Industrial control system device classification using network traffic features and neural network embeddings

被引：0

作者：

Chakraborty, Indrasis ^{[1
]}

Kelley, Brian M. ^{[1
]}

Gallagher, Brian ^{[1
]}

机构：

[1] Lawrence Livermore National Laboratory, Livermore,CA, United States

来源：

Array | 2021年 / 12卷

关键词：

Cybersecurity - SCADA systems - Network embeddings - Classification (of information);

D O I：

10.1016/j.array.2021.100081

中图分类号：

学科分类号：

摘要：

Characterization of modern cyber–physical Industrial Control System (ICS) devices is critical to the evaluation of their security posture and an understanding of the underlying industrial processes with which they interact. In this work, we address two related ICS device identification tasks: (1) separating ICS from non-ICS devices and (2) identifying specific ICS device types. We propose two distinct methods (one based on the existing IP2Vec method, and a novel traffic-features-based method) for achieving the first task. For transferability of the first task between two datasets, the traffic-features-based method performs significantly better (75% overall accuracy) compared to IP2Vec (22.5% overall accuracy). We further propose a novel method called DNP2Vec to address the second task. DNP2Vec is evaluated on two different datasets and achieves perfect multi-class classification accuracy (100%) for both datasets. © 2021 The Authors

引用

共 50 条

[1] Network Traffic Features for Anomaly Detection in Specific Industrial Control System Network
Mantere, Matti
Sailio, Mirko
Noponen, Sami
[J]. FUTURE INTERNET, 2013, 5 (04) : 460 - 473
[2] Network traffic features for anomaly detection in specific industrial control system network
[J]. Mantere, Matti (matti.mantere@vtt.fi), 1600, MDPI AG (05):
[3] Device Classification for Industrial Control Systems Using Predicted Traffic Features
Chakraborty, Indrasis
Kelley, Brian M.
Gallagher, Brian
[J]. FRONTIERS IN COMPUTER SCIENCE, 2022, 4
[4] Industrial Control System Anomaly Detection and Classification Based on Network Traffic
Jiang, Jehn-Ruey
Chen, Yan-Ting
[J]. IEEE ACCESS, 2022, 10 : 41874 - 41888
[5] Intelligent Traffic Congestion Classification System using Artificial Neural Network
Mondal, Md Ashifuddin
Rehena, Zeenat
[J]. COMPANION OF THE WORLD WIDE WEB CONFERENCE (WWW 2019 ), 2019, : 110 - 116
[6] Power Grid Industrial Control System Traffic Classification Based on Two-Dimensional Convolutional Neural Network
Yue, Gang
Sun, Zhuo
Tian, Jianwei
Zhu, Hongyu
Zhang, Bo
[J]. COMMUNICATIONS, SIGNAL PROCESSING, AND SYSTEMS, VOL. 1, 2022, 878 : 41 - 48
[7] Byte Segment Neural Network for Network Traffic Classification
Li, Rui
Xiao, Xi
Ni, Shiguang
Zheng, Haitao
Xia, Shutao
[J]. 2018 IEEE/ACM 26TH INTERNATIONAL SYMPOSIUM ON QUALITY OF SERVICE (IWQOS), 2018,
[8] Automatic vehicle classification using fast neural network and classical neural network for traffic monitoring
Hannan, Mahammad Abdul
Gee, Chew Teik
Javadi, Mohammad Saleh
[J]. TURKISH JOURNAL OF ELECTRICAL ENGINEERING AND COMPUTER SCIENCES, 2015, 23 : 2031 - 2042
[9] Classification of Plants Using Invariant Features and a Neural Network
Amlekar, Manisha M.
Ali, Mouad M. H.
Gaikwad, Ashok T.
[J]. INFORMATION AND COMMUNICATION TECHNOLOGY FOR INTELLIGENT SYSTEMS, ICTIS 2018, VOL 2, 2019, 107 : 127 - 136
[10] Efficient Hybrid Packet Classification in Traffic Control System using Network Processors
Liu, Yizhen
Xu, Daxiong
Mu, Zhixin
Qin, Jiayi
[J]. INTERNATIONAL CONFERENCE ON ADVANCED COMPUTER CONTROL : ICACC 2009 - PROCEEDINGS, 2009, : 57 - +

← 1 2 3 4 5 →