2020 IEEE-HYDCON
A Semi-Supervised Approach for Detection of
SCADA Attacks in Gas Pipeline Control Systems
Chaitali Joshi, Janavi Khochare, Jash Rathod, Faruk Kazi
Veermata Jijabai Technological Institute
Mumbai, India 400019
cpjoshi
[email protected]
, jskhochare
[email protected]
, jsrathod
[email protected]
,
[email protected]
Abstract—The imperative role played by Supervisory Control
And Data Acquisition (SCADA) systems in providing a central-
ized control for modern infrastructure have made them into
one of the most desired targets for malicious attackers owing
to its rapid evolution as well as widespread adoption of these
systems. To counter these attacks, it is necessary that more robust
approaches be adopted. The advent of Machine Learning has
shown great potential for its usage along with existing Intrusion
Detection Systems (IDS). This paper presents a novel approach
to detect malicious behaviour in SCADA data used to control gas
pipeline system. As most of the data available in this industry
are unsupervised, this paper uses an approach that makes use
of a Semi-Supervised Deep Learning architecture - Autoencoder,
that is believed to be most suited for this type of tasks. The
effectiveness of this deep learning network is due to the fact that
it reconstructs the input as the output and in the training process
learns only the most important features of normal observations
that are representative of the input data; thus malicious data is
easily detected due to a high reconstruction error. The proposed
algorithm is validated on gas pipeline control system dataset and
found to give excellent results in detection.
Index Terms—SCADA, Machine Learning, Autoencoder, In-
trusion Detection, Gas Pipelines
I. I NTRODUCTION
Various industrial processes such as oil and gas pipelines,
water distribution, electrical power grids, manufacturing,
wastewater, recycling, etc are managed and supervised by
Supervisory Control and Data Acquisition (SCADA) systems
which are Industrial Control Systems (ICS). SCADA serves
as the medium to monitor and uphold efficiency and enable
smarter decisions. SCADA systems facilitate the process of
accessing real-time data at a particular plant from anywhere
in the world. Businesses, organizations, governments, and
individuals can make data-driven decisions by effectively using
and accessing this real-time information. The components
of a basic SCADA system comprise of Human-Machine
Interface, Supervisory System, Remote Terminal Units, Pro-
grammable Logic Controllers (PLCs), Communication Infras-
tructure, SCADA Programming [1].
SCADA systems that link facilities like gas pipeline systems
might have been constructed keeping in view the above-
mentioned advantages, but these systems are not always
shielded from attacks. It is evident that SCADA systems
play a valuable role in industries and hence are vulnerable
to cyber-attacks as discussed in [2], [3]. In the absence of
necessary security measures, cyber attacks on SCADA systems
978-1-7281-4994-3/20/$31.00
Authorized ©2020 of
licensed use limited to: Auckland University IEEE
Technology. Downloaded on December 24,2020 at 15:24:05 UTC from IEEE Xplore. Restrictions apply.
can cause severe damage to critical systems such as oil and gas
pipelines, power grids, etc. Another key concern is the capital
expenditure as SCADA systems are worth tens of thousands
to millions of dollars and can prove costly for the organization
and national security. Considering the critical role that SCADA
systems play in various industries, it is of utmost importance
to implement security measures in order to prevent attacks on
these systems which may affect the various entities dependent
on them. Hence to protect these systems and all the entities
dependent upon them, it is inevitable that powerful security
measures are incorporated to protect SCADA systems from the
disturbances caused by external or internal errors and attacks.
The solution to the presented scenario is provided by the
Intrusion Detection Systems (IDS) as in [4], [5] which prevents
the above-mentioned issues from affecting the organization.
The task of intrusion detection involves the monitoring of the
systems and interpreting the results obtained to determine their
security status. A robust IDS should be able to detect as many
attacks as possible and distinguish between them correctly
in order to safeguard SCADA. Another important metric that
needs to be considered is the number of false alarms that the
IDS generates - the lesser is the number of such alarms, more
is the reliability of the system. The extent of damage caused
is a major concern; hence detecting attacks within a specific
time period is equally important.
The prevalent techniques for analyzing the Intrusion De-
tection Systems (IDS) are deployed by humans who analyze
the alerts and then decide on the further course of action.
This involves critical decision making as the number of alerts
generated could be quite large and the conditions under which
the data is collected are dynamic. A possible solution to the
above-listed problems is presented by machine learning [6]
and neural networks [7] as they have the capability to gather
knowledge about the new data and make predictions about new
data based on the knowledge gained from the previous data.
This reduces the time and energy which is being invested for
intrusion detection. Machine learning techniques prove to be
more versatile for intrusion detection than human analysts as
they single-handedly perform the various security tasks which
involve detection as well as monitoring more efficiently.
Artificial Intelligence (AI) and machine learning (ML) have
shown potential for its use in a wide variety of domains
like share price prediction [8] and disease detection in crops
[9]. These approaches have also been found to offer an
 2020 IEEE-HYDCON
edge in numerous security applications over the prevalent
machine-implemented variants. Attempts have been made in
which a non-parametric and semi-supervised learning algo-
rithm has been implemented for the problem of intrusion in
