{"status":"ok","message-type":"work","message-version":"1.0.0","message":{"indexed":{"date-parts":[[2026,5,29]],"date-time":"2026-05-29T08:44:22Z","timestamp":1780044262491,"version":"3.53.1"},"publisher-location":"New York, NY, USA","reference-count":22,"publisher":"ACM","license":[{"start":{"date-parts":[[2017,8,29]],"date-time":"2017-08-29T00:00:00Z","timestamp":1503964800000},"content-version":"vor","delay-in-days":0,"URL":"https:\/\/www.acm.org\/publications\/policies\/copyright_policy#Background"}],"content-domain":{"domain":["dl.acm.org"],"crossmark-restriction":true},"short-container-title":[],"published-print":{"date-parts":[[2017,8,29]]},"DOI":"10.1145\/3098954.3103155","type":"proceedings-article","created":{"date-parts":[[2017,8,10]],"date-time":"2017-08-10T12:12:36Z","timestamp":1502367156000},"page":"1-6","update-policy":"https:\/\/doi.org\/10.1145\/crossmark-policy","source":"Crossref","is-referenced-by-count":18,"title":["Anomaly-Based Detection and Classification of Attacks in Cyber-Physical Systems"],"prefix":"10.1145","author":[{"given":"Philipp","family":"Kreimel","sequence":"first","affiliation":[{"name":"University of Applied Sciences St. P\u00f6lten, St. P\u00f6lten, Austria"}],"role":[{"vocabulary":"crossref","role":"author"}]},{"given":"Oliver","family":"Eigner","sequence":"additional","affiliation":[{"name":"University of Applied Sciences St. P\u00f6lten, St. P\u00f6lten, Austria"}],"role":[{"vocabulary":"crossref","role":"author"}]},{"given":"Paul","family":"Tavolato","sequence":"additional","affiliation":[{"name":"University of Applied Sciences St. P\u00f6lten, St. P\u00f6lten, Austria"}],"role":[{"vocabulary":"crossref","role":"author"}]}],"member":"320","published-online":{"date-parts":[[2017,8,29]]},"reference":[{"key":"e_1_3_2_1_1_1","volume-title":"ICA3PP","author":"Adepu Sridhar","year":"2015","unstructured":"Sridhar Adepu , Aditya Mathur , Jagadeesh Gunda , and Sasa Djokic . 2015. Algorithms and Architectures for Parallel Processing: 15th International Conference , ICA3PP 2015 , Zhangjiajie, China, November 18-20, 2015, Proceedings, Part III. Springer International Publishing, Cham, Chapter An Agent-Based Framework for Simulating and Analysing Attacks on Cyber Physical Systems, 785--798. Sridhar Adepu, Aditya Mathur, Jagadeesh Gunda, and Sasa Djokic. 2015. Algorithms and Architectures for Parallel Processing: 15th International Conference, ICA3PP 2015, Zhangjiajie, China, November 18-20, 2015, Proceedings, Part III. Springer International Publishing, Cham, Chapter An Agent-Based Framework for Simulating and Analysing Attacks on Cyber Physical Systems, 785--798."},{"key":"e_1_3_2_1_2_1","unstructured":"Alexander Batishchev. 2014. Low Orbit Ion Cannon. (2014). https:\/\/sourceforge.net\/projects\/loic\/  Alexander Batishchev. 2014. Low Orbit Ion Cannon. (2014). https:\/\/sourceforge.net\/projects\/loic\/"},{"key":"e_1_3_2_1_3_1","volume-title":"Die Lage der IT-Sicherheit in Deutschland","author":"\u00fcr Bundesamt","year":"2014","unstructured":"Bundesamt f \u00fcr Sicherheit in der Informationstechnik (BSI). 2014. Die Lage der IT-Sicherheit in Deutschland 2014 . https:\/\/www.bsi.bund.de\/SharedDocs\/Downloads\/DE\/BSI\/Publikationen\/Lageberichte\/Lagebericht2014.pdf?