Intrusion Detection Method Based on Support Vector Machine Access of Modbus TCP Protocol
| Autor: | Li Deng, Xiaoshuai Xin, YuCen Xie, Yisong Peng, Cancheng Liu |
|---|---|
| Rok vydání: | 2016 |
| Předmět: |
021110 strategic
defence & security studies business.industry Computer science Transmission Control Protocol 020209 energy 0211 other engineering and technologies 02 engineering and technology Industrial control system Intrusion detection system Automation Control system 0202 electrical engineering electronic engineering information engineering The Internet Data pre-processing business Modbus Computer network |
| Zdroj: | iThings/GreenCom/CPSCom/SmartData |
| DOI: | 10.1109/ithings-greencom-cpscom-smartdata.2016.90 |
| Popis: | As the mix of industrial automation control system and the Internet, the industrial control system is becoming more and more vulnerable. The key of information security is how to detect and resist attacks on industrial control systems. This paper proposes a data preprocessing method, this method can convert ModbusTCP traffic into another data that the support vector machine model can identify. This method is based on the frequency of Modbus protocol function code and coil appear in ModbusTCP traffic to detect the abnormal Modbus TCP traffic. |
| Databáze: | OpenAIRE |
| Externí odkaz: |
|