the network [4]. It claims to provide significant improvements
when compared to anomaly detection and supervised learning
approaches. Another work describes an approach that proposed
the development of machine learning algorithms like KNN,
Naive Bayes, Logistic Regression, Decision Tree, and Random
Forest [10]. These models were tested online as well as offline
networks for the detection of cyberattacks on a SCADA system
testbed.
The task of finding attacks in SCADA system data is quite
different from other applications of machine learning, making
it difficult to employ machine learning approaches for the
detection of malicious activity [11]. With advancements in
research and technology, modern systems have crossed this
hurdle. The versatility of these modern systems is due to the
fact that they are able to learn from the previously fed data
and use this information in the future when confronted by a
similar condition. Thus, these systems can be implemented
in the various domains of security in order to prevent cyber-
attacks.
Attempts have been made to implement machine learning
techniques for fault detection in SCADA systems. This work
intends to progress the prior work by using much more
robust algorithms and more novel techniques in an attempt to
catch hold of malicious SCADA activities. There are several
approaches that one can opt for when it comes to using how
one can train a machine learning model that can be most
efficient in detecting the faults. There has been prior work
done by implementing Supervised Learning, Unsupervised
Learning, and Semi-Supervised Learning approaches.
As in [10], [12], [13], various machine learning algorithms
like Naive Bayes, Support Vector Machines and Random For-
est have been implemented to achieve this goal. It makes use
of only Supervised Learning algorithms. Supervised Learning
methods have the ability to be much more accurate than
compared to Unsupervised Learning methods, owing to the
fact that it requires prior knowledge of what the outputs (or
results) should be. In this approach, the algorithm takes the
input and predicts the output which is then compared with
the true output. Hence, this approach generally produces good
results but also has the ability to produce undesirable results
if tested on the sort or category of data that it might not
have ever encountered while training before. This scenario
is very common in Intrusion Detection Systems (IDS). Also,
as Supervised Learning cannot be used for tasks that involve
real-time data analysis such as ours, it is better than the
Unsupervised or Semi-Supervised Learning approach to be
adopted.
For the past few years, work has been done using semi-
supervised learning to provide benefits and results in this
area. As discussed in [4], especially for IDS, semi-supervised
approaches have shown signs of being able to achieve excep-
tional results. A semi-supervised approach involves the usage
Authorized licensed use limited to: Auckland University of Technology. Downloaded on December 24,2020 at 15:24:05 UTC from IEEE Xplore. Restrictions apply.
of both labeled and unlabeled data. This approach proves to be
a better choice as it possesses the ability to be actually put to
use in industry and also augment with the existing approaches
in the industry, where real-time data can be fed to obtain real-
time results, unlike supervised techniques. There have been
attempts using various statistical and basic machine learning
algorithms [14] and also complex machine learning and deep
learning approaches [15] for the task of fault detection. As
concluded in [15], it can be observed that the use of Deep
Learning algorithms for this purpose proves to be the best fit
for real-time fault diagnostics. Hence, our work aims at using
a semi-supervised learning technique by implementing a deep
neural network architecture that suits best for the type of task
at hand.
The main contributions of this paper are –
• developing an Autoencoder network for providing a Deep
Learning approach to anomaly-based Intrusion Detection
System
• providing a solution for identification of a malicious
SCADA attack in a gas pipeline control system
• extending the approach for determining the class of attack
for greater insights
The remainder of the paper is structured as follows. In
Section II various terminologies related to the experiments in
this paper have been explained. Section III gives an overview
of the experimental data used, the research problem and the
approach to solve it. In section IV, the results obtained on
applying the techniques described in this paper have been
described. Section V compares approach taken in this paper
with the existing work. Finally, Section VI concludes the paper
and suggests directions for future research.
II. P RELIMINARIES
A. Autoencoders
Autoencoders (AE) is a family of neural networks for which
the output is similar to the input as described in [16]. The
input is first compressed into a latent-space representation and
this representation is decompressed to obtain an output [17].
Autoencoders are based on the idea of data compression and
work on data which is similar to the one on which the network
has been previously trained. It needs to be taken into account
that an autoencoder has to be trained for specialized tasks
only, that is an AE trained on Dataset A cannot be used for
classification tasks of Dataset B, where Dataset A and Dataset
B are not of the same kind. The functions are also lossy, i.e,
the outputs from the decoder will be degraded compared to
the data which is input to the encoder.
Autoencoder is an algorithm that understands the pattern
of the input data and based on the trends observed is able to
distinguish between input and the test data. The key feature of
autoencoders is that the hidden layer is smaller (lesser number
of nodes) than the size of the input and output layer and both
layers are the same size. The hidden layer is a compressed
representation, and involve two sets of weights (and biases)
that encode input data into the compressed representation and
 2020 IEEE-HYDCON

