Skip to Main content Skip to Navigation

Model-based IDS design pour ICS

Mohamad-Houssein Monzer 1
1 G-SCOP_GCSP - Gestion et Conduite des Systèmes de Production
G-SCOP - Laboratoire des sciences pour la conception, l'optimisation et la production
Abstract : Industrial systems present security risks related to their IT vulnerabilities. These systems, spread over the world, continue to be targets of attacks. While Industrial systems share common vulnerabilities with IT systems, they tend to have more constraints due to the interaction between cyber and physical systems.Intrusion detection systems give visibility to the system and are considered as one of the solutions to detect targeting attacks. Hence, it seems relevant to rely on a physical model of the cyber-physical system to obtain an intrusion detection system (IDS) for industrial systems. Most IDSs are based on rules that define how possible attacks are detected. These rules are generally used to either describe possible attack scenarios on the systems or used to describe the normal system behavior of the system. However, manually creating and maintaining rules for a complex system can prove to be a very tedious and difficult task.This thesis proposes a solution to model ICS and to design specific IDS for industrial systems. A model-based IDS rule generator is also proposed, which converts a system model into anomaly-based IDS rules. Finally, the effectiveness of the generated rules is evaluated.
Document type :
Complete list of metadata
Contributor : Abes Star :  Contact
Submitted on : Friday, March 5, 2021 - 11:43:10 AM
Last modification on : Tuesday, March 9, 2021 - 3:16:17 AM
Long-term archiving on: : Sunday, June 6, 2021 - 6:39:12 PM


Version validated by the jury (STAR)


  • HAL Id : tel-03160499, version 1



Mohamad-Houssein Monzer. Model-based IDS design pour ICS. Automatique / Robotique. Université Grenoble Alpes [2020-..]; Université libanaise, 2020. Français. ⟨NNT : 2020GRALT056⟩. ⟨tel-03160499⟩



Record views


Files downloads