| 基于改进C-SVC的工控网络安全态势感知 |
| |
| 引用本文: | 陆耿虹,冯冬芹.基于改进C-SVC的工控网络安全态势感知[J].控制与决策,2017,32(7):1223-1228. |
| |
| 作者姓名: | 陆耿虹 冯冬芹 |
| |
| 作者单位: | 浙江大学工业控制技术国家重点实验室,杭州310027,浙江大学智能系统与控制研究所,杭州310027 |
| |
| 基金项目: | 国家自然科学基金项目(61223004). |
| |
| 摘 要: | 工控网络攻击类型多样、强度不一,在这种情况下,传统检测技术无法对多种类型的攻击进行有效识别,也无法给出全面准确的工控网络安全态势.为此,提出工控网络安全态势感知模型:首先采取改进的C-SVC算法对多源数据进行规则提取;然后利用决策融合算法进行决策层融合,获取最终态势感知结果.实验结果表明:所提出的模型和算法能够有效地识别多类型攻击,准确判断出系统遭受到的攻击,并形成态势感知结果.
|
| 关 键 词: | 工业控制系统 网络安全态势感知 改进的C-SVC 决策融合 |
Industrial control network security situation awareness based on improved C-SVC |
| |
| LU Geng-hong and FENG Dong-qin.Industrial control network security situation awareness based on improved C-SVC[J].Control and Decision,2017,32(7):1223-1228. |
| |
| Authors: | LU Geng-hong and FENG Dong-qin |
| |
| Affiliation: | State Key Laboratory of Industrial Control Technology,Zhejiang University,Hangzhou310027,China and Institute of Cyber-Systems and Control,Zhejiang University,Hangzhou310027,China |
| |
| Abstract: | The attacks against the industrial control network have different types and various attack intensity. Under this circumstance, the traditional detection techniques cannot identify the multiple types of attacks effectively, and can not assess the security situations of the industrial control network comprehensively and accurately. Therefore, the industrial control network security situation awareness model is proposed. Firstly, the rule extraction can be done by applying the improved C-SVC algorithm to the multi-sensor data. Then with the application of decision fusion algorithm, the decision-level fusion is completed and the results of situation awareness are procured. The simulation experiment results show that the proposed model and algorithms can distinguish multiple types of attacks effectively, identify the attacks that are launched against the industrial control system accurately, and generate the results of situation awareness. |
| |
| Keywords: | |
|
| 点击此处可从《控制与决策》浏览原始摘要信息 |
|
点击此处可从《控制与决策》下载全文 |
|
