Kaspersky: SMB cyber infections rising
0

Kaspersky Machine Learning for Anomaly Detection, designed to reveal deviations in production processes at the earliest stage, is now generally available as a commercial product. The detector is empowered with ML algorithms that analyse telemetry from machinery sensors. It warns of machine malfunctions by raising alerts as soon as manufacturing process parameters (tags) begin to behave in an unexpected way. Kaspersky MLAD provides a feature-rich graphical interface for detailed analysis of anomalies, as well as tools that can integrate the product with existing systems, to deliver alerts to operators’ dashboards.

In industrial settings, it is critical to keep technological process on an optimal path and avoid interruptions of any kind, including: equipment malfunctions, operator errors, or cyberattacks on industrial control systems. If something goes wrong, early detection can prevent disruption and therefore reduce the cost of downtime, the waste of raw materials and the impact of other serious consequences. According to Kaspersky estimates, a 50% reduction in downtime enables annual savings of up to $1m for a large power plant or $2.5m for an oil refinery¹.

Kaspersky Machine Learning for Anomaly Detection’s neural network analyses telemetry in real-time from various sensors used in the production process. It detects minor deviations, such as a change in signals’ dynamics or correlations, and gives alerts before the values reach their thresholds and impact performance. This allows plant operators to take preventive actions. To be able to detect anomalies, the neural network learns the normal behaviour of the machine from historical telemetry data. If a parameter of the production process changes (for example, a new type of raw material is introduced) or a part of the machine is replaced, an operator can re-run the ML trainer to update the neural network. In addition to an ML-based detector, customised diagnostic rules for specific cases can be added at the customer’s request.

Kaspersky MLAD works in the existing plant’s infrastructure and does not require the installation of additional sensors. To obtain data and report the anomalies, Kaspersky MLAD connects to industrial control systems such as SCADA. Alternatively, it can be integrated with Kaspersky Industrial CyberSecurity for Networks. The product natively supports popular protocols including OPC UA, MQTT, AMQP, as well as REST, which makes it applicable to systems with diverse equipment.

Kaspersky MLAD provides a graphical interface for the analysis of detected anomalies. Thanks to the visualised time plots of all monitored processes, an expert can see what went wrong, when, and in what part of the system.

Kaspersky Machine Learning for Anomaly Detection interface: the report shows how manufacturing process parameters change in real-time, and that there is an anomaly (on the lowest chart)

“Advanced ML algorithms and the ability to adapt to particular industrial processes make Kaspersky Machine Learning for Anomaly Detection an essential tool to ensure smooth production. It complements monitoring systems and machine operators’ expertise with the ability to detect anomalies in a complex environment. No matter what causes the deviations, the downtime, equipment breakdowns and disasters can be prevented thanks to early alerts. We have been developing the technology for several years and today we’re happy to announce the general availability of the fully-fledged product to help customers achieve these benefits,” comments Andrey Lavrentyev, Head of Technology Research Department at Kaspersky.

ADVERTISEMENT

For more information about Kaspersky Machine Learning for Anomaly Detection, please visit https://mlad.kaspersky.com/.

Reference:

¹ The estimation is based on Kaspersky analysis of different parameters such as duration of downtimes, parameters of economic activity of organizations, and modeling.

More in News

You may also like