助结果提醒方式:
京公网安备 11010802042870号
