Real-Time Monitoring and Scalable Messaging of SCADA Networks Data: A Case Study on Cyber-Physical Attack Detection in Water Distribution System
Published in Electrical and Computer Engineering. ICECENG 2022. Lecture Notes of the Institute for Computer Sciences, Social Informatics and Telecommunications Engineering, 2022
Recommended citation: Balta, S., Zavrak, S., Eken, S. (2022). Real-Time Monitoring and Scalable Messaging of SCADA Networks Data: A Case Study on Cyber-Physical Attack Detection in Water Distribution System. In: Seyman, M.N. (eds) Electrical and Computer Engineering. ICECENG 2022. Lecture Notes of the Institute for Computer Sciences, Social Informatics and Telecommunications Engineering, vol 436. Springer, Cham. https://doi.org/10.1007/978-3-031-01984-5_17 https://link.springer.com/chapter/10.1007/978-3-031-01984-5_17
SCADA networks, which are widely used by governments around the world to run computers and applications that perform a wide range of important functions and provide critical services to their infrastructure, are becoming increasingly popular among organizations. Because of their critical role in the infrastructure, as well as the fact that they are a potential target for cyberattacks, they must be secured and protected in some way at all times. In this study, we propose a topic-based pub/sub messaging system based on Apache Spark and Apache Kafka for real-time monitoring and detection of cyber-physical attacks in SCADA systems, which can be used in conjunction with other currently available systems. There are a variety of traditional machine learning approaches used in conjunction with a deep learning encoded decoder algorithm to create the mechanism for attack detection. The performance results demonstrate that our system outperforms the current state of the art described in the literature in this field.