中国科学院沈阳自动化研究所机构知识库
Advanced  
SIA OpenIR  > 工业控制网络与系统研究室  > 会议论文
题名: Modbus/TCP Communication Anomaly Detection Based on PSO-SVM
作者: Shang WL(尚文利) ; Zhang SS(张盛山) ; Wan M(万明)
作者部门: 工业控制网络与系统研究室
会议名称: 2013 the 3rd International Conference on Communication and Network Security (ICCNS 2013)
会议日期: November 16-17, 2013
会议地点: London, UK
会议录: 2013 the 3rd International Conference on Communication and Network Security (ICCNS 2013)
出版日期: 2013
页码: 1-10
关键词: PSO ; SVM ; Modbus function code ; Sequence anomaly detection ; Industrial security gateway
摘要: Industrial firewall and intrusion detection system based on Modbus TCP protocol analysis and "whitelist" policy cannot effectively identify attacks on Modbus controller which exactly take advantage of the configured rules. An Industrial control systems simulation environment is established and a data preprocessing method for Modbus TCP traffic captured is designed to meet the need of anomaly detection module. Furthermore a Modbus function code sequence anomaly detection model based on SVM optimized by PSO method is designed. And the model can effectively identify abnormal Modbus TCP traffic, according to frequency of different short mode sequences in a Modbus code sequence.
语种: 英语
产权排序: 1
内容类型: 会议论文
URI标识: http://ir.sia.cn/handle/173321/13875
Appears in Collections:工业控制网络与系统研究室_会议论文

Files in This Item: Download All
File Name/ File Size Content Type Version Access License
Modbus TCP Communication Anomaly Detection Based on PSO-SVM.pdf(3536KB)----开放获取View Download

Recommended Citation:
尚文利; 张盛山; 万明.Modbus/TCP Communication Anomaly Detection Based on PSO-SVM.见:.2013 the 3rd International Conference on Communication and Network Security (ICCNS 2013),,2013,1-10
Service
Recommend this item
Sava as my favorate item
Show this item's statistics
Export Endnote File
Google Scholar
Similar articles in Google Scholar
[尚文利]'s Articles
[张盛山]'s Articles
[万明]'s Articles
CSDL cross search
Similar articles in CSDL Cross Search
[尚文利]‘s Articles
[张盛山]‘s Articles
[万明]‘s Articles
Related Copyright Policies
Null
Social Bookmarking
Add to CiteULike Add to Connotea Add to Del.icio.us Add to Digg Add to Reddit
文件名: Modbus TCP Communication Anomaly Detection Based on PSO-SVM.pdf
格式: Adobe PDF
此文件暂不支持浏览
所有评论 (0)
暂无评论
 
评注功能仅针对注册用户开放,请您登录
您对该条目有什么异议,请填写以下表单,管理员会尽快联系您。
内 容:
Email:  *
单位:
验证码:   刷新
您在IR的使用过程中有什么好的想法或者建议可以反馈给我们。
标 题:
 *
内 容:
Email:  *
验证码:   刷新

Items in IR are protected by copyright, with all rights reserved, unless otherwise indicated.

 

 

Valid XHTML 1.0!
Copyright © 2007-2016  中国科学院沈阳自动化研究所 - Feedback
Powered by CSpace