Relu : σ(x) = max(0, x) (5)

When we train our autoencoder, we try to minimize the

reconstruction error function with respect to θ and θ0 :

n
1X
θ∗ , θ0∗ = arg min ε(xi , x0i )
θ,θ 0 n i=1
n (6)
1X
= arg min ε(xi , gθ0 (fθ (x0i )))
Fig. 1: Autoencoder architecture θ,θ 0 n i=1

The implementation of the training process using the above

decode compressed representation into a form which is similar
to the input data. The Euclidean distance loss is called the
reconstruction error. This error is an indicator of how close
the output is to the input - the smaller the error, the more is
the similarity of output with input. A perfect reconstruction is
not obtained as the number of neurons in the hidden layer is
less than the number of neurons in the input layer, but the best
possible reconstruction is expected of the parameters [18].
As in [19], [20], let us consider {x1 , x2 , x3 , ..., xn } to be
our training set, each being a d dimensional vector (xi ∈ Rd )
and let {x01 , x02 , x03 , ..., x0n } be the reconstructed outputs. The
reconstruction error is defined as:
d logistic regression generates outputs as probabilities in the
X
ε(xi , x0i ) = (xi − x0i )2
j=1
The input vectors (xi ∈ Rd ) are compressed into p(p <
d) neurons which form the hidden layer of the encoder. The
activation of the neuron i in the hidden layer is given by:
n The implementation of a softmax classifier involves using a
X
hi = fθ (x) = σ( Wijinput xj + binput
i )
j=1
where x is the input vector, θ is the parameters
{W input , binput }, W represents the encoder weight matrix of
size p × d and b is a bias vector of size p respectively. Thus,
smaller dimensional vector is obtained by encoding the input
vector.
The obtained hidden representation hi is then decoded back
to the initial input space Rd . The function for this decoder
neural network is as follows:
Xn
x0i = gθ0 (h) = σ( Wijhidden hj + bhidden
i )
j=1
The parameters of the decoder is θ0 = {W input , binput }.
The function σ, used in Eq. 2 and Eq. 3, can be a linear or
nonlinear activation function. In our model, a tanh and relu
functions are used and computed as follows:
ex − e−x
T anh : σ(x) =
ex + e−x
equations is followed by feeding test data to obtain the values
of reconstruction errors for each sample in the test dataset. The
following rule can be used to distinguish between an attack
and a normal case:
(
normal if εi < λ
c(xi ) = (7)
malicious if εi > λ
B. Softmax Classifier
The intention behind using the softmax classifier is to
implement the task of multi-class classification. Just like
case of binary classification, the softmax classifier assigns
(1)
decimal probabilities to each of the classes in a multiclass
classification problem. It can be said that the softmax classifier
is a generalization of the binary form of logistic regression.
The probabilities so generated by the normalization and ex-
ponentiation lie in the range of 0 to 1 and must add up to 1.
neural network just before the output layer. The key feature
(2)
of the classifier being discussed is that the number of nodes
is the same as those in the output layer. For k classes and
i = 0, 1, 2, ...k, mathematical representation of Softmax is
given as Eq. 8.
exi
Sof tmax(xi ) = k
(8)
P
exj
j=0
C. Fine Tuning
(3) The purpose underlying the use of fine-tuning is to gen-
erate better performing models. For the model presented in
this paper, fine-tuning has been performed using supervised
learning. The reason for employing supervised learning is that
the target classes are known. The network is trained using
training data with a method similar to the training of neural
networks. The main idea which needs to be considered is that
only the encoder part of the autoencoders has been used to
(4) carry out the training process

Authorized licensed use limited to: Auckland University of Technology. Downloaded on December 24,2020 at 15:24:05 UTC from IEEE Xplore. Restrictions apply.
 2020 IEEE-HYDCON

