Method for preventing Stuxnet attacks

A network and network communication technology, applied in the field of network security, can solve problems such as the powerlessness of the firewall, the mutation of the Stuxnet virus, and the inability to detect and intercept it, so as to prevent the attack of the Stuxnet virus and protect the safe operation.

Inactive Publication Date: 2014-05-07
BEIJING LIKONG HUACON TECH
View PDF8 Cites 9 Cited by
  • Summary
  • Abstract
  • Description
  • Claims
  • Application Information

AI Technical Summary

Problems solved by technology

However, Stuxnet is an "instantaneous attack". Even if the IDS discovers the attack and notifies the firewall, the attack is over and the firewall is helpless
[0008] Intrusion Prevention System (IPS) is a supplement to anti-virus software and firewalls. It can effectively prevent the spread and attack of known viruses in the IPS virus database, but the Stuxnet virus will mutate. Once the virus mutates, the IPS virus database must be upgraded to detect Otherwise, the mutant virus can still abuse the network. Once wincc or step7 is infected, it will modify the PLC program. The modified PLC does not have virus characteristics. At this time, even the virus database upgraded by IPS cannot detect and Intercept the modified PLC program

Method used

the structure of the environmentally friendly knitted fabric provided by the present invention; figure 2 Flow chart of the yarn wrapping machine for environmentally friendly knitted fabrics and storage devices; image 3 Is the parameter map of the yarn covering machine
View more

Image

Smart Image Click on the blue labels to locate them in the text.
Viewing Examples
Smart Image
  • Method for preventing Stuxnet attacks

Examples

Experimental program
Comparison scheme
Effect test

Embodiment Construction

[0021] In order to make the object, technical solution and advantages of the present invention clearer, the present invention will be further described in detail below in conjunction with the accompanying drawings and embodiments. It should be understood that the specific embodiments described here are only used to explain the present invention, not to limit the present invention.

[0022] figure 1 The flowchart of the method for preventing the Stuxnet attack provided by the present invention, such as figure 1 As shown, a method for preventing the Stuxnet attack includes the following steps:

[0023] Step 1 sets a safety device in the network communication, and a feature code is stored in the safety device;

[0024] Step 2: filter and analyze all data packets passing through the security device, and compare with the feature code;

[0025] Step 3: If the data packet matches the feature code, the data packet is intercepted.

[0026] Step 4: If the data packet does not match ...

the structure of the environmentally friendly knitted fabric provided by the present invention; figure 2 Flow chart of the yarn wrapping machine for environmentally friendly knitted fabrics and storage devices; image 3 Is the parameter map of the yarn covering machine
Login to view more

PUM

No PUM Login to view more

Abstract

The invention relates to a method for preventing Stuxnet attacks, which comprises the following steps: step 1, a safety device is arranged in network communication, and the safety device is stored with a characteristic code; step 2, all data packets passing through the safety device are filtered and analyzed, and compared with the characteristic code; and step 3, the data packet is intercepted if the data packet is matched with the characteristic code. The method realizes a purpose of preventing attacks of Stuxnet through preventing downloading data packets of programs, analyzes the data packets passing through, intercepts the data packets which are matched with the characteristic code, terminates a download behavior of a PLC project, allows the data packets which are not matched with the characteristic code to pass through, realizes normal network communication, and ensures safe operation of an industrial Ethernet.

Description

technical field [0001] The invention relates to the technical field of network security, in particular to a method for preventing stuxnet attacks in the information industry. Background technique [0002] With the advent of the network information age, my country's industrial model has undergone earth-shaking changes, completely breaking the "information island" model. Enterprises are fully connected to the Internet, and production data can be easily aggregated and analyzed. This not only improves production efficiency, but also promotes the national strategy of energy conservation and emission reduction. . The beneficial changes that informatization has brought to the industry are obvious, but the subsequent network information security issues make people panic. [0003] The Stuxnet worm (commonly known as "Stocknet", "Twins") began to break out in July 2010. It exploits at least 4 vulnerabilities in the Microsoft operating system, including 3 new zero-day vulnerabilities;...

Claims

the structure of the environmentally friendly knitted fabric provided by the present invention; figure 2 Flow chart of the yarn wrapping machine for environmentally friendly knitted fabrics and storage devices; image 3 Is the parameter map of the yarn covering machine
Login to view more

Application Information

Patent Timeline
no application Login to view more
Patent Type & Authority Applications(China)
IPC IPC(8): H04L29/06
Inventor 谷永国何迪江
Owner BEIJING LIKONG HUACON TECH
Who we serve
  • R&D Engineer
  • R&D Manager
  • IP Professional
Why Eureka
  • Industry Leading Data Capabilities
  • Powerful AI technology
  • Patent DNA Extraction
Social media
Try Eureka
PatSnap group products

Browse by: Latest US Patents, China's latest patents, Technical Efficacy Thesaurus, Application Domain, Technology Topic.

© 2024 PatSnap. All rights reserved.Legal|Privacy policy|Modern Slavery Act Transparency Statement|Sitemap