• 主题
高级搜索  >
历史搜索 清空历史
首页> 外文会议>Asia-Pacific Network Operations and Management Symposium >Whitelist representation for FTP service in SCADA system by using structured ACL model
【24h】

Whitelist representation for FTP service in SCADA system by using structured ACL model

机译:使用结构化ACL模型的SCADA系统中FTP服务的白名单表示

获取原文
页面导航
  • 摘要
  • 著录项
  • 相似文献
  • 相关主题

摘要

Due to recent integration of SCADA systems with business systems, SCADA systems became open(unprotected), leading to not only security vulnerabilities increase but also sophisticated and intelligent cyber-attacks specifically targeting SCADA systems. A whitelist based security control technique that has attracted a lot of attention, is an emerging systems control, currently can be applied to solve security problems of the SCADA system. Most of the current security techniques for systems control based on whitelist, use static ACL model. But the static ACL model has limitations in use of ANY-ANY rule which is the only way to express communications using dynamic server port and express ranges of communication features in a control device. In this paper, we propose an structured ACL model to represent an FTP service to overcome the problem of dynamice server port in passive FTP. We demonstrate the feasibility of the proposed model in this paper by applying the FTP features extraction algorithm to FTP traffic.
机译:由于最近SCADA系统与业务系统的集成,SCADA系统变得开放(不受保护),不仅导致安全漏洞增加,而且导致专门针对SCADA系统的复杂和智能网络攻击。一种基于白名单的安全控制技术已引起广泛关注,是一种新兴的系统控制,目前可用于解决SCADA系统的安全问题。当前基于白名单的系统控制的大多数安全技术都使用静态ACL模型。但是静态ACL模型在使用ANY-ANY规则方面有局限性,这是使用动态服务器端口表示通信并在控制设备中表示通信功能范围的唯一方法。在本文中,我们提出了一种结构化的ACL模型来表示FTP服务,以解决被动FTP中服务器端口动态化的问题。通过将FTP特征提取算法应用于FTP流量,我们证明了该模型的可行性。

著录项

相似文献

  • 外文文献
  • 中文文献
  • 专利
获取原文

客服邮箱:kefu@zhangqiaokeyan.com

京公网安备:11010802029741号 ICP备案号:京ICP备15016152号-6 六维联合信息科技 (北京) 有限公司©版权所有

  • 客服微信

  • 服务号