Industrial control system sequence attack detection method and device

An industrial control system and attack detection technology, which is applied in general control systems, control/adjustment systems, test/monitoring control systems, etc., can solve problems such as unidentifiable sequence attacks, equipment destruction, and business interruption.

Active Publication Date: 2017-12-19
INST OF INFORMATION ENG CAS
View PDF6 Cites 7 Cited by
  • Summary
  • Abstract
  • Description
  • Claims
  • Application Information

AI Technical Summary

Problems solved by technology

[0004] Sequential attacks mainly use detection technology based on single-observation information, but skilled attackers can capture PLCs and tamper with observations, resulting in t

Method used

the structure of the environmentally friendly knitted fabric provided by the present invention; figure 2 Flow chart of the yarn wrapping machine for environmentally friendly knitted fabrics and storage devices; image 3 Is the parameter map of the yarn covering machine
View more

Image

Smart Image Click on the blue labels to locate them in the text.
Viewing Examples
Smart Image
  • Industrial control system sequence attack detection method and device
  • Industrial control system sequence attack detection method and device
  • Industrial control system sequence attack detection method and device

Examples

Experimental program
Comparison scheme
Effect test

Embodiment Construction

[0034] In order to make the purpose, technical solutions and advantages of the embodiments of the present invention clearer, the technical solutions in the embodiments of the present invention will be clearly described below in conjunction with the accompanying drawings in the embodiments of the present invention. Obviously, the described embodiments are the Some, but not all, embodiments are invented. Based on the embodiments of the present invention, all other embodiments obtained by persons of ordinary skill in the art without making creative efforts belong to the protection scope of the present invention.

[0035] From the emergence of super viruses attacking industrial control systems in 2010 - "Stuxnet" virus to "Duqu" virus, "Flame" virus, "Havex" virus, as well as Russian gas pipeline explosions and German steel factory accidents, etc. ICS faces an increasing number of sophisticated attacks. According to authoritative statistics, only from 2010 to 2013, the Industrial...

the structure of the environmentally friendly knitted fabric provided by the present invention; figure 2 Flow chart of the yarn wrapping machine for environmentally friendly knitted fabrics and storage devices; image 3 Is the parameter map of the yarn covering machine
Login to view more

PUM

No PUM Login to view more

Abstract

The invention provides an industrial control system sequence attack detection method and device. The method comprises the steps of (S1) obtaining multiple observed quantities of sensors controlled by multiple programmable logic controllers as a test set, and obtaining a first continuous quantum set and a first discrete quantum set in the test set according to each observation value model obtained by a value classification method in advance, (S2) obtaining respective corresponding first matching probability and second matching probability by using a trained hidden Markov model based on the first continuous quantum set and the first discrete quantum set, and (S3) obtaining a detection result of industrial control system sequence attack with the combination of weights of the discrete quantum set and the continuous quantum set based on the first matching probability and the second matching probability. According to the method provided by the invention, while a condition that the industrial control system sequence attack detection is failed after a single observation quantity is tampered is avoided, and the sequence attack of an industrial control system can be efficiently and accurately identified.

Description

technical field [0001] The invention relates to the technical field of intrusion detection, and more specifically, to a method and equipment for detecting sequence attacks of industrial control systems. Background technique [0002] The industrial control system (ICS) has continuously introduced open communication protocols such as industrial Ethernet and Transmission Control Protocol / Internet Protocol (TCP / IP) in the past ten years, and the system platform tends to Due to openness and standardization, the connection with external networks has become closer and more frequent. In particular, the newly proposed concept of Industry 4.0 integrates ideas such as smart factories, smart production, and smart logistics. These phenomena make the system's inherent loopholes and attack surface increasing day by day, and the security attacks faced by the Internet are introduced into ICS. Sequence attack is a special attack in industrial control systems. The attack is highly dependent o...

Claims

the structure of the environmentally friendly knitted fabric provided by the present invention; figure 2 Flow chart of the yarn wrapping machine for environmentally friendly knitted fabrics and storage devices; image 3 Is the parameter map of the yarn covering machine
Login to view more

Application Information

Patent Timeline
no application Login to view more
IPC IPC(8): G05B23/02
CPCG05B23/0213
Inventor 孙利民杨安王小山石志强孙玉砚
Owner INST OF INFORMATION ENG CAS
Who we serve
  • R&D Engineer
  • R&D Manager
  • IP Professional
Why Eureka
  • Industry Leading Data Capabilities
  • Powerful AI technology
  • Patent DNA Extraction
Social media
Try Eureka
PatSnap group products

Browse by: Latest US Patents, China's latest patents, Technical Efficacy Thesaurus, Application Domain, Technology Topic.

© 2024 PatSnap. All rights reserved.Legal|Privacy policy|Modern Slavery Act Transparency Statement|Sitemap