Autoencoder based anomaly detection for SCADA networks

Sajid Nazir, Shushma Patel, Dilip Patel

Research output: Contribution to journalArticlepeer-review

123 Downloads (Pure)


Supervisory control and data acquisition (SCADA) systems are industrial control systems that are used to monitor critical infrastructures such as airports, transport, health, and public services of national importance. These are cyber physical systems, which are increasingly integrated with networks and internet of things devices. However, this results in a larger attack surface for cyber threats, making it important to identify and thwart cyber-attacks by detecting anomalous network traffic patterns. Compared to other techniques, as well as detecting known attack patterns, machine learning can also detect new and evolving threats. Autoencoders are a type of neural network that generates a compressed representation of its input data and through reconstruction loss of inputs can help identify anomalous data. This paper proposes the use of autoencoders for unsupervised anomaly-based intrusion detection using an appropriate differentiating threshold from the loss distribution and demonstrate improvements in results compared to other techniques for SCADA gas pipeline dataset.
Original languageEnglish
Article number6
Pages (from-to)83-99
Number of pages17
JournalInternational Journal of Artificial Intelligence and Machine Learning (IJAIML)
Issue number2
Early online date23 Apr 2021
Publication statusPublished - Jul 2021


  • anomaly detection
  • clustering
  • classification
  • IoT
  • neural networks
  • intrusion detection
  • machine learning
  • autoencoders


Dive into the research topics of 'Autoencoder based anomaly detection for SCADA networks'. Together they form a unique fingerprint.

Cite this