SISTEM DETEKSI SERANGAN SIBER PADA JARINGAN SCADA PROTOKOL IEC 60870-5-104 MENGGUNAKAN PENDEKATAN MACHINE LEARNING

ARIFIN, M. AGUS SYAMSUL and Stiawan, Deris (2023) SISTEM DETEKSI SERANGAN SIBER PADA JARINGAN SCADA PROTOKOL IEC 60870-5-104 MENGGUNAKAN PENDEKATAN MACHINE LEARNING. Doctoral thesis, Sriwijaya University.

[thumbnail of RAMA_21001_03013681924009.pdf] Text
RAMA_21001_03013681924009.pdf - Accepted Version
Restricted to Repository staff only
Available under License Creative Commons Public Domain Dedication.
Download (13MB) | Request a copy
[thumbnail of RAMA_21001_03013681924009_TURNITIN.pdf] Text
RAMA_21001_03013681924009_TURNITIN.pdf - Accepted Version
Restricted to Repository staff only
Available under License Creative Commons Public Domain Dedication.
Download (30MB) | Request a copy
[thumbnail of RAMA_21001_03013681924009_0003047905_01_front_ref.pdf] Text
RAMA_21001_03013681924009_0003047905_01_front_ref.pdf - Accepted Version
Available under License Creative Commons Public Domain Dedication.
Download (2MB)
[thumbnail of RAMA_21001_03013681924009_0003047905_02.pdf] Text
RAMA_21001_03013681924009_0003047905_02.pdf - Accepted Version
Restricted to Repository staff only
Available under License Creative Commons Public Domain Dedication.
Download (1MB) | Request a copy
[thumbnail of RAMA_21001_03013681924009_0003047905_03.pdf] Text
RAMA_21001_03013681924009_0003047905_03.pdf - Accepted Version
Restricted to Repository staff only
Available under License Creative Commons Public Domain Dedication.
Download (5MB) | Request a copy
[thumbnail of RAMA_21001_03013681924009_0003047905_04.pdf] Text
RAMA_21001_03013681924009_0003047905_04.pdf - Accepted Version
Restricted to Repository staff only
Available under License Creative Commons Public Domain Dedication.
Download (1MB) | Request a copy
[thumbnail of RAMA_21001_03013681924009_0003047905_05.pdf] Text
RAMA_21001_03013681924009_0003047905_05.pdf - Accepted Version
Restricted to Repository staff only
Available under License Creative Commons Public Domain Dedication.
Download (1MB) | Request a copy
[thumbnail of RAMA_21001_03013681924009_0003047905_06_ref.pdf] Text
RAMA_21001_03013681924009_0003047905_06_ref.pdf - Bibliography
Restricted to Repository staff only
Available under License Creative Commons Public Domain Dedication.
Download (749kB) | Request a copy
[thumbnail of RAMA_21001_03013681924009_0003047905_07_lamp.pdf] Text
RAMA_21001_03013681924009_0003047905_07_lamp.pdf - Accepted Version
Restricted to Repository staff only
Available under License Creative Commons Public Domain Dedication.
Download (1MB) | Request a copy

Abstract

Supervisory and Data Acquisition (SCADA) plays an important role in industry by providing process automation, centralized control and monitoring processes. SCADA is designed for closed areas with special protocols that are isolated from the internet, but modern SCADA systems are required to be connected to one or more other network protocols to make it easier to access the SCADA system from heterogeneous networks, thus increasing vulnerability in this system. This phenomenon is interesting to study because there are still few researchers conducting a comprehensive discussion of security on the SCADA network, besides the performance of open source IDS (Intrusion Detection System) such as Snort and Suricata is less efficient in detecting disturbances on the SCADA network so that this research has the aim of designing an ideal IDS for SCADA networks using a machine learning approach. To produce an IDS that is able to work well to detect attacks in the SCADA network, a relevant dataset is needed, then the attack patterns recognition is carried out to obtain relevant features that will be used as training data for the IDS model, the selection of machine learning algorithms that are relevant to the SCADA network by paying attention to the performance of the resulting IDS model. This research has the novelty of finding attack patterns on the IEC 60870-5-104 protocol. The datasets used are the dataset from maynard_2018 and the comnets_scada_iec104 dataset. The comnets_scada_iec104 dataset was created using a physical testbed close to the actual conditions of the SCADA system. The highest accuracy of the IDS model when using the maynard_2018 dataset is 98.84% with the decision tree algorithm. The highest accuracy of the IDS model using the comnets_scada_iec104 dataset was obtained using the decision tree and random forest algorithms with the same accuracy level of 99.05%. This accuracy was obtained by adding a random under-sampling method.

Item Type: Thesis (Doctoral)
Uncontrolled Keywords: IDS SCADA, IEC-60870-5-104, machine learning, Random Under sampling, Random Over sampling, SMOTE
Subjects: #3 Repository of Lecturer Academic Credit Systems (TPAK) > Articles Access for TPAK (Not Open Sources)
Divisions: 03-Faculty of Engineering > 21001-Engineering Science (S3)
Depositing User: M. Agus Syamsul Arifin
Date Deposited: 01 Sep 2023 02:27
Last Modified: 01 Sep 2023 02:27
URI: http://repository.unsri.ac.id/id/eprint/126432

Actions (login required)

View Item View Item