__blob=publicationFile&v=1. (2014). {Online; Status: Apr 6th 2017}. Bundesamt f\u00fcr Sicherheit in der Informationstechnik (BSI). 2014. Die Lage der IT-Sicherheit in Deutschland 2014. https:\/\/www.bsi.bund.de\/SharedDocs\/Downloads\/DE\/BSI\/Publikationen\/Lageberichte\/Lagebericht2014.pdf?__blob=publicationFile&v=1. (2014). {Online; Status: Apr 6th 2017}."},{"key":"e_1_3_2_1_4_1","volume-title":"Proceedings of the SCADA Security Scientific Symposium","author":"Cheung Steven","year":"2007","unstructured":"Steven Cheung , Bruno Dutertre , Martin Fong , Ulf Lindqvist , Keith Skinner , and Alfonso Valdes . 2007 . Using Model-based Intrusion Detection for SCADA Networks . In Proceedings of the SCADA Security Scientific Symposium . Miami Beach, Florida. Steven Cheung, Bruno Dutertre, Martin Fong, Ulf Lindqvist, Keith Skinner, and Alfonso Valdes. 2007. Using Model-based Intrusion Detection for SCADA Networks. In Proceedings of the SCADA Security Scientific Symposium. Miami Beach, Florida."},{"key":"e_1_3_2_1_5_1","volume-title":"Detection of Man-in-the-Middle Attacks on Industrial Control Networks. In 2016 International Conference on Software Security and Assurance (ICSSA). IEEE, 64--69","author":"Eigner O.","unstructured":"O. Eigner , P. Kreimel , and P. Tavolato . 2016 . Detection of Man-in-the-Middle Attacks on Industrial Control Networks. In 2016 International Conference on Software Security and Assurance (ICSSA). IEEE, 64--69 . O. Eigner, P. Kreimel, and P. Tavolato. 2016. Detection of Man-in-the-Middle Attacks on Industrial Control Networks. In 2016 International Conference on Software Security and Assurance (ICSSA). IEEE, 64--69."},{"key":"e_1_3_2_1_6_1","volume-title":"stuxnet dossier. White paper","author":"Falliere Nicolas","year":"2011","unstructured":"Nicolas Falliere , Liam O Murchu , and Eric Chien . 2011. W32. stuxnet dossier. White paper , Symantec Corp., Security Response 5 ( 2011 ). https:\/\/www.symantec.com\/content\/en\/us\/enterprise\/media\/security_response\/whitepapers\/w32_stuxnet_dossier.pdf Nicolas Falliere, Liam O Murchu, and Eric Chien. 2011. W32. stuxnet dossier. White paper, Symantec Corp., Security Response 5 (2011). https:\/\/www.symantec.com\/content\/en\/us\/enterprise\/media\/security_response\/whitepapers\/w32_stuxnet_dossier.pdf"},{"key":"e_1_3_2_1_7_1","doi-asserted-by":"publisher","DOI":"10.1109\/CERMA.2012.32"},{"key":"e_1_3_2_1_8_1","volume-title":"6th International Conference SOCO","author":"Garitano I\u00f1aki","year":"2011","unstructured":"I\u00f1aki Garitano , Roberto Uribeetxeberria , and Urko Zurutuza . 2011 . A review of SCADA anomaly detection systems. In Soft Computing Models in Industrial and Environmental Applications , 6th International Conference SOCO 2011. Springer, 357--366. I\u00f1aki Garitano, Roberto Uribeetxeberria, and Urko Zurutuza. 2011. A review of SCADA anomaly detection systems. In Soft Computing Models in Industrial and Environmental Applications, 6th International Conference SOCO 2011. Springer, 357--366."},{"key":"e_1_3_2_1_9_1","doi-asserted-by":"publisher","DOI":"10.1016\/j.ijcip.2013.05.001"},{"key":"e_1_3_2_1_11_1","unstructured":"M. Goldstein M. Amer J. Gebhardt P. Kalka and A. Elsawy. 