Paper Info
Title
Structured whitelist generation in SCADA network using PrefixSpan algorithm.
Abstract
SCADA system works in repeated or periodic used of only limited communication devices. Because of this feature, whitelist based security techniques are widely used and access restriction method using whitelist based static ACL is most commonly applied in security field. Static ACL have advantages in security, but their expressiveness is too simple to express communication using dynamic allocated port. In addition, it does not reflect all the communication characteristics of the control device, and the generated static ACL should always be open regardless of the frequent use. We propose a structured ACL that extends the fixed generation sequence information between the communication and communication-specific periodicity to reflect the mechanical and repetitive communication characteristics of the SCADA system in the static ACL. We demonstrate the feasibility of the proposed Structured ACL model in this paper by applying the real SCADA network traffic.
Year
Venue
Keywords
2017
Asia-Pacific Network Operations and Management Symposium-APNOMS
Industrial Control System,SCADA,Whitelist,Traffic Locality,Frequent Pattern Mining
Field
DocType
ISSN
PrefixSpan,Computer science,Computer network,Industrial control system,Whitelist,SCADA,Expressivity,Distributed computing
Conference
2576-8565
Citations 
PageRank 
References 
0
0.34
4
Authors
5
Name
Order
Citations
PageRank
Woo-Suk Jung111.09
Jeong-Han Yun201.69
Sinkyu Kim393.07
Kyu-Seok Shim477.72
Myung-Sup Kim532545.01