Authors:
Cyntia Vargas Martinez
1
and
Birgit Vogel-Heuser
2
Affiliations:
1
Bosch Rexroth AG, Bgm.-Dr.-Nebel-Str. 2, 97816 Lohr am Main and Germany
;
2
Institute of Automation and Information Systems, Technical University of Munich, Boltzmannstr. 15, 85748 Garching bei München and Germany
Keyword(s):
Information Security, Industrial Automation Systems, Intrusion Detection, Network Security, System Testing, System Validation.
Related
Ontology
Subjects/Areas/Topics:
Critical Infrastructure Protection
;
Information and Systems Security
;
Intrusion Detection & Prevention
;
Network Security
;
Security in Information Systems
;
Security Metrics and Measurement
;
Wireless Network Security
Abstract:
The integration of Intrusion Detection Systems (IDS) in Industrial Automation Systems (IAS) has gained popularity over the past years. This has occurred due to their ability to detect intrusions at a device and network level. In order for these systems to provide effective and reliable protection, they must possess a set of specific properties. These properties are inherent characteristics that depend on the IDS application field, as different fields provide different deployment conditions. Unfortunately, the evaluation and validation of such properties for IAS has proven challenging, as current contributions often follow evaluation and validation approaches from the IT domain that focus solely on the effectiveness of intrusion detection approaches; hence, neglecting other aspects relevant to the industrial domain. This paper addresses this issue by presenting IDS properties derived from trends and characteristics of IAS; as well as a taxonomy of metrics and tests to evaluate and val
idate these properties. This taxonomy provides a foundation from which future IDS contributions for IAS can be improved and reinforced by providing an overview of pertinent metrics and tests.
(More)