A general optimization-based approach to the detection of real-time ethernet traffic events
| Autor: | Andre Luis Dias, Danilo Hernane Spatti, Guilherme Serpa Sestito, Paolo Ferrari, Afonso Celso Turcato, Maíra Martins da Silva |
|---|---|
| Rok vydání: | 2021 |
| Předmět: |
Ethernet
0209 industrial biotechnology General Computer Science Computer science SERCOS III General Engineering 02 engineering and technology Perceptron computer.software_genre Support vector machine 020901 industrial engineering & automation PROFINET Sliding window protocol REDES E COMUNICAÇÃO DE DADOS 0202 electrical engineering electronic engineering information engineering Industrial Ethernet 020201 artificial intelligence & image processing Anomaly detection Data mining computer |
| Zdroj: | Repositório Institucional da USP (Biblioteca Digital da Produção Intelectual) Universidade de São Paulo (USP) instacron:USP |
| Popis: | One of the most used technologies in industrial automation is industrial Ethernet. RTE protocols can cope with the requirements of the Industry 4.0 frameworks. However, the broader use of industrial Ethernet also generates discussion about its vulnerabilities. In this sense, this work proposes anomaly detection methods. These methods are usually time-consuming and limited in scope since they are derived for addressing a single protocol. Thus, this work proposes a general and accurate anomaly detection technique suitable for any protocol based on RTE. ANN-based and SVM-based classifiers are used for classifying data traffic events based on the most relevant features extracted from data sets. An optimal sliding window approach is used for extracting these data sets, which improves the accuracy of the proposal. Seven different classifiers are investigated. Firstly, a Perceptron Neural Network is applied for verifying if the data sets are linearly separable. If this first classifier is unable to reach the required accuracy, three ANN-based classifiers with different activation functions and three SVM-based classifiers with different kernels are employed. The use of several classifiers not only improves the accuracy but also eliminates the need for advanced knowledge about communication dynamics. The generality and accuracy of the proposal are evaluated for detecting traffic events using real traffic data of a real automotive plant. PROFINET, Ethernet/IP, and SERCOS III networks have been analyzed, showing that some traffic events can be classified using the Perceptron while others require the use of more complex classifiers achieving accuracy greater than 98%. |
| Databáze: | OpenAIRE |
| Externí odkaz: |
|