Please use this identifier to cite or link to this item:
http://studentrepo.iium.edu.my/handle/123456789/11959
Title: | Security analysis and performance evaluation of a combined CNN-LSTM with self-similarity and hurst parameter for ICS traffic | Authors: | Babiker, Asaad Balla Fadl elMula | Supervisor: | Mohamed Hadi Habaebi, Ph.D Md. Rafiqul Islam, Ph.D Farah Diyana Abdul Rahman, Ph.D |
Subject: | Supervisory control systems | Year: | 2024 | Publisher: | Kuala Lumpur : Kulliyyah of Engineering, International Islamic University Malaysia, 2024 | Abstract in English: | As the integration of IoT devices with SCADA systems increases, concerns about cyber security have become significant. This thesis addresses the challenge of data imbalance in developing an effective intrusion detection system (IDS) for SCADA systems. To tackle this issue, we employ the DeepInsight package in Python to convert traffic data into grayscale images. Four publicly available SCADA datasets are analyzed using exploratory data analysis (EDA) and principal component analysis (PCA). Our research evaluates two detectors: the first utilizes the Hurst parameter to differentiate between normal and attack image data, while the second employs a state-of-the-art CNN-LSTM algorithm—the Hurst Detector leverages self-similarity to identify abnormal network traffic data in conjunction with the CNN-LSTM model. For feature extraction, we propose a CNN and PCA approach applied to the converted grayscale images of the Morris Power dataset. The model includes input, hidden, and output layers with activation functions, while the RNN LSTM modifies the LSTM, dense, and output layers by incorporating appropriate activation functions. Additional layers for Batch Normalization (BN) and dropout enhance the model's performance. The performance of the detectors is evaluated using standard metrics, including accuracy, precision, recall, and F1-score. Results indicate that the combination of self-similarity Hurst index and Deep Learning (DL) achieves a detection accuracy of 98.2% for attacks, while the combined detectors utilizing CNN-LSTM achieve an accuracy of 99.92%. These findings provide valuable insights for security researchers and practitioners seeking to enhance cyber security in SCADA systems. Through an enhanced approach, this DL model has the potential to strengthen SCADA system security and effectively mitigate cyber attacks. | Call Number: | ed TJ 222 B114S 2024 | Kullliyah: | Kulliyyah of Engineering | Programme: | Master of Science in Engineering | URI: | http://studentrepo.iium.edu.my/handle/123456789/11959 |
Appears in Collections: | KOE Thesis |
Files in This Item:
File | Description | Size | Format | |
---|---|---|---|---|
G2029451Asaadballafadlelmulababiker_SEC.pdf | Full text | 2.2 MB | Adobe PDF | View/Open |
Google ScholarTM
Check
Items in this repository are protected by copyright, with all rights reserved, unless otherwise indicated. Please give due acknowledgement and credits to the original authors and IIUM where applicable. No items shall be used for commercialization purposes except with written consent from the author.