2015. RapidMiner Anomaly Detection Extension. https:\/\/github.com\/Markus-Go\/rapidminer-anomalydetection. (2015). {Online; Status: Apr 6th 2017}.  M. Goldstein M. Amer J. Gebhardt P. Kalka and A. Elsawy. 2015. RapidMiner Anomaly Detection Extension. https:\/\/github.com\/Markus-Go\/rapidminer-anomalydetection. (2015). {Online; Status: Apr 6th 2017}."},{"key":"e_1_3_2_1_12_1","doi-asserted-by":"publisher","DOI":"10.1145\/2542049"},{"key":"e_1_3_2_1_13_1","unstructured":"Modbus-IDA. 2006. MODBUS Messaging on TCP\/IP Implementation Guide V1.0b. http:\/\/www.modbus.org\/docs\/Modbus_Messaging_Implementation_Guide_V1_0b.pdf. (2006). {Online; Status: Apr 6th 2017}.  Modbus-IDA. 2006. MODBUS Messaging on TCP\/IP Implementation Guide V1.0b. http:\/\/www.modbus.org\/docs\/Modbus_Messaging_Implementation_Guide_V1_0b.pdf. (2006). {Online; Status: Apr 6th 2017}."},{"key":"e_1_3_2_1_14_1","unstructured":"Modbus Organization Inc. 2012. MODBUS Application Protocol Specification V1.1b3. http:\/\/www.modbus.org\/docs\/Modbus_Application_Protocol_V1_1b3.pdf. (2012). {Online; Status: Apr 6th 2017}.  Modbus Organization Inc. 2012. MODBUS Application Protocol Specification V1.1b3. http:\/\/www.modbus.org\/docs\/Modbus_Application_Protocol_V1_1b3.pdf. (2012). {Online; Status: Apr 6th 2017}."},{"key":"e_1_3_2_1_15_1","volume-title":"https:\/\/www.kali.org\/","author":"Security Offensive","year":"2017","unstructured":"Offensive Security . 2017. Kali Linux . ( 2017 ). https:\/\/www.kali.org\/ Offensive Security. 2017. Kali Linux. (2017). https:\/\/www.kali.org\/"},{"key":"e_1_3_2_1_16_1","unstructured":"RapidMiner Inc. 2015. RapidMiner. (2015). https:\/\/sourceforge.net\/projects\/rapidminer\/  RapidMiner Inc. 2015. RapidMiner. (2015). https:\/\/sourceforge.net\/projects\/rapidminer\/"},{"key":"e_1_3_2_1_17_1","doi-asserted-by":"publisher","DOI":"10.1109\/JPROC.2011.2165269"},{"key":"e_1_3_2_1_18_1","volume-title":"Voyiatzis","author":"Stefanidis Kyriakos","year":"2016","unstructured":"Kyriakos Stefanidis and Artemios G . Voyiatzis . 2016 . An HMM-Based Anomaly Detection Approach for SCADA Systems. Springer International Publishing , Cham, 85--99. Kyriakos Stefanidis and Artemios G. Voyiatzis. 2016. An HMM-Based Anomaly Detection Approach for SCADA Systems. Springer International Publishing, Cham, 85--99."},{"key":"e_1_3_2_1_19_1","volume-title":"Guide to industrial control systems (ICS) security. NIST special publication 800, 82","author":"Stouffer Keith","year":"2011","unstructured":"Keith Stouffer , Joe Falco , and Karen Scarfone . 2011. Guide to industrial control systems (ICS) security. NIST special publication 800, 82 ( 2011 ). Keith Stouffer, Joe Falco, and Karen Scarfone. 2011. Guide to industrial control systems (ICS) security. NIST special publication 800, 82 (2011)."},{"key":"e_1_3_2_1_20_1","volume-title":"Dragonfly: Cyberespionage Attacks Against Energy Suppliers. https:\/\/www.symantec.com\/content\/en\/us\/enterprise\/media\/security_response\/whitepapers\/Dragonfly_Threat_Against_Western_Energy_Suppliers.pdf.","author":"Response Symantec Security","year":"2014","unstructured":"Symantec Security Response . 