Abstract
Securing Industrial Control Systems (ICS) against cyber threats is crucial for maintaining operational reliability and safety in critical infrastructure. Traditional Machine Learning (ML) approaches in ICS development require substantial domain expertise, posing challenges for non-experts. To address this gap, we propose and evaluate ICS-defender, a defense mechanism to enhance ICS security through Automated Machine Learning (AutoML) techniques. Our approach leverages sophisticated feature engineering and AutoML to automate model selection, training, aggregation, and optimization, thereby reducing the dependency on specialized knowledge. We evaluate ICS-defender against state-of-the-art AutoML frameworks using diverse datasets from power systems and electric vehicle chargers. Experimental results consistently demonstrate that ICS-defender outperforms existing frameworks in terms of accuracy and robustness, achieving average accuracies of 93.75%, 94.34%, and 87.12% for power systems attacks datasets and 94.23% for the electric vehicle charging station attacks dataset, surpassing baseline algorithms. This research contributes to advancing secure and resilient ICS, offering significant implications for broader applications and future enhancements in industrial cybersecurity.
| Original language | English |
|---|---|
| Article number | 100718 |
| Journal | International Journal of Critical Infrastructure Protection |
| Volume | 47 |
| DOIs | |
| State | Published - Dec 2024 |
Bibliographical note
Publisher Copyright:© 2024 Elsevier B.V.
Keywords
- Automated machine learning
- Feature engineering
- Feature transformation
- Industrial control system
- Network traffic attacks analysis
- Reduced domain expertise
- Security defender
ASJC Scopus subject areas
- Modeling and Simulation
- Safety, Risk, Reliability and Quality
- Computer Science Applications
- Information Systems and Management