D. Confusion Matrix TABLE I: Two-Class Confusion Matrix

A Confusion Matrix is a table in which the predictions Predicted
made by a machine learning model are tabulated. Table I is a Malicious Normal
confusion matrix for Binary classification. Depending on the Malicious True Positive (TP) False Negative (FN)
Actual
Normal False Positive (FP) True Negative (TN)
predicted value and the actual value, the observation is put into
the respective cell. The performance of the machine learning
model is commonly evaluated using data in the matrix. TABLE II: Dataset feature description [12]
Entries in the matrix have the following meaning in the
context of study at hand: Feature Name Description
Command/Response Specifies data is of type “command” or
• TP is the number of observations that were predicted to
“response”
be an attack and were actually an attack. Control Mode Gives auto control mode status of RTU unit
• FN is the number of observations that were predicted to Control Scheme Indicates if the control is achieved by the use
of solenoid
be normal but were actually an attack. Data Length Length of the data of type “command” or
• FP is the number of observations that were predicted to “response”
be an attack but were actually normal. Invalid Data Length Unacceptable size of data element
• TN is the number of observations that were predicted to Invalid Function Value giving indication of validity of function
Code code
be normal and were actually normal. Pipeline Pressure Denotes pipeline pressure of the gas pipeline
These four parameters can be used to obtain a set of per- (PSI) (measured in pounds per square inch)
Pump State Variable indicating state of pump
formance metrics. Of all the performance metrics, Precision,
Setpoint Descriptive of the setpoint value
Recall, and F1 Score will be used in this paper for evaluation Solenoid State Variable indicating state of solenoid
of our results and comparison with the existing work. Each of
these metrics can be evaluated using the formulae:
TP • Burst Values - Multiple values of pipeline pressure are
P recision = (9)
TP + FP sent at a high frequency.
TP • Fast Change - The parameters sent change very fast as
Recall = (10) compared to the rate at which they change during a
TP + FN
normal instance.
2 × P recision × Recall
F 1 Score = (11) • Single Data Injection - An artificial response in which the
P recision + Recall value is changed to cheat the control loop is sent after an
III. M ETHODOLOGY actual response
This section highlights our way of addressing the machine • Slow Change - The parameters sent change slowly as
learning algorithms for classifying the disturbances in the compared to the rate at which they change during a
system. Here, we describe the deep learning method used and normal instance.
its advantages over the other traditional methods. • Value Wave Injection - Multiple values of oscillating
pipeline pressure are sent.
A. Experimental Data
• Setpoint Value Injection – The false pipeline pressure
The data for the experiment was collected from a Gas values are sent which are equal to setpoint.
Pipeline System, Mississippi State University’s Critical Infras-
During a command injection attack, commands issued are
tructure Protection Center [21]. The dataset comprises samples
changed in order to influence the gas pipeline control. The
of Command Injection attacks, Data Injection attacks, and
four types of command injection attacks are:
normal instances i.e. cases that do not represent an attack. The
data generated for the experiments as mentioned in [12] was • Address Scan – Data with a variety of addresses is sent
used as the dataset for testing the algorithm mentioned in the to scan and understand the system.
Methodology. The various features as mentioned in [12] which • Function Scan – Used to obtain the function codes.
have been considered for drawing inferences are included in • Illegal Setpoint – The values of PSI and setpoint are
Table II. modified and usually set at a very high value.
The data used in the experiments as mentioned in [12] • Illegal PID Command – The functioning of the control
involves the Data/Response Injection attacks with the intent of loop is modified by changing its parameters.
manipulating PLC responses to cheat an analyst or a security The aim of this work is to emphasize the versatility of
system and keep them from knowing the original state of the semi-supervised learning algorithms, especially autoencoders
system. The data injection attacks have been categorized into in the classification tasks in this domain. The metrics used to
7 types according to how each influences the PLC response compare the performance of autoencoders as opposed to that
[12]: of traditional supervised learning algorithms are precision and
• Negative Values - Since pipeline pressure is non-negative, recall. The proposed solution targets at correctly classifying
the negative values injected are invalid. an observation as normal or malicious as well as obtaining