2014 . Dragonfly: Cyberespionage Attacks Against Energy Suppliers. https:\/\/www.symantec.com\/content\/en\/us\/enterprise\/media\/security_response\/whitepapers\/Dragonfly_Threat_Against_Western_Energy_Suppliers.pdf. (2014). {Online; Status : Apr 6 2017}. Symantec Security Response. 2014. Dragonfly: Cyberespionage Attacks Against Energy Suppliers. https:\/\/www.symantec.com\/content\/en\/us\/enterprise\/media\/security_response\/whitepapers\/Dragonfly_Threat_Against_Western_Energy_Suppliers.pdf. (2014). {Online; Status: Apr 6 2017}."},{"key":"e_1_3_2_1_21_1","volume-title":"Cyber-Physical Systems: Chancen und Nutzen aus Sicht der Automation. https:\/\/www.vdi.de\/uploads\/media\/Stellungnahme_Cyber-Physical_Systems.pdf. (2013). {Online","author":"Gesellschaft","year":"2017","unstructured":"VDI\/VDE- Gesellschaft Mess- und Automatisierungstechnik (GMA). 2013. Cyber-Physical Systems: Chancen und Nutzen aus Sicht der Automation. https:\/\/www.vdi.de\/uploads\/media\/Stellungnahme_Cyber-Physical_Systems.pdf. (2013). {Online ; Status : Apr 6th 2017 }. VDI\/VDE-Gesellschaft Mess- und Automatisierungstechnik (GMA). 2013. Cyber-Physical Systems: Chancen und Nutzen aus Sicht der Automation. https:\/\/www.vdi.de\/uploads\/media\/Stellungnahme_Cyber-Physical_Systems.pdf. (2013). {Online; Status: Apr 6th 2017}."},{"key":"e_1_3_2_1_22_1","volume-title":"2016 IEEE Symposium on Computers and Communication (ISCC). IEEE, 318--325","author":"Zhang Jiexin","unstructured":"Jiexin Zhang , Shaoduo Gan , X. Liu , and P. Zhu . 2016. Intrusion detection in SCADA systems by traffic periodicity and telemetry analysis . In 2016 IEEE Symposium on Computers and Communication (ISCC). IEEE, 318--325 . Jiexin Zhang, Shaoduo Gan, X. Liu, and P. Zhu. 2016. Intrusion detection in SCADA systems by traffic periodicity and telemetry analysis. In 2016 IEEE Symposium on Computers and Communication (ISCC). IEEE, 318--325."},{"key":"e_1_3_2_1_23_1","doi-asserted-by":"publisher","DOI":"10.1109\/JETCAS.2013.2243633"}],"event":{"name":"ARES '17: International Conference on Availability, Reliability and Security","location":"Reggio Calabria Italy","acronym":"ARES '17"},"container-title":["Proceedings of the 12th International Conference on Availability, Reliability and Security"],"original-title":[],"link":[{"URL":"https:\/\/dl.acm.org\/doi\/10.1145\/3098954.3103155","content-type":"unspecified","content-version":"vor","intended-application":"text-mining"},{"URL":"https:\/\/dl.acm.org\/doi\/pdf\/10.1145\/3098954.3103155","content-type":"unspecified","content-version":"vor","intended-application":"similarity-checking"}],"deposited":{"date-parts":[[2025,6,18]],"date-time":"2025-06-18T03:37:25Z","timestamp":1750217845000},"score":1,"resource":{"primary":{"URL":"https:\/\/dl.acm.org\/doi\/10.1145\/3098954.3103155"}},"subtitle":[],"short-title":[],"issued":{"date-parts":[[2017,8,29]]},"references-count":22,"alternative-id":["10.1145\/3098954.3103155","10.1145\/3098954"],"URL":"https:\/\/doi.org\/10.1145\/3098954.3103155","relation":{},"subject":[],"published":{"date-parts":[[2017,8,29]]},"assertion":[{"value":"2017-08-29","order":2,"name":"published","label":"Published","group":{"name":"publication_history","label":"Publication History"}}]}}