SIA OpenIR  > 工业控制网络与系统研究室
基于OCSVM双轮廓模型的Modbus TCP通信行为异常检测方法
Alternative TitleModbus TCP communication behavior abnormity detection method based on OCSVM double-contour model
尚文利; 万明; 李琳; 曾鹏; 于海斌
Rights Holder中国科学院沈阳自动化研究所
Patent Agent沈阳科苑专利商标代理有限公司 21002
Abstract本发明基于OCSVM算法提出了工业控制系统通信行为的异常检测方法。该发明构建工业控制系统通信行为的正常行为轮廓模型和异常行为轮廓模型,即双轮廓模型,并通过微粒子群算法(PSO)进行参数优化,获得最优的入侵检测模型,识别出异常的Modbus TCP通信流量。该发明通过双轮廓检测模型的协同判别以降低误报率,提高了异常检测的效率及其可靠性,更适用于实际应用。
Other AbstractThe invention relates to a Modbus TCP communication behavior abnormity detection method based on an OCSVM double-contour model. The method comprises steps that a normal behavior contour model and an abnormal behavior contour model of communication behaviors of an industrial control system are constructed, namely a double-contour model, parameter optimization is carried out through a particle swarm optimization algorithm (PSO), an optimal invasion detection model is acquired, and the abnormal Modbus TCP communication flow is identified. Through the method, the false alarm rate is reduced through cooperation discrimination of the double-contour detection model, efficiency and reliability of detection on abnormity are improved, and the method is more suitable for practical application.
PCT Attributes
Application Date2014-11-26
Date Available2017-05-10
Application NumberCN201410699413.3
Open (Notice) NumberCN105704103B
Contribution Rank1
Document Type专利
Recommended Citation
GB/T 7714
尚文利,万明,李琳,等. 基于OCSVM双轮廓模型的Modbus TCP通信行为异常检测方法[P]. 2016-06-22.
Files in This Item: Download All
File Name/Size DocType Version Access License
CN201410699413.3授权.p(683KB)专利 开放获取CC BY-NC-SAView Download
Related Services
Recommend this item
Usage statistics
Export to Endnote
Google Scholar
Similar articles in Google Scholar
[尚文利]'s Articles
[万明]'s Articles
[李琳]'s Articles
Baidu academic
Similar articles in Baidu academic
[尚文利]'s Articles
[万明]'s Articles
[李琳]'s Articles
Bing Scholar
Similar articles in Bing Scholar
[尚文利]'s Articles
[万明]'s Articles
[李琳]'s Articles
Terms of Use
No data!
Social Bookmark/Share
File name: CN201410699413.3授权.pdf
Format: Adobe PDF
All comments (0)
No comment.

Items in the repository are protected by copyright, with all rights reserved, unless otherwise indicated.