Authorized licensed use limited to: Auckland University of Technology. Downloaded on December 24,2020 at 15:24:05 UTC from IEEE Xplore. Restrictions apply.
 2020 IEEE-HYDCON
the type of attack that has occurred, if malicious. Thus, the
problem has been treated as being both a binary as well as
a multiclass classification problem. The greatest merit of this
approach is that a malicious attack type that is identified by
multiclass methodology can contribute towards taking coun-
termeasures quicker or troubleshooting issues in the system if
any.
The two methods of detection in an IDS include misuse
detection and anomaly detection. Anomaly detection entails
detecting the patterns of normal cases first and then differen-
tiating the anomalous or cases of attack from the normal ones
when a deviation from normal behavior is observed. Since the
approach adopted in this paper involves using Autoencoders
for detecting anomalous cases using the properties of normal
cases, it can be classified as being an anomaly detection
problem.
Machine learning can be subdivided into three main tech-
niques: Supervised, Semi-supervised, and Unsupervised. The
difference between these techniques arises on the basis of
whether the target variable which is also called a label, is
provided or is supposed to be determined. In Supervised
learning, entire data is labeled so the main aim in Supervised
learning is to develop a model that best approximates how
the input and the output are related to each other. Whereas in
Semi-supervised learning [22], [23], only limited amount of
data is labeled and the majority of data is unlabeled data, this
labeled data is used as the training data; based on this training
data the model learns to analyze the unlabelled data and then
unlabelled data is predicted (labeled) in the testing period.
Lastly in Unsupervised learning the entire data is unlabelled,
so the main task in Unsupervised learning is to understand
the pattern of the data [24]. The machine learns to group the
unsorted data on the basis of the resemblance, patterns, and
variations with the prior training data.
A majority of real-world datasets available in this domain
are unsupervised [24] or semi-supervised [22], [23] and hence,
using autoencoders which can be treated as a semi-supervised
learning algorithm is a suitable approach to work on such
datasets. As mentioned above in semi-supervised learning,
very limited labeled data and the majority of unlabeled data
is available, the model is trained on labeled data such that
the trained model is used to label the unlabelled data. It
is much more convenient to obtain unlabeled data from a
reliable source rather than labeled data which involves human
interference, this can be noted as a crucial difference between
supervised and unsupervised techniques. In the world of
growing data, it is very difficult to manually label each and
every data for the algorithm to train and so shifting towards
semi-supervised and unsupervised can be beneficial for the
future.
It is also necessary that all the results are obtained in
real-time. Supervised and unsupervised learning algorithms
have been found to be less effective in intrusion detection
scenarios [25]. Also a case of attack is a rare event i.e.
the number of such instances in the dataset is less. When
a supervised learning algorithm is used, it may be possible
Authorized licensed use limited to: Auckland University of Technology. Downloaded on December 24,2020 at 15:24:05 UTC from IEEE Xplore. Restrictions apply.
that the algorithm may consider instances of attack as being
noise and ignore such examples. As a result, we may end up
having very less or no case of intrusion, with the examples
being discarded as noise or being misclassified as being
instances of normal behavior. Either way may prove to be
very harmful for infrastructures as important as SCADA.
In semi-supervised techniques this may not be the case as
the anomalous cases may not be straight away discarded as
being noise but may be considered as deviations from normal
behavior and such activity may be effectively detected. This
serves as the principal advantage of semi-supervised learning
techniques over supervised learning techniques.
B. Data Segregation
The dataset consists of column ‘Label’ which defines the
different types of data injection attacks. The rows labeled
‘normal’ are treated as an instance of the normal operating
conditions while others are treated as attacks in the case of
binary classification. For multiclass classification, each type
of attack and normal data are treated as a separate class.
C. Classification Technique
Fig. 2 shows the proposed methodology.
1) Binary Classification: The data obtained by binary data
segregation was fed as an input to the autoencoder as men-
tioned in Fig. 3. The Autoencoder will ignore the instances
labeled as malicious, and train only on the normal instances.
The Autoencoder has now learned the features of the normal
instances. As the Autoencoder is trained, now it will be able to
predict any new data that is a part of normal instances as they
all have the same type of distribution and so the reconstruction
error will be negligible. If we try to reconstruct from the
malicious instances, the Autoencoder will struggle. This will
make the reconstruction error high during the process. We
can catch such high reconstruction errors and label them as
an instance of malicious data [26], [27]. This procedure is
similar and contributes towards anomaly detection methods as
in [28]–[31].
2) Multiclass Classification: As described in [18], [32],
classification is done using an autoencoder along with a Deep
Neural Network (DNN) (Fig. 6). The DNN is so constructed as
to contain a Stacked Autoencoder (SAE) [33] and a Softmax
layer (Fig. 5). The training data is input to the first autoencoder
and it tries to reconstruct the input as described above. The
output of this autoencoder is given as an input to the second
autoencoder (Fig. 4) and similarly tries to reconstruct the input.
The output of this layer is then fed to a softmax classifier layer
for training with original labels being the target vector. To
improve the performance of DNN, fine-tuning is implemented,
which is carried out in a supervised manner by retraining the
network with training data.
IV. R ESULTS
In this section, we have presented the results obtained after
applying autoencoders to classify the given instances as normal
or attack. The results have been obtained in the form of
 2020 IEEE-HYDCON

Fig. 3: Autoencoder 1

Fig. 4: Autoencoder 2

Fig. 2: Attack detection methodology

Fig. 5: Softmax

TABLE III: Distribution of Data

Command Injection Response Injection

Category Dataset Instances Dataset Instances
Normal Normal 28086 Normal 16510

Malicious Address Scan 2 Burst 217

Function Scan 9 Fast 225
Illegal Setpoint 197 Negative 119
Illegal PID 49 Setpoint 171
Single 33
Slow 306
Wave 253

