o:28324 A review of research work on network-based SCADA intrusion detection systems en Abstract: Specific intrusion detection systems (IDSs) are needed to secure modern supervisory control and data acquisition (SCADA) systems due to their architecture, stringent real-time requirements, network traffic features and specific application layer protocols. This article aims to contribute to assess the state-ofthe-art, identify the open issues and provide an insight for future study areas. To achieve these objectives, we start from the factors that impact the design of dedicated intrusion detection systems in SCADA networks and focus on network-based IDS solutions. We propose a structured evaluation methodology that encompasses detection techniques, protected protocols, implementation tools, test environments and IDS performance. Special attention is focused on assessing implementation maturity as well as the applicability of each surveyed solution in the Future Internet environment. Based on that, we provide a brief description and evaluation of 26 selected research papers, published in the period 2015–2019. Results of our analysis indicate considerable progress regarding the development of machine learning-based detection methods, implementation platforms, and to some extent, sophisticated testbeds. We also identify research gaps and conclude the analysis with a list of the most important directions for further research. Anomaly-based detection, network security, SCADA, signature-based detection, specification-based detection 1552099 10.1109/ACCESS.2020.2994961 1552101 2169-3536 2023-03-21T12:59:48.882Z 44 yes 46 Slavica Boštjančič Rakas Institut "Mihajlo Pupin" 0000-0002-0551-3070 Mirjana Stojanović Saobraćajni fakultet Univerziteta u Beogradu person 0000-0003-1073-5804 Jasna Marković-Petrović Hidroelektrana Đerdap person application/pdf 7376664 https://phaidrabg.bg.ac.rs/o:28324 no yes 16 70 92000001 11A20 IEEE Access 8 2020