1. Digitum: Repositorio Institucional de la Universidad de Murcia
  2. Investigación
  3. Artículos
Por favor, use este identificador para citar o enlazar este ítem: https://doi.org/10.1016/j.jisa.2023.103647

Registro completo de metadatos
Campo DCValorLengua/Idioma
dc.contributor.authorPerales Gómez, Ángel Luis-
dc.contributor.authorFernández Maimó, Lorenzo-
dc.contributor.authorHuertas Celdrán, Alberto-
dc.contributor.authorGarcía Clemente, Félix J.-
dc.date.accessioned2024-06-28T08:17:52Z-
dc.date.available2024-06-28T08:17:52Z-
dc.date.issued2023-12-
dc.identifier.citationJournal of Information Security and Applications, 2023, Vol. 79: 103647es
dc.identifier.issnElectronic: 2214-2126-
dc.identifier.urihttp://hdl.handle.net/10201/142734-
dc.description© 2023 The Author(s). This manuscript version is made available under the CC-BY 4.0 license http://creativecommons.org/licenses/by/4.0/ This document is the Published version of a Published Work that appeared in final form in Journal of Information Security and Applications. To access the final edited and published work see https://doi.org/10.1016/j.jisa.2023.103647-
dc.description.abstractIn the realm of industrial anomaly detection, machine and deep learning models face a critical vulnerability to adversarial attacks. In this context, existing attack methodologies primarily target continuous features, often in the context of images, making them unsuitable for the categorical or discrete features prevalent in industrial systems. To fortify the cybersecurity of industrial environments, this paper introduces a groundbreaking adversarial attack approach tailored to the unique demands of these settings. Our novel technique enables the creation of targeted adversarial samples that are valid within the framework of supervised cyberattack detection models in industrial scenarios, preserving the consistency of discrete values and correcting cases where an adversarial sample transitions into a normal one. Our approach leverages the SHAP interpretability method to identify the most salient features for each sample. Subsequently, the Projected Gradient Descent technique is employed to perturb continuous features, ensuring adversarial sample generation. To handle categorical features for a specific adversarial sample, our method scrutinizes the closest sample within the normal training dataset and replicates its categorical feature values. Additionally, Decision Trees trained within a Random Forest are utilized to ensure that the resulting adversarial samples maintain the essential abnormal behavior required for detection. The validation of our proposal was conducted using the WADI dataset obtained from a water distribution plant, providing a realistic industrial context. During validation, we assessed the mean error and the total number of adversarial samples generated by our approach, comparing it with the original Projected Gradient Descent method and the Carlini & Wagner attack across various parameter configurations. Remarkably, our proposal consistently achieved the best trade-off between mean error and the number of generated adversarial samples, showcasing its superiority in safeguarding industrial systems.es
dc.formatapplication/pdfes
dc.format.extent13-
dc.languageenges
dc.publisherElsevier-
dc.relationThis work has been funded under Grant TED2021-129300B-I00, by MCIN/AEI/10.13039/501100011033, NextGenerationEU/PRTR, UE, Grant PID2021-122466OB-I00, by MCIN/AEI/10.13039/501100011033/FEDER, UE, by the strategic project DEFENDER from the Spanish National Institute of Cybersecurity (INCIBE), by the Recovery, Transformation and Resilience Plan, Next Generation EU, by the Swiss Federal Office for Defense Procurement (armasuisse) with the CyberForce (CYD-C-2020003), and by the University of Zurich (UZH) .es
dc.rightsinfo:eu-repo/semantics/openAccesses
dc.rightsAtribución 4.0 Internacional*
dc.rights.urihttp://creativecommons.org/licenses/by/4.0/*
dc.subjectAdversarial attacks-
dc.subjectAnomaly detection-
dc.subjectDeep learning-
dc.subjectExplainable artificial intelligence-
dc.subjectIndustrial control systems-
dc.titleVAASI: Crafting valid and abnormal adversarial samples for anomaly detection systems in industrial scenarioses
dc.typeinfo:eu-repo/semantics/articlees
dc.relation.publisherversionhttps://www.sciencedirect.com/science/article/pii/S2214212623002314?via%3Dihub-
dc.identifier.doihttps://doi.org/10.1016/j.jisa.2023.103647-
dc.contributor.departmentDepartamento de Ingeniería y Tecnología de Computadores-
Aparece en las colecciones:Artículos

Ficheros en este ítem:
Fichero Descripción TamañoFormato 
1-s2.0-S2214212623002314-main.pdf1,21 MBAdobe PDFVista previa
Visualizar/Abrir
Mostrar el registro sencillo del ítem Mostrar el registro PREMIS del ítem  Estadísticas


Este ítem está sujeto a una licencia Creative Commons Licencia Creative Commons Creative Commons