Detecting Abnormal Behavior in SCADA Networks Using Normal Traffic Pattern Learning

机译：使用正常流量模式学习检测SCADA网络中的异常行为

获取原文

页面导航

摘要
著录项
相似文献
相关主题

摘要

SCADA systems have been upgraded from the standard serial bus systems to modern TCP/IP based systems. The Modbus protocol is one of the most widely used protocols in SCADA networks. However, it provides no inherent security mechanisms. Therefore, the Modbus protocol is susceptible to the type of attack that injects false Modbus commands by fabrication or modification. In this paper, we propose an abnormal behavior detection method by using normal traffic pattern learning on Modbus/TCP transactions. Our approach is based on the characteristics of SCADA networks that are likely to have a regular traffic pattern. Most of all, the proposed method is performed according to the analysis of only Modbus/TCP request messages. Therefore, it has the benefit of detecting abnormal behavior on even with the simple traffic pattern learning.

机译：SCADA系统已从标准串行总线系统升级为基于现代TCP / IP的系统。 Modbus协议是SCADA网络中使用最广泛的协议之一。但是，它没有提供固有的安全性机制。因此，Modbus协议容易受到攻击的攻击，这种攻击会通过制造或修改来注入错误的Modbus命令。在本文中，我们提出了一种通过对Modbus / TCP事务使用正常流量模式学习的异常行为检测方法。我们的方法基于可能具有常规流量模式的SCADA网络的特征。最重要的是，该建议方法仅根据对Modbus / TCP请求消息的分析来执行。因此，即使通过简单的交通模式学习，也具有检测异常行为的益处。

著录项

来源
《FTRA international conference on computer science and its applications》|2015年|121-126|共6页
会议地点
作者
Byoung-Koo Kim; Dong-Ho Kang; Jung-Chan Na; Tai-Myoung Chung;
展开▼
作者单位

展开▼
会议组织
原文格式 PDF
正文语种
中图分类
关键词
SCADA system; Modbus; Abnormal behavior; Pattern learning;

机译：SCADA系统; Modbus;异常行为;模式学习;

相似文献

外文文献
中文文献
专利

1. Integrating compositional pattern-producing networks and optimized convolution neural networks using deep learning techniques for detecting brain abnormalities [J] . B. L.Velammal Multimedia Tools and Applications . 2020,第15a16期

机译：使用深度学习技术集成组合模式生产网络和优化的卷积神经网络，用于检测大脑异常
2. Statistical Techniques for Detecting Cyberattacks on Computer Networks Based on an Analysis of Abnormal Traffic Behavior [J] . Zhengbing Hu, Roman Odarchenko, Sergiy Gnatyuk, International Journal of Computer Network and Information Security . 2020,第6期

机译：基于异常交通行为的分析，用于检测计算机网络上的网络基地的统计技术
3. Identifying patterns under both normal and abnormal traffic conditions for short-term traffic prediction [J] . Athanasios Salamanis, Giorgos Margaritis, Dionysios D. Kehagias, Transportation Research Procedia . 2017,第1期

机译：识别正常和异常交通状况下的模式以进行短期交通预测
4. Detecting Abnormal Behavior in SCADA Networks Using Normal Traffic Pattern Learning [C] . Byoung-Koo Kim, Dong-Ho Kang, Jung-Chan Na, FTRA international conference on computer science and its applications . 2015

机译：使用普通交通模式学习检测SCADA网络中的异常行为
5. Neural network models for detecting concurrent abnormal patterns in control charts and for developing shorter and non-biased intervals for process capability index estimators. [D] . Msimang, Ntsika. 2004

机译：神经网络模型，用于检测控制图中的并发异常模式，并为过程能力指数估算器开发较短且无偏差的间隔。
6. Reinforcement Learning-Enabled Cross-Layer Optimization for Low-Power and Lossy Networks under Heterogeneous Traffic Patterns [O] . Arslan Musaddiq, Zulqar Nain, Yazdan Ahmad Qadri, 2020

机译：异构交通模式下的低功耗和有损网络的增强学习跨层优化
7. Detecting Abnormal Behavior of an IoT Device in the Network Based on a Traffic Model [O] . D. Saharov, D. Kozlov 2019

机译：基于流量模型检测网络中IOT设备的异常行为
8. Behavioral Profiling of Scada Network Traffic Using Machine Learning Algorithms. [R] . Werling, J. R. 2014

机译：利用机器学习算法对scada网络流量进行行为分析。

Detecting Abnormal Behavior in SCADA Networks Using Normal Traffic Pattern Learning

摘要

著录项

相似文献

相关主题

期刊订阅