SIA OpenIR  > 工业控制网络与系统研究室
Anomaly Detection Approach based on Function Code Traffic by Using CUSUM Algorithm
Wan M(万明); Shang WL(尚文利); Zeng P(曾鹏)
作者部门工业控制网络与系统研究室
会议名称4th National Conference on Electrical, Electronics and Computer Engineering (NCEECE)
会议日期December 12-13, 2015
会议地点Xi‘an, PEOPLES R CHINA
会议主办者Int Informatizat & Engn Assoc, Trans Tech Publicat
会议录名称PROCEEDINGS OF THE 2015 4TH NATIONAL CONFERENCE ON ELECTRICAL, ELECTRONICS AND COMPUTER ENGINEERING ( NCEECE 2015)
出版者ATLANTIS PRESS
出版地PARIS
2015
页码1506-1511
收录类别CPCI(ISTP)
WOS记录号WOS:000373378400270
产权排序1
ISBN号978-94-6252-150-6
关键词Anomaly Detection Modbus/tcp Function Code Traffic Cumulative Sum
摘要There is an increasing consensus that it is necessary to resolve the security issues in today's industrial control system. From this point, this paper proposes an anomaly detection approach based on function code traffic to detect abnormal Modbus/TCP communication behaviors efficiently. Furthermore, this approach analyzes the Modbus/TCP communication packets in depth, and obtains the function code in each packet. According to the function code traffic change, this approach uses the Cumulative Sum (CUSUM) algorithm for change point detection, and generates an alarm. Our simulation results show that, the proposed approach is very available and effective to provide the security for industrial control system. Besides, we also discuss some advantages and drawbacks when using this approach.
语种英语
引用统计
文献类型会议论文
条目标识符http://ir.sia.cn/handle/173321/18598
专题工业控制网络与系统研究室
通讯作者Wan M(万明)
作者单位1.Shenyang Institute of Automation, Chinese Academy of Sciences, Shenyang, China
2.Key Laboratory of Networked Control System, Chinese Academy of Sciences, Shenyang, China
推荐引用方式
GB/T 7714
Wan M,Shang WL,Zeng P. Anomaly Detection Approach based on Function Code Traffic by Using CUSUM Algorithm[C]//Int Informatizat & Engn Assoc, Trans Tech Publicat. PARIS:ATLANTIS PRESS,2015:1506-1511.
条目包含的文件 下载所有文件
文件名称/大小 文献类型 版本类型 开放类型 使用许可
Anomaly Detection Ap(1356KB)会议论文 开放获取CC BY-NC-SA浏览 下载
个性服务
推荐该条目
保存到收藏夹
查看访问统计
导出为Endnote文件
谷歌学术
谷歌学术中相似的文章
[Wan M(万明)]的文章
[Shang WL(尚文利)]的文章
[Zeng P(曾鹏)]的文章
百度学术
百度学术中相似的文章
[Wan M(万明)]的文章
[Shang WL(尚文利)]的文章
[Zeng P(曾鹏)]的文章
必应学术
必应学术中相似的文章
[Wan M(万明)]的文章
[Shang WL(尚文利)]的文章
[Zeng P(曾鹏)]的文章
相关权益政策
暂无数据
收藏/分享
文件名: Anomaly Detection Approach based on Function Code Traffic by Using CUSUM Algorithm.pdf
格式: Adobe PDF
所有评论 (0)
暂无评论
 

除非特别说明,本系统中所有内容都受版权保护,并保留所有权利。