Fig. 6: DNN

Authorized licensed use limited to: Auckland University of Technology. Downloaded on December 24,2020 at 15:24:05 UTC from IEEE Xplore. Restrictions apply.
 2020 IEEE-HYDCON
Precision, Recall, and F1 score on applying autoencoders for
both binary and multi-class classification.
A. Command Injection Results
Autoencoder achieved a Recall, Precision, and hence F1
Score value of 1.00 for all the classes of multiclass dataset.
This implies that all the attacks along with their types were
correctly captured. Table IV shows the results for the com-
mand injection binary classification. Again, the value of 1.00
was achieved for Recall, Precision, and hence F1 Score,
indicating that every observation that the autoencoder was fed
was correctly classified as being normal or malicious. Thus
from the obtained results, we can conclude that autoencoders
have the ability to produce exceptional results to catch hold
of Command Injection attacks.
B. Response Injection Results
Fig. 7 shows the Response Injection results for multiclass
classification. Autoencoders achieved a Recall, Precision, and
F1 Score value of 1.00 for most of the classes but values for
Setpoint and Single were around 0.98 for each metric that was
calculated, no metric being less than 0.96.
Table V shows the results for the Response Injection Binary
Classification. A value of 1.00 was achieved for Precision
whereas the value degrades for the metrics Recall and thus
F1 Score.
TABLE IV: Command Injection Binary Classification Results
Command Injection Binary Classification
Measures Results
Precision 1.00
Recall 1.00
F1 Score 1.00
TABLE V: Response Injection Binary Classification Results
Response Injection Binary Classification
Measures Results
Precision 1.00
Recall 0.11
F1 Score 0.20
Fig. 7: Response Injection Multiclass Classification Results
Authorized licensed use limited to: Auckland University of Technology. Downloaded on December 24,2020 at 15:24:05 UTC from IEEE Xplore. Restrictions apply.
V. C OMPARISION W ITH E XISTING W ORK
In this section, a comparison between the results obtained
by the method suggested in this paper and those obtained
in [12] has been presented. The results obtained for binary
classification as well as multiclass classification in Command
Injection instances are unity Precision and Recall which are
more desirable than those obtained by approach suggested by
[12]. The result obtained for binary classification in Response
Injection instances is at par with the results obtained by
prior work. The values of metrics obtained for multiclass
classification in Response Injection instances are above 0.97
which outperforms the results achieved by the existing work.
Thus, on comparison of results obtained by methods in
[12] with the results achieved by the approach suggested
in this paper, it is promised that an autoencoder network
surpasses the performance of traditional methods and novice
machine learning algorithms. By extension, this serves as
proof that semi-supervised and unsupervised approaches will
definitely outperform supervised approaches, given that robust
data preprocessing and feature engineering has been done.
VI. C ONCLUSION
SCADA systems play a valuable role and hence are vulner-
able to cyber-attacks, so in order to protect these systems,
Intrusion Detection Systems (IDS) comes in the scenario,
which helps in detecting and preventing attacks from affecting
the organization. This paper presented an advanced machine
learning approach that can be augmented along with the
existing techniques applied in these systems by implementing
a Semi-Supervised Autoencoder network that specializes in
detecting anomalous behavior of malicious observation.
From the results mentioned above, the autoencoder model
surpasses the machine learning algorithms implemented in
prior work [12]. In a world full of growing unstructured and
unsupervised data, supervised machine learning algorithms
have shown to perform poorly, so it has become quite nec-
essary to move towards Semi-Supervised and Unsupervised
approaches that keep performing better and better with the
increase in the size of data as in the real-world scenarios.
In order to better maintain and improve our Intrusion De-
