Show simple item record

dc.contributor.authorAhmadi-Assalemi, Gabriela
dc.contributor.authoral-Khateeb, Haider
dc.contributor.authorEpiphaniou, Gregory
dc.contributor.authorAggoun, Amar
dc.date.accessioned2022-01-19T12:35:00Z
dc.date.available2022-01-19T12:35:00Z
dc.date.issued2022-01-20
dc.identifier.citationAhmadi-Assalemi, G., Al-Khateeb, H., Epiphaniou, G. and Aggoun, A. (2022) Super-learner ensemble for anomaly detection and cyber-risk quantification in industrial control systems. IEEE Internet of Things Journal, 9(15), pp. 13279-13297.en
dc.identifier.issn2327-4662en
dc.identifier.doi10.1109/JIOT.2022.3144127
dc.identifier.urihttp://hdl.handle.net/2436/624550
dc.descriptionThis is an accepted manuscript of an article published by IEEE in IEEE Internet of Things Journal on 20/01/2022. The accepted version of the publication may differ from the final published version.en
dc.description.abstractIndustrial Control Systems (ICS) are integral parts of smart cities and critical to modern societies. Despite indisputable opportunities introduced by disruptor technologies, they proliferate the cybersecurity threat landscape, which is increasingly more hostile. The quantum of sensors utilised by ICS aided by Artificial Intelligence (AI) enables data collection capabilities to facilitate automation, process streamlining and cost reduction. However, apart from operational use, the sensors generated data combined with AI can be innovatively utilised to model anomalous behaviour as part of layered security to increase resilience to cyber-attacks. We introduce a framework to profile anomalous behaviour in ICS and derive a cyber-risk score. A novel super learner ensemble for one-class classification is developed, using overlapping rolling windows with stratified, k-fold, n-repeat cross-validation applied to each base-learner followed by majority voting to derive the best learner. Our approach is demonstrated on a liquid distribution sensor dataset. The experimental results reveal that the proposed technique achieves an overall F1-score of 99.13%, an anomalous recall score of 99% detecting anomalies lasting only 17 seconds. The key strength of the framework is the low computational complexity and error rate. The framework is modular, generic, applicable to other ICS and transferable to other smart city sectors.en
dc.formatapplication/pdfen
dc.language.isoenen
dc.publisherIEEEen
dc.relation.urlhttps://ieeexplore.ieee.org/document/9684524en
dc.subjectdigital forensic and incident responseen
dc.subjectSCADAen
dc.subjectPLCen
dc.subjectIndustry 4.0en
dc.subjectsmart cityen
dc.subjectinsider threaten
dc.subjectmachine learningen
dc.subjectcyber-physical systemsen
dc.subjectcyber securityen
dc.subjectsupervisory control and data acquisitionen
dc.subjecthuman machine interfaceen
dc.subjectinternet of thingsen
dc.subjectcyber resilienceen
dc.subjectprogrammable logic controllersen
dc.titleSuper-learner ensemble for anomaly detection and cyber-risk quantification in industrial control systemsen
dc.typeJournal articleen
dc.identifier.journalIEEE Internet of Things Journalen
dc.date.updated2022-01-17T20:54:11Z
dc.date.accepted2022-01-03
rioxxterms.funderUniversity of Wolverhamptonen
rioxxterms.identifier.projectUOW19012022HAen
rioxxterms.versionAMen
rioxxterms.licenseref.urihttps://creativecommons.org/licenses/by-nc-nd/4.0/en
rioxxterms.licenseref.startdate2022-01-20en
dc.source.volume9
dc.source.issue15
dc.source.beginpage13279
dc.source.endpage13297
refterms.dateFCD2022-01-19T12:34:29Z
refterms.versionFCDAM
refterms.dateFOA2021-01-20T00:00:00Z


Files in this item

Thumbnail
Name:
Ahmadi-Assalemi_et_al_Super-le ...
Size:
2.662Mb
Format:
PDF

This item appears in the following Collection(s)

Show simple item record

https://creativecommons.org/licenses/by-nc-nd/4.0/
Except where otherwise noted, this item's license is described as https://creativecommons.org/licenses/by-nc-nd/4.0/