Detection of Malicious SCADA Communications via Multi-Subspace Feature Selection

Security maintenance of Supervisory Control and Data Acquisition (SCADA) systems has been a point of interest during recent years. Numerous research works have been dedicated to the design of intrusion detection systems for securing SCADA communications. Nevertheless, these data-driven techniques are usually dependant on the quality of the monitored data. In this work, we propose a novel feature selection approach, called MSFS, to tackle undesirable quality of data caused by feature redundancy. In contrast to most feature selection techniques, the proposed method models each class in a different subspace, where it is optimally discriminated. This has been accomplished by resorting to ensemble learning, which enables the usage of multiple feature sets in the same feature space. The proposed method is then utilized to perform intrusion detection in smaller subspaces, which brings about efficiency and accuracy. Moreover, a comparative study is performed on a number of advanced feature selection algorithms. Furthermore, a dataset obtained from the SCADA system of a gas pipeline is employed to enable a realistic simulation. The results indicate the proposed approach extensively improves the detection performance in terms of classification accuracy and standard deviation.

[1]  Roozbeh Razavi-Far,et al.  A Hybrid Scheme for Fault Diagnosis with Partially Labeled Sets of Observations , 2017, 2017 16th IEEE International Conference on Machine Learning and Applications (ICMLA).

[2]  Umberto Castellani,et al.  Infinite Latent Feature Selection: A Probabilistic Latent Graph-Based Ranking Approach , 2017, 2017 IEEE International Conference on Computer Vision (ICCV).

[3]  Ming Yang,et al.  Feature Selection Embedded Subspace Clustering , 2016, IEEE Signal Processing Letters.

[4]  Jiawei Han,et al.  Generalized Fisher Score for Feature Selection , 2011, UAI.

[5]  Roberto Battiti,et al.  Using mutual information for selecting features in supervised neural net learning , 1994, IEEE Trans. Neural Networks.

[6]  Anna Diva P. Lotufo,et al.  Fuzzy ARTMAP Neural Network IDS Evaluation applied for real IEEE 802.11w data base , 2018, 2018 International Joint Conference on Neural Networks (IJCNN).

[7]  Donglin Zeng,et al.  Efficient ℓ0 -norm feature selection based on augmented and penalized minimization. , 2018, Statistics in medicine.

[8]  Hiroshi Motoda,et al.  Book Review: Computational Methods of Feature Selection , 2007, The IEEE intelligent informatics bulletin.

[9]  Maryam Farajzadeh-Zanjani,et al.  Dimensionality reduction-based diagnosis of bearing defects in induction motors , 2017, 2017 IEEE International Conference on Systems, Man, and Cybernetics (SMC).

[10]  Alvaro D. Orjuela-Cañón,et al.  Feature extraction analysis using filter banks for faults classification in induction motors , 2018, 2018 International Joint Conference on Neural Networks (IJCNN).

[11]  Enrico Zio,et al.  Optimal detection of new classes of faults by an Invasive Weed Optimization method , 2014, 2014 International Joint Conference on Neural Networks (IJCNN).

[12]  Aixia Guo,et al.  Gene Selection for Cancer Classification using Support Vector Machines , 2014 .

[13]  Deng Cai,et al.  Laplacian Score for Feature Selection , 2005, NIPS.

[14]  Paul S. Bradley,et al.  Feature Selection via Concave Minimization and Support Vector Machines , 1998, ICML.

[15]  Maryam Farajzadeh-Zanjani,et al.  Efficient feature extraction of vibration signals for diagnosing bearing defects in induction motors , 2016, 2016 International Joint Conference on Neural Networks (IJCNN).

[16]  Maryam Farajzadeh-Zanjani,et al.  Correlation Clustering Imputation for Diagnosing Attacks and Faults With Missing Power Grid Data , 2020, IEEE Transactions on Smart Grid.

[17]  Marco Cristani,et al.  Infinite Feature Selection , 2015, 2015 IEEE International Conference on Computer Vision (ICCV).

[18]  Maryam Farajzadeh-Zanjani,et al.  A Semi-Supervised Diagnostic Framework Based on the Surface Estimation of Faulty Distributions , 2019, IEEE Transactions on Industrial Informatics.

[19]  Maryam Farajzadeh-Zanjani,et al.  Efficient sampling techniques for ensemble learning and diagnosing bearing defects under class imbalanced condition , 2016, 2016 IEEE Symposium Series on Computational Intelligence (SSCI).

[20]  Mark A. Buckner,et al.  An Evaluation of Machine Learning Methods to Detect Malicious SCADA Communications , 2013, 2013 12th International Conference on Machine Learning and Applications.

[21]  Wei Gao,et al.  A control system testbed to validate critical infrastructure protection concepts , 2011, Int. J. Crit. Infrastructure Prot..

[22]  Zi Huang,et al.  Proceedings of the Twenty-Second International Joint Conference on Artificial Intelligence ℓ2,1-Norm Regularized Discriminative Feature Selection for Unsupervised Learning , 2022 .

[23]  Simone Melzi,et al.  Ranking to Learn: - Feature Ranking and Selection via Eigenvector Centrality , 2016, NFMCP@PKDD/ECML.

[24]  Shahin Hedayati Kia,et al.  Information Fusion and Semi-Supervised Deep Learning Scheme for Diagnosing Gear Faults in Induction Machine Systems , 2019, IEEE Transactions on Industrial Electronics.

[25]  Gregory Ditzler,et al.  A Novelty Detector and Extreme Verification Latency Model for Nonstationary Environments , 2019, IEEE Transactions on Industrial Electronics.

[26]  Maryam Farajzadeh-Zanjani,et al.  A Critical Study on the Importance of Feature Extraction and Selection for Diagnosing Bearing Defects , 2018, 2018 IEEE 61st International Midwest Symposium on Circuits and Systems (MWSCAS).

[27]  Zhi Xue,et al.  Character-Level Intrusion Detection Based On Convolutional Neural Networks , 2018, 2018 International Joint Conference on Neural Networks (IJCNN).

[28]  Fuhui Long,et al.  Feature selection based on mutual information criteria of max-dependency, max-relevance, and min-redundancy , 2003, IEEE Transactions on Pattern Analysis and Machine Intelligence.

[29]  Qinghua Hu,et al.  Subspace clustering guided unsupervised feature selection , 2017, Pattern Recognit..