tection Systems which employ machine learning approaches,
it becomes crucial to answer the question as to why the model
predicted an observation as normal or malicious. Hence, future
directions of this work aim at interpreting the predictions made
by the Autoencoder model using sophisticated interpretable
machine learning techniques. This will help us gain better
insights about our model as well as the nature of attacks.
R EFERENCES
[1] Y. Zhang, L. Wang, Y. Xiang, and C. Ten, “Power System Reliability
Evaluation With SCADA Cybersecurity Considerations,” IEEE Trans-
actions on Smart Grid, vol. 6, no. 4, pp. 1707–1721, Jul. 2015, doi:
10.1109/TSG.2015.2396994.
[2] Y. Zhang, Y. Xiang, and L. Wang, “Power System Reliability As-
sessment Incorporating Cyber Attacks Against Wind Farm Energy
Management Systems,” IEEE Transactions on Smart Grid, vol. 8, no.
5, pp. 2343–2357, Sep. 2017, doi: 10.1109/TSG.2016.2523515.
 2020 IEEE-HYDCON
[3] M. Zolanvari, M. A. Teixeira, L. Gupta, K. M. Khan, and R. Jain,
“Machine Learning-Based Network Vulnerability Analysis of Indus-
trial Internet of Things,” IEEE Internet Things J., vol. 6, no. 4, pp.
6822–6834, Aug. 2019, doi: 10.1109/JIOT.2019.2912022.
[4] C. T. Symons and J. M. Beaver, “Nonparametric semi-supervised learn-
ing for network intrusion detection: combining performance improve-
ments with realistic in-situ training,” in Proceedings of the 5th ACM
workshop on Security and artificial intelligence - AISec ’12, Raleigh,
North Carolina, USA, 2012, p. 49, doi: 10.1145/2381896.2381905.
[5] S. L. P. Yasakethu and J. Jiang, “Intrusion Detection via Machine Learn-
ing for SCADA System Protection,” presented at the 1st International
Symposium for ICS SCADA Cyber Security Research 2013 (ICS-CSR
2013), Sep. 2013, doi: 10.14236/ewic/ICSCSR2013.12.
[6] A. F. S. Prisco and M. J. Freddy Duitama, “Intrusion detection system
for SCADA platforms through machine learning algorithms,” in 2017
IEEE Colombian Conference on Communications and Computing (COL-
COM), Cartagena, Colombia, Aug. 2017, pp. 1–6, doi: 10.1109/ColCom-
Con.2017.8088210.
[7] H. Yang, L. Cheng, and M. C. Chuah, “Deep-Learning-Based Network
Intrusion Detection for SCADA Systems,” in 2019 IEEE Conference on
Communications and Network Security (CNS), Jun. 2019, pp. 1–7, doi:
10.1109/CNS.2019.8802785.
[8] A. K. Goel, R. Chakraborty, M. Agarwal, Md. D. Ansari, S. K.
Gupta, and D. Garg, “Profit or Loss: A Long Short Term Mem-
ory based model for the Prediction of share price of DLF group
in India,” in 2019 IEEE 9th International Conference on Advanced
Computing (IACC), Tiruchirappalli, India, Dec. 2019, pp. 120–124, doi:
10.1109/IACC48062.2019.8971601.
[9] M. Agarwal, V. K. Bohat, Mohd. D. Ansari, A. Sinha, S. Kr. Gupta,
and D. Garg, “A Convolution Neural Network based approach to detect
the disease in Corn Crop,” in 2019 IEEE 9th International Conference
on Advanced Computing (IACC), Tiruchirappalli, India, Dec. 2019, pp.
176–181, doi: 10.1109/IACC48062.2019.8971602.
[10] M. Teixeira, T. Salman, M. Zolanvari, R. Jain, N. Meskin, and M.
Samaka, “SCADA System Testbed for Cybersecurity Research Using
Machine Learning Approach,” Future Internet, vol. 10, no. 8, p. 76,
Aug. 2018, doi: 10.3390/fi10080076.
[11] R. Sommer and V. Paxson, “Outside the Closed World: On Using
Machine Learning for Network Intrusion Detection,” in 2010 IEEE
Symposium on Security and Privacy, Oakland, CA, USA, 2010, pp.
305–316, doi: 10.1109/SP.2010.25.
[12] J. M. Beaver, R. C. Borges-Hink, and M. A. Buckner, “An Eval-
uation of Machine Learning Methods to Detect Malicious SCADA
Communications,” in 2013 12th International Conference on Machine
Learning and Applications, Miami, FL, USA, Dec. 2013, pp. 54–59,
doi: 10.1109/ICMLA.2013.105.
[13] R. C. Borges Hink, J. M. Beaver, M. A. Buckner, T. Morris, U. Adhikari,
and S. Pan, “Machine learning for power system disturbance and cyber-
attack discrimination,” in 2014 7th International Symposium on Resilient
Control Systems (ISRCS), Denver, CO, USA, Aug. 2014, pp. 1–8, doi:
10.1109/ISRCS.2014.6900095.
[14] V. L. Do, “Statistical detection and isolation of cyber-physical attacks
on SCADA systems,” in IECON 2017 - 43rd Annual Conference of the
IEEE Industrial Electronics Society, 2017, pp. 3524–3529.
