An industrial control system intrusion detection method based on integrated learning

An industrial control system and integrated learning technology, which is applied in the field of intrusion detection of industrial control systems based on integrated learning, can solve the problems of lack of updates and bug fixes, lack of identity verification, etc., and achieve increased intelligence, detection accuracy, and good real-time performance , to achieve a convenient effect

Inactive Publication Date: 2019-06-07
ZHEJIANG UNIV
View PDF8 Cites 20 Cited by
  • Summary
  • Abstract
  • Description
  • Claims
  • Application Information

AI Technical Summary

Problems solved by technology

Due to the addition of advanced information technology and communication network technology (such as Ethernet), the openness of industrial control systems has been greatly improved, and it is also exposed to more security risks
Specifically, for example, fieldbus and equipment communication protocols (Modbus, etc.) commonly used in industrial control systems did not co...

Method used

the structure of the environmentally friendly knitted fabric provided by the present invention; figure 2 Flow chart of the yarn wrapping machine for environmentally friendly knitted fabrics and storage devices; image 3 Is the parameter map of the yarn covering machine
View more

Image

Smart Image Click on the blue labels to locate them in the text.
Viewing Examples
Smart Image
  • An industrial control system intrusion detection method based on integrated learning
  • An industrial control system intrusion detection method based on integrated learning

Examples

Experimental program
Comparison scheme
Effect test

Embodiment Construction

[0020] The present invention will be described in further detail below in conjunction with the accompanying drawings and specific embodiments.

[0021] This embodiment provides an integrated learning-based industrial control system intrusion detection method, including the following steps:

[0022] (1) Use the packet capture software to collect the communication data of the industrial control system through the switch device with the mirror port, and mark the communication data with category labels, and the categories include abnormal and normal. The data source can be actual field data or safety test platform data. Packet capture software includes Wireshark, Tcpdump, etc.

[0023] (2) Perform protocol analysis on the communication data of the industrial control system, identify and extract the effective information, including: source IP address (SIP), source port number (SP), destination IP address (DIP), and destination port number of the communication data (DP), packet in...

the structure of the environmentally friendly knitted fabric provided by the present invention; figure 2 Flow chart of the yarn wrapping machine for environmentally friendly knitted fabrics and storage devices; image 3 Is the parameter map of the yarn covering machine
Login to view more

PUM

No PUM Login to view more

Abstract

The invention discloses an industrial control system intrusion detection method based on integrated learning. The method comprises the following steps: acquiring field data of an industrial control system; carrying out message analysis on communication data to obtain a structured sample, selecting an appropriate feature set through feature screening and extraction, inputting the feature set into an integrated learning model consisting of a plurality of machine learning algorithms, and finally judging whether the communication data of a specific industrial control system is normal or abnormal through the learning algorithm. Effective information of communication data of the industrial control system is fully mined by utilizing an intelligent learning algorithm, the intrusion detection accuracy is effectively improved through an integrated learning model fusion method, and the missing report rate is reduced.

Description

technical field [0001] The invention belongs to the field of industrial control system security, and relates to an intrusion detection method of an industrial control system based on integrated learning. Background technique [0002] An industrial control system is a control system used in industrial production. Through advanced computer and network technology, people use industrial control systems to control traditional industrial processes reliably and efficiently. It includes data monitoring and acquisition system, distributed control system, programmable logic controller, human-computer interaction interface, intelligent terminal and other systems. Industrial control systems have been widely used in various industries, such as transportation, electric power, petrochemical, water treatment, natural gas transmission, etc. It makes important contributions to the construction of key national infrastructure, affects all aspects of people's lives, and is an important guarant...

Claims

the structure of the environmentally friendly knitted fabric provided by the present invention; figure 2 Flow chart of the yarn wrapping machine for environmentally friendly knitted fabrics and storage devices; image 3 Is the parameter map of the yarn covering machine
Login to view more

Application Information

Patent Timeline
no application Login to view more
IPC IPC(8): H04L29/06G06N20/20
CPCG06N20/20H04L9/40
Inventor 程鹏何阳陈积明王文海孙优贤
Owner ZHEJIANG UNIV
Who we serve
  • R&D Engineer
  • R&D Manager
  • IP Professional
Why Eureka
  • Industry Leading Data Capabilities
  • Powerful AI technology
  • Patent DNA Extraction
Social media
Try Eureka
PatSnap group products

Browse by: Latest US Patents, China's latest patents, Technical Efficacy Thesaurus, Application Domain, Technology Topic.

© 2024 PatSnap. All rights reserved.Legal|Privacy policy|Modern Slavery Act Transparency Statement|Sitemap