[15] S. Zhang, S. Zhang, B. Wang, and T. G. Habetler, “Deep Learn-
ing Algorithms for Bearing Fault Diagnostics—A Comprehensive Re-
view,” IEEE Access, vol. 8, pp. 29857–29881, 2020, doi: 10.1109/AC-
CESS.2020.2972859.
[16] I. Goodfellow, Y. Bengio, and A. Courville, Deep Learning. MIT Press,
2016.
[17] Y. Lin and J. Wang, “Probabilistic Deep Autoencoder for Power System
Measurement Outlier Detection and Reconstruction,” IEEE Transac-
tions on Smart Grid, vol. 11, no. 2, pp. 1796–1798, Mar. 2020, doi:
10.1109/TSG.2019.2937043.
[18] H. I. Choi,“ Lectures on Machine Learning (Fall 2017), Lecture 16:
Autoencoders, Seoul National University”.
[19] Z. Chen, C. K. Yeo, B. S. Lee, and C. T. Lau, “Autoencoder-
based network anomaly detection,” in 2018 Wireless Telecommuni-
cations Symposium (WTS), Phoenix, AZ, Apr. 2018, pp. 1–5, doi:
10.1109/WTS.2018.8363930.
[20] S. Deng, L. Du, C. Li, J. Ding, and H. Liu, “SAR Automatic Target
Recognition Based on Euclidean Distance Restricted Autoencoder,”
IEEE J. Sel. Top. Appl. Earth Observations Remote Sensing, vol. 10,
no. 7, pp. 3323–3333, Jul. 2017, doi: 10.1109/JSTARS.2017.2670083.
Authorized licensed use limited to: Auckland University of Technology. Downloaded on December 24,2020 at 15:24:05 UTC from IEEE Xplore. Restrictions apply.
[21] T. Morris, R. Vaughn, and Y.S. Dandass, “A testbed for SCADA control
system cybersecurity research and pedagogy,” Proceedings of the Sev-
enth Annual Workshop on Cyber Security and Information Intelligence
Research, 2011.
[22] Y. C A Padmanabha Reddy, P. Viswanath, and B. Eswara Reddy, “Semi-
supervised learning: a brief review,” IJET, vol. 7, no. 1.8, p. 81, Feb.
2018, doi: 10.14419/ijet.v7i1.8.9977.
[23] J. E. van Engelen, and H. H. Hoos, “A survey on semi-supervised
learning,” textitMachine Learning, vol. 109, no. 2, pp. 373–440, Feb.
2020, doi: 10.1007/s10994-019-05855-6.
[24] M. Usama et al., “Unsupervised Machine Learning for Networking:
Techniques, Applications and Research Challenges,” IEEE Access, vol.
7, pp. 65579–65615, 2019, doi: 10.1109/ACCESS.2019.2916648.
[25] P. Laskov, P. Düssel, C. Schäfer, and K. Rieck, “Learning Intru-
sion Detection: Supervised or Unsupervised?,” in Image Analysis and
Processing – ICIAP 2005, vol. 3617, F. Roli and S. Vitulano, Eds.
Berlin, Heidelberg: Springer Berlin Heidelberg, 2005, pp. 50–57, doi:
10.1007/11553595 6.
[26] D. Oh and I. Yun, “Residual Error Based Anomaly Detection Using
Auto-Encoder in SMD Machine Sound,” Sensors, vol. 18, no. 5, p. 1308,
Apr. 2018, doi: 10.3390/s18051308.
[27] A. Borghesi, A. Bartolini, M. Lombardi, M. Milano, and L. Benini,
“Anomaly Detection Using Autoencoders in High Performance Com-
puting Systems,” AAAI, vol. 33, pp. 9428–9433, Jul. 2019, doi:
10.1609/aaai.v33i01.33019428.
[28] I. A. Khan, D. Pi, Z. U. Khan, Y. Hussain, and A. Nawaz, “HML-
IDS: A Hybrid-Multilevel Anomaly Prediction Approach for Intrusion
Detection in SCADA Systems,” IEEE Access, vol. 7, pp. 89507–89521,
2019, doi: 10.1109/ACCESS.2019.2925838.
[29] A. Almalawi, A. Fahad, Z. Tari, A. Alamri, R. AlGhamdi, and A.
Y. Zomaya, “An Efficient Data-Driven Clustering Technique to Detect
Attacks in SCADA Systems,” IEEE Trans.Inform.Forensic Secur., vol.
11, no. 5, pp. 893–906, May 2016, doi: 10.1109/TIFS.2015.2512522.
[30] P. Nader, P. Honeine, and P. Beauseroy, “lp -norms in One-Class
Classification for Intrusion Detection in SCADA Systems,” IEEE
Trans. Ind. Inf., vol. 10, no. 4, pp. 2308–2317, Nov. 2014, doi:
10.1109/TII.2014.2330796.
[31] Y. He, G. J. Mendis, and J. Wei, “Real-Time Detection of False Data
Injection Attacks in Smart Grid: A Deep Learning-Based Intelligent
Mechanism,” IEEE Trans. Smart Grid, vol. 8, no. 5, pp. 2505–2516,
Sep. 2017, doi: 10.1109/TSG.2017.2703842.
[32] K. Kannadasan, D. R. Edla, and V. Kuppili, “Type 2 diabetes data
classification using stacked autoencoders in deep neural networks,”
Clinical Epidemiology and Global Health, vol. 7, no. 4, pp. 530–535,
Dec. 2019, doi: 10.1016/j.cegh.2018.12.004.
[33] G. Liu, H. Bao, and B. Han, “A Stacked Autoencoder-Based Deep
Neural Network for Achieving Gearbox Fault Diagnosis,” Mathemat-
ical Problems in Engineering, vol. 2018, pp. 1–10, Jul. 2018, doi:
10.1155/2018/5105709.